Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Yet another SQL injection framework

from [Guillermo Marro] Network Security [Permanent Link]
Subject: Yet another SQL injection framework
Date: Thu, 19 Apr 2007 15:44:26 -0300 
Hi List,

FG-Injector is a free tool that leverages the pentester's work by
facilitating the exploitation of SQL Injection vulnerabilities.

It includes a a powerful proxy feature for intercepting and modifying
HTTP requests, a network spy module to allow the analyst view HTTP
requests and their corresponding responses and an inference engine for
automating SQL injection exploitation.

The Inference Engine Module of the FG-Injector Framework automates the
generation and injection of SQL statements needed for exploitation of a
Blind SQL Injection. This module will work also for regular injections
using the same method. It can produce blind injections on web/app
servers using MS SQL Server, MySQL, and PostgresSql DBMSs.

Get both, sources and a windows binary from:

http://www.flowgate.net/?lang=en&seccion=herramientas


-G
-- 
...........................................
Guillermo Marro
F L O W G A T E  Consulting
Maipu 778 - piso 1 - of 10
Rosario - 2000
Argentina
TEL: +54-341-4112511
FAX: +54-341-5291067
PGP: http://www.flowgate.net/PK/GM_FG.pub

Attachment: signature.asc
Description: This is a digitally signed message part

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  SensePost Aura - aka Solving the Google API Key Problem.., Haroon Meer
Next by Date:  Re: [Webappsec] Tacking A Difficult Problem - Solutions, Amit Klein
Previous by Thread:  SensePost Aura - aka Solving the Google API Key Problem.., Haroon Meer
Next by Thread:  Re: Yet another SQL injection framework (file corruption), Guillermo Marro
Indexes:  [Date] [Thread] [Top] [All Lists]