Metasploit mailing list archives

SQL Injection with msf v3.1

From: diaul at devilopers.org (diaul)
Date: Thu, 21 Feb 2008 09:51:38 +0100

Hi Folks

Some time ago (June/06) I wrote a poc msf3 module that exploits blind
SQL Injection in mysql.

See attach.

PLS:
- Remember this is a very old and creapy code.
- My colleagues inquis & belch goes further from this work and developed
a tool ( http://sqlmap.sourceforge.net/ )

Diaul

Edouard Zorrilla wrote:

Hello,

Is it possible to run SQL Injection using msf v3.1 ?

Regards
_______________________________________________
http://spool.metasploit.com/mailman/listinfo/framework


-------------- next part --------------
A non-text attachment was scrubbed...
Name: sqlinject.rb
Type: application/x-ruby
Size: 6832 bytes
Desc: not available
URL: <http://mail.metasploit.com/pipermail/framework/attachments/20080221/fb02a63f/attachment.rb>

Current thread:

Doing a thesis regarding security, (continued)
- - - Doing a thesis regarding security H D Moore (Feb 18)
  - Doing a thesis regarding security Edouard Zorrilla (Feb 19)
    - Doing a thesis regarding security H D Moore (Feb 19)
    - Doing a thesis regarding security Tim (Feb 19)
- Doing a thesis regarding security Simen Bjelke (Feb 19)
  - Doing a thesis regarding security Edouard Zorrilla (Feb 19)
  - SQL Injection with msf v3.1 Edouard Zorrilla (Feb 20)
    - SQL Injection with msf v3.1 Patrick Webster (Feb 20)
    - SQL Injection with msf v3.1 Fabrice MOURRON (Feb 20)
    - SQL Injection with msf v3.1 Edouard Zorrilla (Feb 20)
    - SQL Injection with msf v3.1 diaul (Feb 21)