lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Tue, 19 Aug 2008 14:39:49 +0100
From: "Ferruh Mavituna" <ferruh@...ituna.com>
To: "Full Disclosure" <full-disclosure@...ts.grok.org.uk>
Subject: BSQL Hacker 0.9.0.7 - Advanced SQL Injection
	Framework / Tool

BSQL Hacker is an automated SQL Injection Framework / Tool designed to
exploit SQL injection vulnerabilities virtually in any database.

It ships with Automated Attack modules which allows to dump whole database:

   - SQL Server
   - ORACLE
   - MySQL (*experimental*)

Attack Templates :

   - MS Access
   - MySQL
   - ORACLE
   - PostgreSQL
   - MS SQL Server

Also you can write your own attack template for any other database as well (
*see the manual for details*). New attack templates and exploits for
specific web application can be shared via Exploit Repository.

BSQL Hacker aims for experienced users as well as beginners who want to
automate SQL Injections (especially Blind SQL Injections).

It supports :

   - Blind SQL Injection (Boolean Injection)
   - Full Blind SQL Injection (Time Based)
   - Deep Blind SQL Injection (a new way to exploit BSQLIs, explained in
   here : http://labs.portcullis.co.uk/application/deep-blind-sql-injection/
   )
   - Error Based SQL Injection

It allows metasploit alike exploit repository to share and update exploits
and attack tempate.

*Download, Screenshots, Source Code and More Information :*
http://labs.portcullis.co.uk/application/bsql-hacker/<https://labs.portcullis.co.uk/application/bsql-hacker/>

*Injection Wizard Video:
*http://www.vimeo.com/1536040?pg=embed&sec=1536040

-- 
Ferruh Mavituna
http://ferruh.mavituna.com

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