Tuesday, August 24, 2010

Script for creating SQL injections...

Posted on August 24, 2010 by Adnan with No comments:

Script for creating SQL injectionsScript for creating SQL injections... http://bcable.net/project.php?sqlier

SQLIer takes an SQL Injection vulnerable URL and attempts to determine all the necessary information to build and exploit an SQL Injection hole by itself, requiring no user interaction at all (unless it can't guess the table/field names correctly). By doing so, SQLIer can build a UNION SELECT query designed to brute force passwords out of the database. This script also does not use quotes in the exploit to operate, meaning it will work for a wider range of sites.

An 8 character password (containing any character from decimal ASCII code 1-127) takes approximately 1 minute to crack.

.......................................................................................................................................

........................................................................................................................................

Learn Cyber Security

Tuesday, August 24, 2010

Script for creating SQL injections...

0 comments:

Post a Comment

Contributors

Blog Archive

Follow us on Facebook

Popular Posts

Categories