The Mole – Automatic SQL Injection
SQLi Exploitation Tool
Note: This is only information post and I am not to be held responsible for any action done by you after reading this tutorial. This post is for educational purposes only. It is also aim at informing you guys out there to be careful of your action.
The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique.
Features
- Support for injections using Mysql, SQL Server, Postgres and Oracle databases.
- Command line interface. Different commands trigger different actions.
- Auto-completion for commands, command arguments and database, table and columns names.
- Support for query filters, in order to bypass certain IPS/IDS rules using generic filters, and the possibility of creating new ones easily.
- Developed in python 3.
If you want to know how to use The Mole there’s a good tutorial here.
You can download The Mole here:
Windows: themole-0.2.6-win32.zip
Linux: themole-0.2.6-lin-src.tar.gz
No comments:
Post a Comment
NO LINK!!!!!!!!