After discovering the new release of the excellent SQL Injection tool sqlmap I have done some testing and rolled it out to the HackerTarget.com scanning servers. If you are not familiar with the power of sqlmap head over to the sourceforge site for demo videos and some top notch documentation. Our scanning tools are configured [...]
Tag Archives: sql injection
When Neo Hacked the Latvian SRS Database
Movie plots cross into real life in Latvia where a significant security breach has occurred in the hacking of the Latvian SRS Databse. A group of hackers has stirred the nation after hacking into the countries taxation web site and revealing details of the powerful political elites wages and bonuses. One of the hackers used [...]
SQL Injection Demystified
Darkreading has a great article up on SQL Injection. This form of attack has been around for a long time, and happens because of poor dynamic website coding practices. A simple SQL injection vulnerability can often be exploited to gain full access to the database and / or full control of the database server. Now [...]
Sqlmap 0.7 released and added to HackerTarget.com sqli scan option
Bernardo Damele A. G. has released the latest update to sqlmap 0.7 and it is fast become the leading SQL injection tool for penetration testing. A python based script that can give you full shell access amongst other things on an sql injection exploitable host. This is a must have on a web application pentest. [...]
