sqlmap: a blind SQL injection tool
Category: Tools & Software: WebApp testing: SQL Injection
sqlmap is an automatic SQL injection tool entirely developed in Python. It is capable to perform an extensive database management system back-end fingerprint, retrieve remote DBMS
databases, usernames, tables, columns, enumerate entire DBMS, read system files and much more taking advantage of web application programming security flaws that lead to SQL injection vulnerabilities.
|
|
sqlninja
Category: Tools & Software: WebApp testing: SQL Injection
Sqlninja is a tool to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered.
|
|
sqlsus
Category: Tools & Software: WebApp testing: SQL Injection
sqlsus is an open source MySQL injection and takeover tool, written in perl. Via a command line interface that mimics a mysql console, you can retrieve the database structure, inject a SQL query, download files from the web server, upload and control a backdoor, and much more. sqlsus is released under the GPL v2.
|
|
|
What's new! What's up?
- New Security Job Offers category!.
- Modified our Blog so that the wordpress theme matches with the rest of the site layout.
- Restructured the Security Companies category - now sorted by location.
- New Website layout! I have also restructured the top categories in order to keep them to a minimum.
- New Checklists category. Submit your checklists!
- New Videos category. Now collecting tutorials, recorded techniques, etc.
- New cheat sheets category inside Documents!
- New Metasploit plugins category! Feel free to submit links to any meterpreter or metasploit plugins you may have!
|
