sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers. It comes with a broad range of features lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
You Can Download it From Here :
كود:
http://sqlmap.sourceforge.net/#download
in this video i use sqlmap to dump out database information by automatically abusing the SQL injection
* Dumping The Data Base
* Dumping The Tables
* Gen A Reverse Shell Using The Sqlmap
* its Work also With Metasploit
You Should Know :
Svn Up To Update The Tools
sqlmap --help its Your Friend
watch this video Online
كود:
http://blip.tv/play/AYH%2B1EUC
التعديل الأخير تم بواسطة anti-trust ; 02-13-2011 الساعة 07:22 PM.
02-13-2011, 07:20 PM
SQLMAP The Basic
العرض الشجري