Database Fingerprinting & Reconnaissance
Database fingerprinting is the process of 'feeling out' a database using SQL to gather more information to be able to perform a more successful attack. The hacker performs basic interrogation such as finding out the database version and type e.g. Oracle or MYSQL. This might be done using direct queries or forcing and analyzing error messages. The hacker might also make an educated guess in finding table names e.g. finding the 'Users' or 'Admin' tables. In turn this can then lead into identifying fields for Username, Email address and Password.
Our experts will answer your questions, assess your needs, and help you understand which products are best for your business.