Analyze ASP.Net Source Code with graspx

This series describes how to analyze ASP.Net source code. Follow the graspx category for more articles.

QueryString Parameters

To find out which query string parameters your pages are expecting, run:

graspx -col 1,5 l QueryStringField

Database Statements

To retrieve all SQL statements your application is issuing, use the following commands:

graspx -col 1,5 l SelectCommand
graspx -col 1,5 l InsertCommand
graspx -col 1,5 l UpdateCommand
graspx -col 1,5 l DeleteCommand

This also lists the aspx file name. If you want the SQL statements only, set the -col parameter to 5.

The output of these commands can be further analyzed to check whether the referenced tables and stored procedures are still in use.

graspx is available for download here.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: