Havij SQL Injection
Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page.The power of Havij that makes it different from similar tools is its injection methods. The success rate is more than 95% at injectiong vulnerable targets using Havij.The user friendly GUI (Graphical User Interface) of Havij and automated settings and detections makes it easy to use for everyone even amateur users.
Download
Pangolin – Automated SQL Injection Test Tool
Pangolin is a penetration testing, SQL Injection test tool on database security. It finds SQL Injection vulnerabitlities.Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications.
Download
The Mole
The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique.
Download
SQLNinja
Sqlninja’s goal is to exploit SQL injection vulnerabilities on web applications that use Microsoft SQL Server as back end. There are a lot of other SQL injection tools out there but sqlninja, instead of extracting the data, focuses on getting an interactive shell on the remote DB server and using it as a foothold in the target network.
Download
Safe3SI
Safe3SI is one of the most powerful and easy usage penetration tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a kick-ass detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Download
BSQL Hacker
BSQL (Blind SQL) Hacker is an automated SQL Injection Framework / Tool designed to exploit SQL injection vulnerabilities virtually in any database.
Download
FatCat Automatic SQL Injection | http://code.google.com/p/fatcat-sql-injector/ |
SQL Map | http://sqlmap.sourceforge.net/ |
SQL Pozion | http://www.4shared.com/rar/kUtKKQxy/sql_poizon_v11_-_the_exploit_s.html? |
Sqlsus | http://sqlsus.sourceforge.net/download.html |
Dark Jumper | http://mac.softpedia.com/get/Security/Darkjumper.shtml |
Nice interesting blog... It clearly show the importance of SQL injection and provide nice information abut SQL injection test
ReplyDelete