The most advanced GUI tool for aiding in full compromises of MSSQL servers via SQL injection. System Requirements: Windows 动画参考:
Author: Scott White, Senior Security Consultant
Release: August 10, 2008 by SecureState, 2pm at Defcon 16, Las Vegas, NV
SA Exploiter v.1 beta is the most advanced and only GUI tool available solely targeting SQL injection with excessive privileges to root MSSQL servers. SA Exploiter is a standalone windows portable executable that automates the generation of injection strings for use with popular attacks such as the “ftp answer file” attack, as well as other more advanced attacks using binary payload injection. The tool takes the widely known 64k limitation of Windows debug and successfully allows Metasploit shellcode to be copy/pasted or custom exe’s to be delivered for execution without the use of egress connections like ftp/tftp. The tool also features code generation of many tasks such as disabling antivirus, turning on xp_cmdshell, adding user accounts, etc.
Installation Instructions:Standalone exe, no install needed.
分享本身就是件快乐的事 我因别人得到帮助而感到幸福
SA Exploiter
2009年4月10日 12:11:32 发布:Trace
Tags: sa Exploit Exploite sql injection
固定链接 | 分类:Download | 评论:0 | 引用:0 | 浏览:
- 相关文章:
ProxyStrike v2.1 released (2009-3-18 7:39:56)
SQL injection: Not only AND 1=1 (2009-3-12 15:38:58)
sqlsus 0.2 released (2009-3-5 10:43:52)
Bsqlbf v2.2 (2009-3-4 0:21:36)
ShopEx 4.7.2 0day (2009-3-1 8:55:55)
动易SiteWeaver6.6版最新漏洞利用工具 (2009-2-20 16:23:54)
sql_2005_inj 0.2 Final Coded By kook1991 (2009-2-14 19:10:15)
SFX-SQLi: A new SQL injection technique for MSSQL (dumps a table in one request!) (2009-2-7 1:41:56)
Full MSSQL Injection PWNage (2009-2-3 22:29:26)
sql_2005_inj[MSSQL2005注射工具] (2009-1-18 14:1:47)
◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。
