Thursday, August 12, 2010

Some Good sql injection tools and scanner

 ...................................................................................................................

4. SQL AutoInjector
Download : http://rapidshare.com/files/144171085/AutoInject.exe

5. BSQL (Blind SQL)
"BSQL (Blind SQL) Hacker is an automated SQL Injection Framework / Tool designed to exploit SQL injection vulnerabilities virtually in any database."

Download : https://labs.portcullis.co.uk/application/bsql-hacker/

6. SqlMap
Introduction
sqlmap is an automatic SQL injection tool entirely developed in Python. It is capable to perform an extensive database management system back-end fingerprint, retrieve remote DBMS databases, usernames, tables, columns, enumerate entire DBMS, read system files and much more taking advantage of web application programming security flaws that lead to SQL injection vulnerabilities.
Features

Here is a list of major features implemented in sqlmap:

* Full support for MySQL, Oracle, PostgreSQL and Mcft SQL Server database management system back-end. Besides these four DBMS, sqlmap can also identify Mcft Access, DB2, Informix and Sybase;
* Extensive database management system back-end fingerprint based upon:
o Inband DBMS error messages
o DBMS banner parsing
o DBMS functions output comparison
o DBMS specific features such as MySQL comment injection
o Passive SQL injection fuzzing
* It fully supports two SQL injection techniques:
o Blind SQL injection, also known as Inference SQL injection
o Inband SQL injection, also known as UNION query SQL injection
and it partially supports error based SQL injection as one of the vectors for database management system fingerprint;
* It automatically tests all provided GET, POST, Cookie and User-Agent parameters to find dynamic ones. On these it automatically tests and detects the ones affected by SQL injection. Moreover each dynamic parameter is tested for numeric, single quoted string, double quoted string and all of these three type with one and two brackets to find which is the valid syntax to perform further injections with;
* It is possible to provide the name of the only parameter(s) that you want to perform tests and use for injection on, being them GET, POST, Cookie parameters;
* SQL injection testing and detection does not depend upon the web application database management system back-end. SQL injection exploiting and query syntax obviously depend upon the web application database management system back-end;
* It recognizes valid queries by false ones based upon HTML output page hashes comparison by default, but it is also possible to choose to perform such test based upon string matching;
* HTTP requests can be performed in both HTTP method GET and POST (default: GET);
* It is possible to perform HTTP requests using a HTTP User-Agent header string randomly selected from a text file;
* It is possible to provide a HTTP Cookie header string, useful when the web application requires authentication based upon cookies and you have such data;
* It is possible to provide an anonymous HTTP proxy address and port to pass by the HTTP requests to the target URL;
* It is possible to provide the remote DBMS back-end if you already know it making sqlmap save some time to fingerprint it;
* It supports various command line options to get database management system banner, current DBMS user, current DBMS database, enumerate users, users password hashes, databases, tables, columns, dump tables entries, dump the entire DBMS, retrieve an arbitrary file content (if the remote DBMS is MySQL) and provide your own SQL SELECT statement to be evaluated;
* It is possible to make sqlmap automatically detect if the affected parameter is also affected by an UNION query SQL injection and, in such case, to use it to exploit the vulnerability;
* It is possible to exclude system databases when enumerating tables, useful when dumping the entire DBMS databases tables entries and you want to skip the default DBMS data;
* It is possible to view the Estimated time of arrival for each query output, updated in real time while performing the SQL injection attack;
* Support to increase the verbosity level of output messages;
* It is possible to save queries performed and their retrieved value in real time on an output text file and continue the injection resuming from such file in a second time;
* PHP setting magic_quotes_gpc bypass by encoding every query string, between single quotes, with CHAR (or similar) DBMS specific function.

Download : http://sqlmap.sourceforge.net/

7. SQL Dump
Download : http://rapidshare.com/files/137432018/sqldump.rar

8. SQL InjecTion and XSS TOOLS
Apache Hacking TooLz Directory:

Apache Chunked Scanner
Apache Hacker Tool v 2.0
Apache H4x0r Script


Remote File Inclusion And Remote Command Execution Directory :

IIS 5 Dav Scanner & Exploiter
PHP Attacker
PHP Injection Scanner & Exploiter
XML-RPC Scanner & Exploiter


Databases & SQL Injection & XSS TooLz Directory

Casi 4.0
ForceSQL
Mssql BruteForce TooL
SQL Ping 2
SQL Recon
SQL Vuln Scanner
SQL & XSS TooL

PHP Shells

**** v2.0
c99shell #16
Backdoor php v0.1
r57shell
ajan
casus15
cmd (asp)
CyberEye (asp)
CyberSpy5 (asp)
Indexer (asp)
Ntdaddy (asp)
News Remote PHP Shell Injection
PHP Shell
phpRemoteView

Download : http://rapidshare.com/files/132986898/SQL_InjecTion___XSS_TooLz.rar

9. BaKo's SQL Injection Scanner v2.2

Warning: You must have the latest .NET framework to run this!
Warning 2: You need the Rufa font for the font to display right! This is included in the updated zip file.

Download : http://rapidshare.com/files/81555897/BaKo_s_SQL_Injection_Scanner_v2.2.zip.html

10. PRIAMOS SQL Injector & Scanner

Download : http://rapidshare.com/files/117691892/Priamos_v1.0.zip

11. Cfmtool
Download: http://rapidshare.com/files/116565659/cfmtool.rar

.............................................................................................................
.....................................................................................................................
 ...........................................................................................................................

1 comment:

  1. This is a great list of SQL injection scanner and tool. Thanks for sharing useful info

    ReplyDelete