[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <48F344DF.1010102@scrt.ch>
Date: Mon, 13 Oct 2008 14:53:51 +0200
From: MiniMySqlat0r <mms@...t.ch>
To: full-disclosure@...ts.grok.org.uk
Subject: Mini MySqlat0r release
Mini MySqlat0r is a multi-platform application used to audit web sites
in order to discover and exploit SQL injection vulnerabilities in
applications that use MySQL for storing data. It is written in Java and
is used through a user-friendly GUI that contains three distinct modules.
The Crawler module allows the user to view the web site structure and
gather all tamperable parameters. These parameters are then sent to the
Tester module that tests all parameters for SQL injection
vulnerabilities. If any are found, they are then sent to the Exploiter
module that can exploit the injections to gather data from the database.
Mini MySqlat0r is freely downloadable (GPL licence) from
http://www.scrt.ch/pages_en/minimysqlator.html
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists