I made some minor adjustments and bugfixes to the 0.7 release and released 0.8. MSSQLScan should now support a graceous shutdown when doing a ctrl-break and not skip hosts when running out of sockets.
Get it here.
I have released a new tool that can be used to verify password quality against several database engines. Make sure to check it out here.
I have released a new version of my MSSQLScan tool. It contains fixes for running out of sockets when scanning large networks with low timeouts and re-scheduling of unsuccesful probes.
Let me know how/if it works and please send me bug reports.
I have launched a new blog with “random thoughts about random things” … The reason why I’m launching a new site when barely keeping up with this one is that I want to keep this one security oriented while the new one a bit more “random”. The new blog can be found here http://patrik.cqure.net.
I’m guessing we might have to outdated blogs in a couple of weeks 
I have been experimenting with SQL-injection and information enumeration through error messages for a while.
The idea was to simplify the process of extracting data so that very little application logic would be needed to perform the task. Ideally a simple 3-5 line bash-script wrapping wget or curl should do the trick.