Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote access on the vulnerable DB server, even in a very hostile environment. It should be used by penetration testers to help and automate the process of taking over a DB Server when a SQL Injection vulnerability has been discovered.
What is New In SQLNinja v0.2.6-rc1
- Added ICMP shell
- Added support for CVE-2010-0232 (KiTrap0d)
- Added header-based injection
- Removed conf file autogen (unsuited to new way to configure injection)
- Bug fixes
This release is basically an official release with all the new features that have been in the SVN for a while. More specifically, it adds support for CVE-2010-0232 that escalates the sqlsrvr.exe process to SYSTEM privileges and the essential ICMP shell!
Download SQLNinja v0.2.6-rc1 (sqlninja-0.2.6-rc1.tgz) Here