top testing tools for SQL injection

While trying to look up options for testing SQL injection, I came a cross a few you may want to try. I have not tried all of these, but it seems that there isn't a good list of them around that Google can find, so I'm going to make one here. YMMV

Happy hunting!
Chris

• http://www.webresourcesdepot.com/category/extras/security/
• http://www.mavitunasecurity.com/communityedition/
• http://www.websecurify.com/
• http://www.ict-romulus.eu/web/wapiti/home
• http://nstalker.com/products/free
• http://code.google.com/p/skipfish/
• http://www.communities.hp.com/securitysoftware/blogs/spilabs/archive/2008/06/23/finding-sql-injection-with-scrawlr.aspx
• http://websecuritytool.codeplex.com/
• http://xss.codeplex.com/
• http://labs.securitycompass.com/index.php/exploit-me/
• http://www.owasp.org/index.php/Category:OWASP_WebScarab_Project
• http://www.acunetix.com/cross-site-scripting/scanner.htm
• http://www.dvwa.co.uk/  - test bed for tools, learning
• http://sec4app.com/