Absinthe-1.1.tar.gz提交时间:2004-12-09 更新时间:2004-12-10 提交用户:lam_19418 工具分类:攻击程序 运行平台:Unix/Linux 工具大小:146294 Bytes 文件MD5 :3048342bb3759496f80c976839e8cbfd 工具来源:http://www.0x90.org/ Absinthe is a GUI-based (GTK-Sharp) tool that automates the process of downloading the schema & contents of a database that is vulnerable to Blind SQL Injection. It works by profiling response pages as true or false from known cases, then moves on to identify unknowns as true or false. It was initially presented at BlackHat USA 2004 and Defcon 12 (under the name "SQueaL"). The name has changed, and it is now open source. Absinthe does not aid in the discovery of SQL Injection holes. This tool will only speed up the process of data recovery. Features: * Automated SQL Injection * Supports MS SQL Server, MSDE, Oracle, Postgres * Cookies / Additional HTTP Headers * Query Termination * Additional text appended to queries * Supports Use of Proxies / Proxy Rotation * Multiple filters for page profiling * Custom Delimiters >> 下载 << |
