sqlmap
sqlmap copied to clipboard
sqlmapproject
Automatic SQL injection and database takeover tool
It would be great to give sqlmap a WSDL file or WSDL url, it parses it and start assessing each tag method for SQL injections. Example: http://demo.testfire.net/bank/ws.asmx?WSDL. Support for SOAP...
In both --file-upload and --os-pwn provide the user with the option to download onto the DBMS filesystem the payload stager (or shellcodeexec executable) via HTTP/TFTP/FTP server from the attacker (or...
- MSSQL: OPENROWSET - PgSQL: dblink()
We have already got OOB database server takeover via TCP (using Metasploit payloads: shell, Meterpreter, VNC), via ICMP (using icmpsh). It is time to implement out-of-band via DNS. DNS tunneling...
References: - http://delicious.com/inquis/oracle
Now that Metasploit properly runs on Windows too (without cygwin), we definitely need to support all functionalities on Windows too, if possible. Hence, --os-pwn/--os-smbrelay/--os-smb code need to be reviewed: metasploit.py,...
Add support to takeover the file system when the back-end DBMS is IBM DB2
Adding full support for another dbms is a pain in the ass 'cause around the whole code there's stuff like if kb.dbms == "MySQL" [...] elif kb.dbms in ( "Oracle"...
PostgreSQL 9.0, 9.1 and 9.2 are out since a while now. We need to compile UDFs for those versions too, both 32-bit and 64-bit on Linux and Windows.
Both for attacker (after the DBMS fingerprint output) and for developer/DBA (at the end, just before the "shutting down" message). Report also about known vulnerabilities based on DBMS exact version...
Metadata
Owner
Metadata
Automatic SQL injection and database takeover tool