OSDN -- 开发和下载开源软件
简体中文翻译状态 translation status for zh

RSS
Download List

项目描述

sqlmap is a penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a detection engine, many niche features, and a broad range of switches including database fingerprinting, data fetching from the database, and accessing the underlying file system and executing commands on the operating system via out-of-band connections.

系统要求

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2007-11-06 23:19 Back to release list
0.5

此版本增加了对甲骨文的支持,扩展带内SQL注入功能( -联合使用)对所有可能出现的问题,增加了支持一个数据库中提取用户对微软SQL Server密码哈希,增加了与目标一模糊测试工具的功能解析HTML页面寻找标准数据库错误消息(因而提高数据库指纹),增加了支持SQL基于HTTP Cookie和用户注射剂头,并有许多其他变化。
标签: Major bugfixes
This release adds support for Oracle, extends inband SQL injection functionality (--union-use) to all possible queries, adds support to extract a database user's password hash on Microsoft SQL Server, adds a fuzzer function with the aim to parse HTML pages looking for standard database error messages (consequently improving database fingerprinting), adds support for SQL injection on HTTP Cookie and User-Agent headers, and has many other changes.

Project Resources

Project Page 首页