Since we are on Symantec forum.... ouch!
How to detect POST based SQL Injection with automated tool?
I have used http://hackertarget.com/free-sql-scan/ for GET based detection but cannot find a good tool (that works) for POST based.
I downloaded the sqlmap and installed python but could not get it to work with POST.