Microsoft UrlScan: Tool to filter SQL injection attacks

Microsoft released an improved security filter for its Internet Information Service (IIS) Web server that is designed to help thwart SQL injection attacks. The free application, called UrlScan 3.0 (Release-to-Web version), is an add-on tool to IIS that provides real-time verification of HTTP server requests, potentially blocking malicious code. SQL injection attacks have become worldwide problem […]

Microsoft released an improved security filter for its Internet Information Service (IIS) Web server that is designed to help thwart SQL injection attacks. The free application, called UrlScan 3.0 (Release-to-Web version), is an add-on tool to IIS that provides real-time verification of HTTP server requests, potentially blocking malicious code. SQL injection attacks have become worldwide problem in the last eight months or so. They affect Web sites built using Microsoft's popular ASP or ASP.NET code, or code enabling dynamic Web sites.

UrlScan 3.0 is available in 32-bit (x86) and 64-bit (x64) versions.