Search This Blog

Friday, July 22, 2011

SQL Ninja 0.2.6-rc1



Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that users Microsoft SQL Server as its back-end. It's main goal is to provide a remote access  on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered.

This is the change log:

  • Added ICMP shell
  • Added support for CVE-2010-0232 (KiTrap0d)
  • Added header-based Injection
  • Removed conf file autogen (unsuited to new way to configure injection)
  • Bug fixes.

Download Sqlninja from here: Download 

Add To Google BookmarksStumble ThisFav This With TechnoratiAdd To Del.icio.usDigg ThisAdd To RedditTwit ThisAdd To FacebookAdd To Yahoo

0 comments:

Post a Comment