MySQL>> SQL-nightmare>> 返回
项目作者: rummykhan

项目描述 :
SQL SERVER Exploitation.
高级语言: C#
项目地址: git://github.com/rummykhan/SQL-nightmare.git
创建时间: 2017-03-18T19:36:03Z
项目社区:https://github.com/rummykhan/SQL-nightmare
开源协议:MIT License
下载


SQL Nightmare

An SQL SERVER Exploitation tool

Executable

Since this is source code, you can download exe from here SQL Nightmare

Functions

  1. Server Directory navigation.
  2. Server Database Dump.
  3. Read Server Files.
  4. Shell spawining.

Input URL Format

http://localhost:1234/index.aspx?param=1 AND 0 union select 1,'rummykhan',2 --X-

Replace the string/vulnerable column to ‘rummykhan’ and ending comments to —X-

Disclaimer

  1. This software was written for educational purposes only.
  2. Don’t use it on any site without prior permission of site owner.

Contact

Drop me an email at rehan_manzoor@outlook.com

MIT License

This software is licensed under The MIT License (MIT).

With Love for

| Lafangoo | Connecting | Ch3rn0by1 | exploiter-z | PMH`s Str!k3r | Makman | Madcode | g00n | benzi | Ricardo | Ajkaro | SOG | Jin | Zee-PK | Gujjar | Ashx | h98d (Hussein) | Muhammad Bilal |