Be the first to post a text review of sqlninja. Rate and review a project by clicking thumbs up or thumbs down in the right column.

View all reviews

• sqlninja 0.2.3-r1 file released: sqlninja-0.2.3-r1.tgz

  + Added unobfuscated SQL in debug output + Fixed a bug in the Metasploit module + Fixed a few minor bugs

  posted 323 days ago

• File released: /sqlninja/0.2.3-r1/sqlninja-0.2.3-r1.tgz

  posted 323 days ago

• Tracker artifact added

  Anonymous created the makescr.pl bug artifact

  posted by nobody 426 days ago

• Sqlninja 0.2.3 has been released!

  Brand new version of sqlninja ! Fancy going from a SQL Injection to a full GUI access on the DB server? What about extracting password hashes on the fly? Take a few new SQL Injection tricks, add a couple of remote shots in the registry to disable Data Execution Prevention, mix with a little Perl that automatically generates a debug script, put all this in a shaker with a Metasploit wrapper, shake well and you have the latest release of sqlninja! Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide remote access on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered. It is released under the GPLv2 , and it has been featured on SecurityHack's Top 15 Free SQL Injection Scanners and on Hacking Exposed, which is a good result for something that started as a small script written on-the-fly during a pen-test :) Happy hacking !

  posted by icesurfer 533 days ago

• sqlninja 0.2.3 file released: sqlninja-0.2.3.tgz

  Version 0.2.3: + Added metasploit module + Added makescr.pl + Dirshell module now allows to specify an alternate host

  posted 533 days ago

• File released: /sqlninja/0.2.3/sqlninja-0.2.3.tgz

  posted 533 days ago

• sqlninja 0.2.2 released!

  Brand new version of sqlninja ! Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered. It is released under the GPLv2 , and it has been featured on SecurityHack's Top 15 Free SQL Injection Scanners and on Hacking Exposed, which is a good result for something that started as a small script written on-the-fly during a pen-test :) This new release features four evasion techniques aimed to confuse and bypass a lot of signature-based IPS/WAF. There is also a new 'blind command' attack mode, and a more sophisticated upload mode. Happy hacking !

  posted by icesurfer 659 days ago

• sqlninja 0.2.1 released !

  Brand new release of sqlninja! Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered. This version features an extended fingerprint engine and a new incremental-style bruteforce flavor that uses the remote DB server resources to crack the 'sa' password. Check out http://sqlninja.sf.net for more information and a flash demo of the tool in action.

  posted by icesurfer 764 days ago

• sqlninja 0.1.1 released !

  sqlninja is a SQL Injection exploitation tool for Microsoft SQL Server 2000 and 2005. Its goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered. In a nutshell, here's what it does: - fingerprint of the remote SQL Server (version, user performing the queries, user privileges, xp_cmdshell availability) - bruteforce of the 'sa' password - privilege escalation to 'sa' - creation of a custom xp_cmdshell if the original one has been disabled - upload of netcat or other executables using only 100% ascii HTTP requests - reverse scan in order to look for a port that can be used for a reverse shell - direct and reverse shell, both TCP and UDP - DNS tunneled pseudoshell, when no ports are available for a bindshell It is written in perl and runs on Unix. Enjoy !

  posted by icesurfer 1065 days ago

• sqlninja 0.1.0alpha released

  Sqlninja is a small penetration testing tool for the exploitation of SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment (i.e.: paranoid firewall settings). This new release provides the ability of tunneling the shell output into DNS requests, bypassing firewalls with paranoid rules. It is still an alpha version and there are lots of bugs to be found and fixed, so go ahead and play with it!

  posted by icesurfer 1241 days ago