|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 76
Members: 0
Total: 76
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Advanced SQL injection complete tool pack(tutorials,scanner |
|
Posted: Sat Sep 18, 2010 1:36 pm |
|
|
lucky_che |
Beginner |
|
|
Joined: Sep 11, 2010 |
Posts: 1 |
|
|
|
|
|
|
|
Hello everybody ,
since i started learning SQLi , i have collected lots of good tools and documents , m still collecting more and more day by day as my scope of knowledge is increasing .
So thought of sharing what i have collected till now with everyone here,
My tool pack includes the following things.
1) [size=large]sqli scanner/automating injection pack :[/size]
contains 5 softwares for scanning ,and automating the hacking process
(a) Exploit scanner - for finding websites with dorks , and testing them for vulnerabilities.very famous
(b) Turkish ARTA - same as exploit scanner but not as famous bcos its turkish . i find it better then exploit scanner. but that my personal opinion
(c) Havij 1.12 free version : i guess everyone knows about it. it automates the process of performing sqli attack on any site.
it is extremely famous and efficient. but still it a tool nothing compared to manual process
(d) SQLI helper 2.7 : same like havij , but little fast .
(e)sqlinj Version 2 - another nice sql injection tool . i will write a tut later how to use this tool
2) [size=large]ADMIN Finder pack : [/size]
After getting the logins from the database . one needs to get the admin finder page. for some sites its very easy while for smoe site its hellova tough
here are some nice admin finder tools and lists tht u may use. but these tools are never enough .i will keep uploaing the amin finder lists as i get more
(a)reiiuke admin finder ( u can upadt the original admin finder lists with the list i am providing)
(b)5 perl and python admin finder tools/scripts. update them as per ur need
(c) misc softwre : admin pass locater , to brute force admi pass if u cant find it
YOU MIGHT ALSO LIKE THIS SITE
http://th3-0utl4ws.com/tools/admin-finder/
3) [size=large]DORKS Pack : [/size] Contains many files contiaing more then 7000 dorks.
4) Shells : this pack contins many shells and source codes , like c99 ,c100 , jackel and hellova more
( many shells like c99 are identified as trojans by many antivirus. so u might find ur antivirus shouting about this pack. )
U might also wanna see this site :
http://www.kinginfet.net/shells/
5)[size=large] MD5 cracking tools :[/size] although havij have md5 tool but for some reason it never worked for me . so this pack contains some tools .
ASLO THESE SITES WILL PROVE YOU GREAT HELP
http://www.md5decrypter.com/
http://www.md5decrypter.co.uk/
http://md5.rednoize.com/
http://md5decryption.com/
http://passcracking.com/
http://www.xmd5.org/
http://www.md5cracker.com/index.php
http://md5.noisette.ch/index.php
http://md5cracker.org
6)[size=large] SQLI tutorials pack : [/size]This pack contain complete html pages of sqli tutorails that i found useful from various forums and websites like hackforum , elitesoft ,warex , outlaws etc etc. i bet every newbe will love this pack .
u just need a firefox browser to open these html files.
NOTE: this pack also contain 2 of my own created sqli help files which i created myself, serves me as a very useful docment wheneever i m on to hack some site.
[size=large] i will kep updating these packs as i learn and collect more and more . [/size]
[size=large] NOTE: Virus information [/size]
All files are in winrar format so if u dont want to extract due to virus suspicion then dont extract that particular file
1) the sqli helper 2.7 is identified as some trojan.even if u download the tool form the original site u will get that virus alert . so i guess its false postive .(onw extract if u dont want . i dont care
2)SHELL pack will definately alert you for virus, bcos it contains many shell that are considered as trojna, extract it or not, choice is urs.again i dont care
3)ADMIN FINDER pack : some antivirus treat them as hack tools. so might get alreat. false positives.
