[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <1177070189.5448.9.camel@bilom>
Date: Fri, 20 Apr 2007 08:56:29 -0300
From: Guillermo Marro <gmmarro@...wgate.net>
To: vuln-dev@...urityfocus.com
Cc: bugtraq@...urityfocus.com, webappsec@...urityfocus.com
Subject: Re: Yet another SQL injection framework (file corruption)
For some reason files were corrupted during the upload process. Now the
correct archive is in place, together with a md5 sum of it.
Apologies for the 'noise'.
-G
On Thu, 2007-04-19 at 15:44 -0300, Guillermo Marro wrote:
> Hi List,
>
> FG-Injector is a free tool that leverages the pentester's work by
> facilitating the exploitation of SQL Injection vulnerabilities.
>
> It includes a a powerful proxy feature for intercepting and modifying
> HTTP requests, a network spy module to allow the analyst view HTTP
> requests and their corresponding responses and an inference engine for
> automating SQL injection exploitation.
>
> The Inference Engine Module of the FG-Injector Framework automates the
> generation and injection of SQL statements needed for exploitation of a
> Blind SQL Injection. This module will work also for regular injections
> using the same method. It can produce blind injections on web/app
> servers using MS SQL Server, MySQL, and PostgresSql DBMSs.
>
> Get both, sources and a windows binary from:
>
> http://www.flowgate.net/?lang=en&seccion=herramientas
>
>
> -G
--
...........................................
Guillermo Marro
F L O W G A T E Consulting
Maipu 778 - piso 1 - of 10
Rosario - 2000
Argentina
TEL: +54-341-4112511
FAX: +54-341-5291067
PGP: http://www.flowgate.net/PK/GM_FG.pub
Powered by blists - more mailing lists