Showing posts with label SQL. Show all posts
Showing posts with label SQL. Show all posts

Friday, 8 November 2013

[aidSQL] PHP Application For SQL Injection Detection & Exploitation


aidSQL a PHP application provided for detecting security holes in your website/s. It’s a modular application, meaning that you can develop your very own plugins for SQL injection detection & exploitation.

The tool provides pen-testing capabilities for MS-SQL 2000, MySQL 5 and the author promises to add Oracle 10g support – but that doesn’t seem to be happening.


You can view a demo of the app here:

The output from Wavsep for aidSQL can also be seen here:
aidSQL vs Wavsep
Read more here.

Posted by at No comments:
Labels: , , , , ,

Sunday, 3 November 2013

[Laudanum] Collection of injectable files

Laudanum is a collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments.They provide functionality such as shell, DNS query, LDAP retrieval and others.

Posted by at No comments:
Labels: , , , ,
Subscribe to: Comments (Atom)