Sqlifuzzer is an open source wrapper for cURL written in bash, that can be used to remotely identify SQL injection and and XPath injection vulnerabilities. It does this by sending some SQL injection payloads and examining the responses for signs of ‘injectability’.
Sqlifuzzer was designed out of a desire to hit every dynamic parameter of a web app [...]
automated SQL Injection
Our first post regarding Havij can be found here. Now after being developed for almost five months, the author has released an update – Havij version 1.15.
“Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable [...]
Our first post regarding Havij can be found here. Now, the author has released an update – Havij v1.14.
“Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By [...]
You can find our first mention about Hexjector in our post here. Now, the author has made an experimental release – the Hexjector version 1.0.7.5 Rev34 available for download! This version is called Alphonic.
“Hexjector is an open-source, multi-platform PHP script to automate site penetration tests for SQL Injection Vulnerabilities.”
This is the updated change log:
Error_Check, [...]
Our first post regarding Havij can be found here. Now, the author has released an update – Havij v1.13.
“Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using this software user can [...]
Our first post regarding Havij can be found here. Now, the author has released an update – Havij v1.12. The author now provides a commercial, paid version too! Check it out if you liked the free version.
“Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection [...]
You can find our first post regarding Laudanum here. Now, the author has updated the tool to Laudanum version 0.2.
“Laudanum is a collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments.They provide functionality such as shell, [...]
You can find our first mention about Hexjector in our post here. Now, Hexjector has been updated to version 1.0.7.4
“Hexjector is an open-source, multi-platform PHP script to automate site penetration tests for SQL Injection Vulnerabilities.”
This is the official change log:
MsAccess SQL Injection is not added yet, it will be added in the next version.
MySQL Injection [...]
Page 1 of 1
1