OSDN -- 오픈 소스 소프트웨어 개발 및 다운로드
Translation Status of 한국말 translation status for ko

RSS
Download List

프로젝트 설명

SQLIer takes an URL vulnerable to SQL injection attacks and attempts to determine all of the necessary information to build and exploit an SQL injection hole by itself. It requires no user interaction unless it can't guess the table/field names correctly. By doing so, it can build a UNION SELECT query designed to brute force passwords out of the database. It does not use quotes in the exploit, meaning it will work for a wider range of sites. An 8 character password (containing any character from decimal ASCII code 1-127) takes approximately one minute to crack.

System Requirements

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2006-08-17 10:26 Back to release list
0.8.1b

비 - 장님 사출 지원 하위 쿼리에 대한 지원과 함께 추가되었습니다 기반을 이용한다. "UNION 선택"지금 포기하기 전에 몇 가지 일반적인 필터링 메커니즘을 무시하려고 이용한다. 검색 엔진, 사출 문제들을 고치는 변경했다. 기타 여러 버그수정 및 엔진을 개조하면 되겠어되었다.
Tags: Major feature enhancements
Non-blind injection support was added along with support for subquery-based exploits. "UNION SELECT" exploits now attempt to bypass some common filtering mechanisms before giving up. The detection engine was altered, fixing a bunch of injection issues. Various other bugfixes and engine tweaks were made.

Project Resources

Project Page 다운로드: changelog Home Page 다운로드: TGZ