Metasploit mailing list archives
Re: equivalance of darkOraSQli.py
From: Jacky Jack <jacksonsmth698 () gmail com>
Date: Fri, 26 Mar 2010 09:34:08 +0800
Thanks, by the way, sqlmap sucks to me. For some URL (get request) , it states that the params are not injectable where they are in fact injectable. On Fri, Mar 26, 2010 at 12:57 AM, Ulisses Castro <uss.thebug () gmail com> wrote:
Hi Jacky, Metasploit has sqlmap module inside, also you can use stand alone sqlmap too. My two cents... On Wed, Mar 24, 2010 at 10:05 PM, Jacky Jack <jacksonsmth698 () gmail com> wrote:Hi all As darkc0de is down, I can't download darkOraSQli which use Oracle SQL Injection that exploits dbms_export_extension. Does Metasploit have such kind of plugins for attacking Oracle via web ? Thank you. _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework-- Ulisses Castro, CEH, LPIC-2 Security Researcher Blog: http://ulissescastro.wordpress.com Twitter: http://www.twitter.com/usscastro Conviso IT Security - http://www.conviso.com.br
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- equivalance of darkOraSQli.py Jacky Jack (Mar 24)
- Re: equivalance of darkOraSQli.py Ulisses Castro (Mar 25)
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 25)
- Re: equivalance of darkOraSQli.py Richard Miles (Mar 25)
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 25)
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 25)
- Message not available
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 26)
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 25)
- Re: equivalance of darkOraSQli.py Richard Miles (Mar 27)
- Re: equivalance of darkOraSQli.py Jacky Jack (Mar 27)
- Re: equivalance of darkOraSQli.py Ulisses Castro (Mar 25)