Giter VIP home page Giter VIP logo

bsql's Introduction

To apply SQl Injection there is a very popular tool named as BSQL Hacker. You can download it from here.

=========================================================================================================================

bsql

bsql hacker tool

SQL (Structured Query Language) is the language used for interaction with databases. SQL injection is a web application attack that injects malicious syntax in SQL Queries.

BSQL (Blind SQL) Hacker is an automated SQL Injection Framework / Tool designed to exploit SQL injection vulnerabilities virtually in any database.

BSQL Hacker aims for experienced users as well as beginners who want to automate SQL Injections (especially Blind SQL Injections).It allows metasploit alike exploit repository to share and update exploits.

Blind SQL Hacker Key Features

Easy Mode SQL Injection Wizard Automated Attack Support (database dump) ORACLE MSSQL MySQL (experimental) General Fast and Multithreaded 4 Different SQL Injection Support Blind SQL Injection Time Based Blind SQL Injection Deep Blind (based on advanced time delays) SQL Injection Error Based SQL Injection Can automate most of the new SQL Injection methods those relies on Blind SQL Injection RegEx Signature support Console and GUI Support Load / Save Support Token / Nonce / ViewState etc. Support Session Sharing Support Advanced Configuration Support Automated Attack mode, Automatically extract all database schema and data mode Update / Exploit Repository Features Metasploit alike but exploit repository support Allows to save and share SQL Injection exploits Supports auto-update Custom GUI support for exploits (cookie input, URL input etc.) GUI Features Load and Save Template and Attack File Support (Users can save sessions and share them. Some sections like username, password or cookie in the templates can be show to the user in a GUI) Visually view true and false responses as well as full HTML response, including time and stats Connection Related Proxy Support (Authenticated Proxy Support) NTLM, Basic Auth Support, use default credentials of current user/application SSL (also invalid certificates) Support Custom Header Support Injection Points (only one of them or combination) Query String Post HTTP Headers Cookies Other Post Injection data can be stored in a separated file XML Output (not stable) CSRF protection support

bsql's People

Contributors

tushar-vishwakarma avatar

Watchers

avatar

Forkers

aramrami server-side-injection-tools amo95 seezeef hnk7

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.