jSQL Injection: Java application for automatic SQL database injection – Penetration Testing

jSQL Injection is a lightweight application used to find database information from a distant server.

It is free, open-source and cross-platform (Windows, Linux, Mac OS X).

Kali Linux logo jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in other distributions like Pentest Box, Parrot Security OS, ArchStrike or BlackArch Linux.

Features

Automatic injection of 23 kinds of databases: Access, CockroachDB, CUBRID, DB2, Derby, Firebird, H2, Hana, HSQLDB, Informix, Ingres, MaxDB, Mckoi, MySQL{MariaDb}, Neo4j, NuoDB, Oracle, PostgreSQL, SQLite, SQL Server, Sybase, Teradata and Vertica

Multiple injection strategies: Normal, Error, Blind and Time

SQL Engine to study and optimize SQL expressions

Injection of multiple targets

Search for administration pages

Creation and vizualisation of Web shell and SQL shell

Read and write files on host using injection

Bruteforce of password’s hash

Code and decode a string

Installation

Install Java 8, then download the latest release of jSQL Injection and double-click on the file jsql-injection-v0.79.jar to launch the software.
You can also type java -jar jsql-injection-v0.79.jar in your terminal to start the program.
If you are using Kali Linux then get the latest release using commands apt update then apt full-upgrade

Demo

Source: Github

The post jSQL Injection: Java application for automatic SQL database injection appeared first on Penetration Testing.

Anúncios

Deixe um comentário

Preencha os seus dados abaixo ou clique em um ícone para log in:

Logotipo do WordPress.com

Você está comentando utilizando sua conta WordPress.com. Sair / Alterar )

Imagem do Twitter

Você está comentando utilizando sua conta Twitter. Sair / Alterar )

Foto do Facebook

Você está comentando utilizando sua conta Facebook. Sair / Alterar )

Foto do Google+

Você está comentando utilizando sua conta Google+. Sair / Alterar )

Conectando a %s