Scanner pack details:
File name:sqli scanner pack.rar
Submission date:2010-09-18 12:16:53 (UTC)
Current status:queued (#13) queued (#5) analysing finished
Result:8/ 43 (18.6%)
Code: |
Antivirus Version Last Update Result
AhnLab-V3 2010.09.18.00 2010.09.17 -
AntiVir 8.2.4.52 2010.09.17 SPR/Tool.ExpScan
Antiy-AVL 2.0.3.7 2010.09.18 -
Authentium 5.2.0.5 2010.09.18 -
Avast 4.8.1351.0 2010.09.18 -
Avast5 5.0.594.0 2010.09.18 -
AVG 9.0.0.851 2010.09.18 -
BitDefender 7.2 2010.09.18 -
CAT-QuickHeal 11.00 2010.09.18 -
ClamAV 0.96.2.0-git 2010.09.18 -
Comodo 6117 2010.09.18 -
DrWeb 5.0.2.03300 2010.09.18 -
Emsisoft 5.0.0.37 2010.09.18 SPR.Tool!IK
eSafe 7.0.17.0 2010.09.17 -
eTrust-Vet 36.1.7862 2010.09.17 -
F-Prot 4.6.1.107 2010.09.17 -
F-Secure 9.0.15370.0 2010.09.18 -
Fortinet 4.1.143.0 2010.09.18 -
GData 21 2010.09.18 -
Ikarus T3.1.1.88.0 2010.09.18 SPR.Tool
Jiangmin 13.0.900 2010.09.17 -
K7AntiVirus 9.63.2542 2010.09.17 -
Kaspersky 7.0.0.125 2010.09.18 -
McAfee 5.400.0.1158 2010.09.18 Artemis!688C97CF9FC4
McAfee-GW-Edition 2010.1C 2010.09.18 Artemis!688C97CF9FC4
Microsoft 1.6201 2010.09.18 -
NOD32 5459 2010.09.18 -
Norman 6.06.06 2010.09.18 -
nProtect 2010-09-18.01 2010.09.18 -
Panda 10.0.2.7 2010.09.18 Suspicious file
PCTools 7.0.3.5 2010.09.18 -
Prevx 3.0 2010.09.18 -
Rising 22.65.05.00 2010.09.18 Trojan.Win32.Generic.5206DAA5
Sophos 4.57.0 2010.09.18 -
Sunbelt 6892 2010.09.18 -
SUPERAntiSpyware 4.40.0.1006 2010.09.18 -
Symantec 20101.1.1.7 2010.09.18 WS.Reputation.1
TheHacker 6.7.0.0.022 2010.09.17 -
TrendMicro 9.120.0.1004 2010.09.18 -
TrendMicro-HouseCall 9.120.0.1004 2010.09.18 -
VBA32 3.12.14.0 2010.09.17 -
ViRobot 2010.9.18.4048 2010.09.18 -
VirusBuster 12.65.12.0 2010.09.17 -
|
BCOS i told you it contains sqli helper, which is identified as virus, dont extract it form it s rar file if u dont want.
2)SHELS PACK (must have virus :p )
Shells.zip
Submission date:2010-09-18 12:27:30 (UTC)
Current status:queued queued analysing finished
Result:39/ 43 (90.7%)
Code: |
Antivirus Version Last Update Result
AhnLab-V3 2010.09.18.00 2010.09.17 HTML/Ajash
AntiVir 8.2.4.52 2010.09.17 PHP/C99Shell.WW
Antiy-AVL 2.0.3.7 2010.09.18 Backdoor/PHP.Agent
Authentium 5.2.0.5 2010.09.18 PHP/C99Shell.E
Avast 4.8.1351.0 2010.09.18 PHP:Agent-U
Avast5 5.0.594.0 2010.09.18 PHP:Agent-U
AVG 9.0.0.851 2010.09.18 PHP/BackDoor.C99Shell
BitDefender 7.2 2010.09.18 Trojan.Script.406069
CAT-QuickHeal 11.00 2010.09.18 HTM/C99shell.G
ClamAV 0.96.2.0-git 2010.09.18 Trojan.PHP.C99Shell
