Sqlmap 0.9 Available For Download Now
Sqlmap is a very popular tool used which automates the method of discovering a Sql injection flaw in a web application and exploitati...
http://kingofdkingz99.blogspot.com/2011/08/sqlmap-09-available-for-download-now.html
Sqlmap is a very popular tool used which automates the method of discovering a
Sql injection flaw in a web application and exploitation part as well. Sqlmap team has just released the newest version of Sqlmap, Sql map comes in with lots of changes including a fully re-written SQL Injection flaw detecting engine.
* Rewritten SQL injection detection engine (Bernardo and Miroslav).
* Support to directly connect to the database without passing via a SQL injection, -d switch (Bernardo and Miroslav).
* Added full support for both time-based blind SQL injection and error-based SQL injection techniques (Bernardo and Miroslav).
* Implemented support for SQLite 2 and 3 (Bernardo and Miroslav).
* Implemented support for Firebird (Bernardo and Miroslav).
* Implemented support for Microsoft Access, Sybase and SAP MaxDB (Miroslav).
* Added support to tamper injection data with –tamper switch (Bernardo and Miroslav).
* Added automatic recognition of password hashes format and support to crack them with a dictionary-based attack (Miroslav).
* Added support to fetch unicode data (Bernardo and Miroslav).
* Added support to use persistent HTTP(s) connection for speed improvement, –keep-alive switch (Miroslav).
* Implemented several optimization switches to speed up the exploitation of SQL injections (Bernardo and Miroslav).
* Support to parse and test forms on target url, –forms switch (Bernardo and Miroslav).
* Added switches to brute-force tables names and columns names with a dictionary attack, –common-tables and –common-columns.
You can download Sqlmap 0.9 here
Sql injection flaw in a web application and exploitation part as well. Sqlmap team has just released the newest version of Sqlmap, Sql map comes in with lots of changes including a fully re-written SQL Injection flaw detecting engine.
Features
Here are some of the newset features in Sqlmap 0.9:* Rewritten SQL injection detection engine (Bernardo and Miroslav).
* Support to directly connect to the database without passing via a SQL injection, -d switch (Bernardo and Miroslav).
* Added full support for both time-based blind SQL injection and error-based SQL injection techniques (Bernardo and Miroslav).
* Implemented support for SQLite 2 and 3 (Bernardo and Miroslav).
* Implemented support for Firebird (Bernardo and Miroslav).
* Implemented support for Microsoft Access, Sybase and SAP MaxDB (Miroslav).
* Added support to tamper injection data with –tamper switch (Bernardo and Miroslav).
* Added automatic recognition of password hashes format and support to crack them with a dictionary-based attack (Miroslav).
* Added support to fetch unicode data (Bernardo and Miroslav).
* Added support to use persistent HTTP(s) connection for speed improvement, –keep-alive switch (Miroslav).
* Implemented several optimization switches to speed up the exploitation of SQL injections (Bernardo and Miroslav).
* Support to parse and test forms on target url, –forms switch (Bernardo and Miroslav).
* Added switches to brute-force tables names and columns names with a dictionary attack, –common-tables and –common-columns.
You can download Sqlmap 0.9 here
