Monday, March 26, 2012

SQLMap Gui - Automatic SQL injection and database takeover tool

This is a awesome sqlmap python gui made by xcedz.To make it work get and install python 2.7 and download the last version of sqlMap-dev

svn checkout https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlMap-dev 

after doing that download the gui script from
 
http://code.google.com/p/gui-for-sqlmap/downloads/list 



sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.


And here is Another  Windows GUI for sqlmap written in C#  


you have to enter the database parameters, select the table and column that you want to enumerate and press Exploit. SQL Map GUI will do the rest! 

Honestly I recommend you python version because works better!

2 comments:

Anonymous said...

update. Added option: --no-cast =)

Anonymous said...

Another GUI at
http://blog.amanhardikar.com/#category4