Results 1 to 2 of 2

Thread: MySqloit is a SQL Injection takeover tool focused on LAMP/WAMP

Threaded View

  1. #1
    Moderator firebits's Avatar
    Join Date
    Mar 2010

    Lightbulb MySqloit is a SQL Injection takeover tool focused on LAMP/WAMP

    MySqloit is a SQL Injection takeover tool focused on LAMP (Linux, Apache,MySql,PHP) and WAMP (Linux, Apache,MySql,PHP) platforms. It has the ability to upload and execute metasploit shellcodes through the MySql SQL Injection vulnerabilities.
    Attackers performing SQL injection on a MySQL-PHP platform must deal with several limitations and constraints. For example, the lack of multiple statements in one query makes MySQL an unpopular platform for remote code execution, compared to other platforms. This tool is written to demostrate how remote code execution can be performed on a database connector that do not support stack queries.

    Platform supported

    1) Linux

    Key Features
    1) SQL Injection detection using time based injection method
    2) Database fingerprint
    2) Web server directory fingerprint
    3) Payload creation and execution

    ./mysqloit -h


    Last edited by firebits; 12-01-2010 at 04:51 PM.

Similar Threads

  1. Injection tool by Pr0xY v2.2.0
    By Pr0xY in forum Tool Requests
    Replies: 5
    Last Post: 03-27-2011, 02:18 AM
  2. blind sql injection test tool
    By thrthr in forum Beginners Forum
    Replies: 3
    Last Post: 08-22-2010, 02:16 AM
  3. Replies: 2
    Last Post: 05-17-2010, 08:14 AM
  4. DHCP Takeover
    By Gitsnik in forum OLD Programming
    Replies: 1
    Last Post: 01-05-2010, 11:49 PM
  5. Tool request: NSAT (network security analysis tool)
    By williamc in forum OLD BT3beta General
    Replies: 10
    Last Post: 06-03-2008, 04:33 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts