Warning: file_get_contents(/home/sechome/www/git/repositories) [function.file-get-contents]: failed to open stream: No such file or directory in /home/brad/bcable.net/includes/proj_vars.php on line 166
BCable.net - SQLIer
Brad Cable · SQLIer
Main
Home
Contact
License
Archived News
Surrogafier Demo
Git Repository
Projects
Surrogafier
1.0-rc3
SQLIer
0.8.2b
LFWrap
1.1
VulnDetector
0.0.2pa
WebSH
0.1a
SrcControl
0.2.2b
  ...More Projects
Publications
01. My Awesome System
02. Blue Fluid
03. Go Learning Research
Art
Tree Man
Links
Aleph-Zero
Freshmeat
Brian Cable
ItsYourTurn
Cardamar
Jamendo
DI.fm
Kahvi
EFF.org
Panenthe
Free Talk Live
scene.org
Other Useful Projects
Fluxbox
PHP.net
Git
Python
GNU.org
Slackware
grml.org
Vim.org
Ion
Zsh.org
"Anyone who has never made a mistake has never tried anything new."

 - Albert Einstein
 
Info Changelog DocumentationDownload Git
 
SQLIer 0.8.2b - Thu Aug 17 02:09:40 CDT 2006
SQLIer takes an SQL Injection vulnerable URL and attempts to determine all the necessary information to build and exploit an SQL Injection hole by itself, requiring no user interaction at all (unless it can't guess the table/field names correctly). By doing so, SQLIer can build a UNION SELECT query designed to brute force passwords out of the database. This script also does not use quotes in the exploit to operate, meaning it will work for a wider range of sites.

An 8 character password (containing any character from decimal ASCII code 1-127) takes approximately 1 minute to crack.

Screenshots:

Home · Contact · Archived News · License · Projects · Surrogafier Demo · Git Repository