Netsparker Community Edition – Web Application Security Scanner
Netsparker is a Web Application Security Scanner that claims to be False-Positive Free. The developers thought that if you need to investigate every single identified issue manually what’s the point...
View ArticleHavij – Advanced Automated SQL Injection Tool
Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using...
View ArticleSQLInject-Finder – Intelligent SQL Injection Detection Script
SQLInject-Finder is a simple python script that parses through a pcap and looks at the GET and POST request data for suspicious and possible SQL injects. Rules to check for SQL injection can be easily...
View Articlesqlmap 0.9 Released – Automatic Blind SQL Injection Tool
It’s been a while since we’ve written about sqlmap, the last time was when 0.7 was released back in July 2009 – sqlmap 0.7 Released – Automatic SQL Injection Tool. Well sqlmap 0.9 has been released and...
View Articlesqlsus 0.7.1 Released – MySQL Injection & Takeover Tool
sqlsus is an open source MySQL injection and takeover tool, written in perl. Via a command line interface, you can retrieve the database(s) structure, inject your own SQL queries (even complex ones),...
View ArticleThe Mole – Automatic SQL Injection SQLi Exploitation Tool
The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union...
View ArticleMySQLPasswordAuditor – Free MySQL Audit/Password Recovery & Cracking Tool
MysqlPasswordAuditor is the FREE Mysql password recovery and auditing software. Mysql is one of the popular and powerful database software used by most of the web based and server side applications. If...
View ArticlexSQLScanner – Database Password Cracker & Security Audit Tool For MS-SQL & MySQL
xSQL Scanner is a advanced SQL audit tool that allows users to find weak passwords and vulnerabilities on MS-SQL and MySQL database servers. The objective of xSQLScanner is to assist the Security...
View ArticleMySQL 1 Liner Hack Gives Root Access Without Password
The latest news that has hit the streets is the occurence of the easiest hack ever, if you have local shell access (any user privelege level) and you can connect to MySQL – you can get root access to...
View ArticleThe Mole v0.3 Released For Download – Automatic SQL Injection Exploitation Tool
The Mole is an automatic SQL Injection exploitation tool. All you need to do is provide a vulnerable URL and a valid string on the site you are testing and The Mole will detect the injection and...
View ArticleNavy Sys Admin Hacks Into Databases From Aircraft Carrier
So this story caught my eye and I found it pretty interesting as it reads like something out of a Tom Clancy novel crossed with a bunch of script kiddies, a Navy Sys Admin has been charged with...
View ArticleODAT (Oracle Database Attacking Tool) – Test Oracle Database Security
ODAT (Oracle Database Attacking Tool) is an open source penetration testing tool that test Oracle database security remotely. Usage examples of ODAT: You have an Oracle database listening remotely and...
View ArticleDBPwAudit – Database Password Auditing Tool
DBPwAudit is a Java database password auditing tool that allows you to perform online audits of password quality for several database engines. The application design allows for easy adding of...
View ArticleHexorBase – Administer & Audit Multiple Database Servers
HexorBase is a database application designed to administer and to audit multiple database servers simultaneously from a centralised location, it is capable of performing SQL queries and brute-force...
View ArticleDBShield – Go Based Database Firewall
DBShield is a Database Firewall written in Go that has protection for MySQL/MariaDB, Oracle and PostgreSQL databases. It works in a proxy fashion inspecting traffic and dropping abnormal queries after...
View Articlesqlmap 0.9 Released – Automatic Blind SQL Injection Tool
It’s been a while since we’ve written about sqlmap, the last time was when 0.7 was released back in July 2009 – sqlmap 0.7 Released – Automatic SQL Injection Tool. Well sqlmap 0.9 has been released and...
View Articlesqlsus 0.7.1 Released – MySQL Injection & Takeover Tool
sqlsus is an open source MySQL injection and takeover tool, written in perl. Via a command line interface, you can retrieve the database(s) structure, inject your own SQL queries (even complex ones),...
View Articlesqlmap 0.9 Released – Automatic Blind SQL Injection Tool
Views: 25,583 It’s been a while since we’ve written about sqlmap, the last time was when 0.7 was released back in July 2009 – sqlmap 0.7 Released – Automatic SQL Injection Tool. Well sqlmap 0.9 has...
View Articlesqlsus 0.7.1 Released – MySQL Injection & Takeover Tool
Views: 14,951 sqlsus is an open source MySQL injection and takeover tool, written in perl. Via a command line interface, you can retrieve the database(s) structure, inject your own SQL queries (even...
View ArticleMySQLPasswordAuditor – Free MySQL Audit/Password Recovery & Cracking Tool
Views: 17,112 MysqlPasswordAuditor is the FREE Mysql password recovery and auditing software. Mysql is one of the popular and powerful database software used by most of the web based and server side...
View Article