Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Mini MySqlat0r release

From: MiniMySqlat0r <mms () scrt ch>
Date: Mon, 13 Oct 2008 14:53:51 +0200
Mini MySqlat0r is a multi-platform application used to audit web sites
in order to discover and exploit SQL injection vulnerabilities in
applications that use MySQL for storing data. It is written in Java and
is used through a user-friendly GUI that contains three distinct modules.

The Crawler module allows the user to view the web site structure and
gather all tamperable parameters. These parameters are then sent to the
Tester module that tests all parameters for SQL injection
vulnerabilities. If any are found, they are then sent to the Exploiter
module that can exploit the injections to gather data from the database.

Mini MySqlat0r is freely downloadable (GPL licence) from
http://www.scrt.ch/pages_en/minimysqlator.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: