“BSQL Hacker” – Automated SQL Injection Framework

Hacking Tools Input Validation Attacks

BSQL Hacker is an automated SQL Injection Framework / Tool designed to exploit SQL injection vulnerabilities in virtually any database.

It ships with Automated Attack modules which allows the dumping of whole databases for the following DBMS:
* MS-SQL Server
* ORACLE
* MySQL (experimental)

Attack Templates for :
* MS Access
* MySQL
* ORACLE
* PostgreSQL
* MS-SQL Server

Also you can write your own attack template for any other database as well (see the manual for details). New attack templates and exploits for specific web application SQL Injections).

It supports :
* Blind SQL Injection (Boolean Injection)
* Full Blind SQL Injection (Time Based)
* Deep Blind SQL Injection (a new way to exploit BSQLIs)
* Error Based SQL Injection

It allows metasploit alike exploit repository to share and update exploits and attack temlpates.

Download BSQL Hacker :
http://labs.portcullis.co.uk/download/BSQLHackerSetup-0907.exe

More Info :
http://labs.portcullis.co.uk/application/bsql-hacker/

Leave a Reply