Welcome, Guest! Log In | Create Account

Donate Share

sqlninja

by icesurfer

Sqlninja is an exploitation tool to be used against web applications based on MS SQL Server that are vulnerable to SQL Injection attacks, in order to get a shell also in very hostile conditions. For more information please check http://sqlninja.sf.net


http://sqlninja.sourceforge.net

Security

Project Feed

  • sqlninja 0.2.3-r1 file released: sqlninja-0.2.3-r1.tgz

    + Added unobfuscated SQL in debug output
    
    + Fixed a bug in the Metasploit module
    
    + Fixed a few minor bugs

    12:53AM on Dec 22 2008

  • Tracker artifact added

    Anonymous created the makescr.pl bug artifact

    07:36PM on Sep 09 2008 by nobody

  • Sqlninja 0.2.3 has been released!

    Brand new version of sqlninja ! Fancy going from a SQL Injection to a full GUI access on the DB server? What about extracting password hashes on the fly? Take a few new SQL Injection tricks, add a couple of remote shots in the registry to disable Data ...

    10:51AM on May 25 2008 by icesurfer

  • sqlninja 0.2.3 file released: sqlninja-0.2.3.tgz

    Version 0.2.3:
    
    + Added metasploit module
    
    + Added makescr.pl
    
    + Dirshell module now allows to specify an alternate host

    10:42AM on May 25 2008

  • sqlninja 0.2.2 released!

    Brand new version of sqlninja ! Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a ...

    02:54PM on Jan 20 2008 by icesurfer

  • sqlninja 0.2.1 released !

    Brand new release of sqlninja! Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a ...

    12:25PM on Oct 07 2007 by icesurfer

  • sqlninja 0.1.1 released !

    sqlninja is a SQL Injection exploitation tool for Microsoft SQL Server 2000 and 2005. Its goal is to provide a remote shell on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the ...

    12:22PM on Dec 10 2006 by icesurfer

  • sqlninja 0.1.0alpha released

    Sqlninja is a small penetration testing tool for the exploitation of SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very hostile ...

    02:02PM on Jun 17 2006 by icesurfer

  • Code committed

    Anonymous committed patchset 1 of module CVSROOT to the sqlninja CVS repository, changing 11 files

    05:11PM on Nov 09 2005 by nobody

  • Forum thread added

    Anonymous created the Welcome to Developers forum thread

    04:12PM on Nov 09 2005 by nobody

sqlninja Actions