SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Is anyone using AppDetective PRO for scanning SQL vulnerabilities?


Is anyone using AppDetective PRO for scanning SQL vulnerabilities?

Author
Message
SkyBox
SkyBox
Old Hand
Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)

Group: General Forum Members
Points: 334 Visits: 737
I'm currently evaluating this security product for SQL. Seems very robust - just wondered if anyone else has any experience with it or anything like it? it performs PCI, SOX, Brute Force Pen Tests and many more types of scans.
Andreas.Wolter
Andreas.Wolter
SSC Veteran
SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)

Group: General Forum Members
Points: 245 Visits: 1056
I have not heard of that one. Maybe, if you can provide a link to a Trial, I could check it out.
But frankly I have not had a convincing experience with any of such products yet. Each lacks one or the other.
Make sure you also run manual tests.
If you mean it, I'd advise to also go for intrusion detection - not just prevention.

Andreas

---------------------------------------------------
MVP SQL Server
Microsoft Certified Master SQL Server 2008
Microsoft Certified Solutions Master Data Platform, SQL Server 2012
www.insidesql.org/blogs/andreaswolter
www.andreas-wolter.com
SkyBox
SkyBox
Old Hand
Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)Old Hand (334 reputation)

Group: General Forum Members
Points: 334 Visits: 737
Here is a link to the product page, although I think you have to contact them for a trial.

What methods are you using for intrusion detection - at the database level?
Andreas.Wolter
Andreas.Wolter
SSC Veteran
SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)SSC Veteran (245 reputation)

Group: General Forum Members
Points: 245 Visits: 1056
Thank you
Too bad. That lowers the chance that I’ll find time for it. But I think I’ll ask them.
But I stay skeptical. I have read similar about McAfees Security Suite.. and taking a look at it, it turned out to be very very low level…

I use a mixture of tools like sqlmap, Microsoft Assessment & Planning Toolkit, built-in Auditing and manual checks

Andreas

---------------------------------------------------
MVP SQL Server
Microsoft Certified Master SQL Server 2008
Microsoft Certified Solutions Master Data Platform, SQL Server 2012
www.insidesql.org/blogs/andreaswolter
www.andreas-wolter.com
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum

































































































































































SQLServerCentral


Search