SQLMAP - Automatic SQL Injection Tool 1.8
2024-1-4 21:41:7 Author: packetstormsecurity.com(查看原文) 阅读量:8 收藏

SQLMAP - Automatic SQL Injection Tool 1.8
Posted Jan 4, 2024
Authored by Bernardo Damele | Site sqlmap.org

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.

Changes: Major release bump with a large list of changes.
tags | tool, web, overflow, arbitrary, vulnerability, sql injection
systems | unix
SHA-256 | 11ff3ec22c20f9df79ec9d008e2f17311a5e18930cc1feb4e4ad744271565916
Download | Favorite | View

文章来源: https://packetstormsecurity.com/files/176380/sqlmap-1.8.tar.gz
如有侵权请联系:admin#unsafe.sh