Comodo 6117 2010.09.18 UnclassifiedMalware
DrWeb 5.0.2.03300 2010.09.18 PHP.Shany
Emsisoft 5.0.0.37 2010.09.18 Backdoor.PHP.C99Shell.y!IK
eSafe 7.0.17.0 2010.09.17 Win32.Hacktool
eTrust-Vet 36.1.7862 2010.09.17 PHP/C99Shell.I
F-Prot 4.6.1.107 2010.09.17 PHP/C99Shell.E
F-Secure 9.0.15370.0 2010.09.18 Trojan.Script.406069
Fortinet 4.1.143.0 2010.09.18 HackerTool/PHPScript
GData 21 2010.09.18 Trojan.Script.406069
Ikarus T3.1.1.88.0 2010.09.18 Backdoor.PHP.C99Shell.y
Jiangmin 13.0.900 2010.09.17 -
K7AntiVirus 9.63.2542 2010.09.17 Backdoor
Kaspersky 7.0.0.125 2010.09.18 Backdoor.PHP.Agent.am
McAfee 5.400.0.1158 2010.09.18 Perl/Generic Backdoor.a
McAfee-GW-Edition 2010.1C 2010.09.18 Perl/Generic Backdoor.a
Microsoft 1.6201 2010.09.18 Backdoor:PHP/C99shell.H
NOD32 5459 2010.09.18 PHP/C99Shell.A
Norman 6.06.06 2010.09.18 PHP/C99Shell.AP
nProtect 2010-09-18.01 2010.09.18 -
Panda 10.0.2.7 2010.09.18 PHP/C99Shell.A
PCTools 7.0.3.5 2010.09.18 Hacktool.Generic
Prevx 3.0 2010.09.18 -
Rising 22.65.05.00 2010.09.18 Backdoor.Script.PHP.ajj
Sophos 4.57.0 2010.09.18 Troj/PhpShell-C
Sunbelt 6892 2010.09.18 Backdoor.PHP.Agent.bd (v)
SUPERAntiSpyware 4.40.0.1006 2010.09.18 -
Symantec 20101.1.1.7 2010.09.18 PHP.Backdoor.Trojan
TheHacker 6.7.0.0.022 2010.09.17 Trojan/PHP.Shell
TrendMicro 9.120.0.1004 2010.09.18 Mal_Hifrm
TrendMicro-HouseCall 9.120.0.1004 2010.09.18 BKDR_Generic
VBA32 3.12.14.0 2010.09.17 Backdoor.PHP.C99Shell.y
ViRobot 2010.9.18.4048 2010.09.18 PHP.Agent.56135
VirusBuster 12.65.12.0 2010.09.17 PHP.ShellBot.K
|
:p i told u most of shells are considered as virus.. dont donload if you dont know what u are dealing with here
3) MD5 pack
File name:md5 tools.rar
Submission date:2010-09-18 12:31:03 (UTC)
Current status:queued (#6) queued (#7) analysing finished
Result:7/ 42 (16.7%)
Code: |
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2010.09.18.00 2010.09.17 Win-Trojan/Eshoper.84992
AntiVir 8.2.4.52 2010.09.17 -
Antiy-AVL 2.0.3.7 2010.09.18 -
Authentium 5.2.0.5 2010.09.18 -
Avast 4.8.1351.0 2010.09.18 -
Avast5 5.0.594.0 2010.09.18 -
AVG 9.0.0.851 2010.09.18 -
BitDefender 7.2 2010.09.18 -
CAT-QuickHeal 11.00 2010.09.18 AdWare.EShoper.af (Not a Virus)
ClamAV 0.96.2.0-git 2010.09.18 -
Comodo 6117 2010.09.18 -
DrWeb 5.0.2.03300 2010.09.18 -
eSafe 7.0.17.0 2010.09.17 -
eTrust-Vet 36.1.7862 2010.09.17 -
F-Prot 4.6.1.107 2010.09.17 -
F-Secure 9.0.15370.0 2010.09.18 -
Fortinet 4.1.143.0 2010.09.18 -
GData 21 2010.09.18 -
Ikarus T3.1.1.88.0 2010.09.18 -
Jiangmin 13.0.900 2010.09.17 Backdoor/Delf.vyz
