Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 464
Alerts This Week
Warning Icon 1 464

Sqlninja 0.2.3 Enhances Automated SQL Injection for MS SQL Server

General Esm H446
Sqlninja is a tool written in PERL to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote access on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered.

Being able to upload 'netcat.exe' as 100% plain ASCII GET/POST requests and no FTP? Evasion techniques, code obfuscation, and DNS-tunneld pseudo shells? Sounds like an SQL Injection tool to check out!