Multi-purpose SQL injection script for advanced Microsoft SQL Server exploitation. Three modes of operation are currently available: info (Information Gathering), dump (Record Dump), and brute (Brute Force).
CHANGELOG (v1.0):
- french language support added (courtesy of
- small fix to better handle cookies (for post-auth injections)
- replaced i=`expr $i + 1` with i=$(($i + 1)) to avoid some fork()s
TODO (v1.0):
- fix italian language support (test platform needed)
- info mode: add logins target (master..sysxlogins) [name,dbname,password]
- brute mode: automatic login grabbing feature?
- info mode: add sys target (xtype=’S')?
- info mode: implement better types/keys dumping
- add a command execution mode via master..xp_cmdshell?
- add a privileged testing mode for post-auth vulnerabilities
0 comments:
Post a Comment