K7AntiVirus 9.63.2542 2010.09.17 -
Kaspersky 7.0.0.125 2010.09.18 -
McAfee 5.400.0.1158 2010.09.18 -
McAfee-GW-Edition 2010.1C 2010.09.18 -
Microsoft 1.6201 2010.09.18 -
NOD32 5459 2010.09.18 -
Norman 6.06.06 2010.09.18 -
nProtect 2010-09-18.01 2010.09.18 -
Panda 10.0.2.7 2010.09.18 -
PCTools 7.0.3.5 2010.09.18 -
Prevx 3.0 2010.09.18 -
Rising 22.65.05.00 2010.09.18 -
Sophos 4.57.0 2010.09.18 -
Sunbelt 6892 2010.09.18 EShoper
SUPERAntiSpyware 4.40.0.1006 2010.09.18 -
Symantec 20101.1.1.7 2010.09.18 WS.Reputation.1
TheHacker 6.7.0.0.022 2010.09.17 Adware/EShoper.k
TrendMicro 9.120.0.1004 2010.09.18 -
TrendMicro-HouseCall 9.120.0.1004 2010.09.18 -
VBA32 3.12.14.0 2010.09.17 AdWare.Win32.EShoper.k
ViRobot 2010.9.18.4048 2010.09.18 -
VirusBuster 12.65.12.0 2010.09.17 - |
all are false positives i promise. just a hacktool not virus
4)sqli tutorial . only contains html files. i dont bother scanning it. do it if u wish.
5)DORKS : just contain some text files
4)adminfinder pack
Code: |
Antivirus Version Last Update Result
AhnLab-V3 2010.09.18.00 2010.09.17 Win-Trojan/Xema.variant
AntiVir 8.2.4.52 2010.09.17 SPR/PassFinder
Antiy-AVL 2.0.3.7 2010.09.18 HackTool/Win32.VB.gen
Authentium 5.2.0.5 2010.09.18 -
Avast 4.8.1351.0 2010.09.18 Win32:Adware-gen
Avast5 5.0.594.0 2010.09.18 Win32:Adware-gen
AVG 9.0.0.851 2010.09.18 HackTool.GXR
BitDefender 7.2 2010.09.18 Application.Tool.3208
CAT-QuickHeal 11.00 2010.09.18 HackTool.VB.aia (Not a Virus)
ClamAV 0.96.2.0-git 2010.09.18 -
Comodo 6117 2010.09.18 UnclassifiedMalware
DrWeb 5.0.2.03300 2010.09.18 -
eSafe 7.0.17.0 2010.09.17 -
eTrust-Vet 36.1.7862 2010.09.17 -
F-Prot 4.6.1.107 2010.09.17 -
F-Secure 9.0.15370.0 2010.09.18 Application.Tool.3208
Fortinet 4.1.143.0 2010.09.18 Malware_fam.A
GData 21 2010.09.18 Application.Tool.3208
Ikarus T3.1.1.88.0 2010.09.18 HackTool.Win32.VB
Jiangmin 13.0.900 2010.09.17 -
K7AntiVirus 9.63.2542 2010.09.17 -
Kaspersky 7.0.0.125 2010.09.18 HackTool.Win32.VB.aia
McAfee 5.400.0.1158 2010.09.18 Generic PUP.z!bp
McAfee-GW-Edition 2010.1C 2010.09.18 Generic PUP.z!bp
Microsoft 1.6201 2010.09.18 -
NOD32 5459 2010.09.18 probably a variant of Win32/Hacktool.VB.FBBGKNJ
Norman 6.06.06 2010.09.18 -
nProtect 2010-09-18.01 2010.09.18 -
Panda 10.0.2.7 2010.09.18 Adware/AccesMembre
PCTools 7.0.3.5 2010.09.18 Adware.Gen
Prevx 3.0 2010.09.18 -
Rising 22.65.05.00 2010.09.18 -
Sophos 4.57.0 2010.09.18 -
Sunbelt 6892 2010.09.18 Trojan.Malware
SUPERAntiSpyware 4.40.0.1006 2010.09.18 -
Symantec 20101.1.1.7 2010.09.18 Adware.Gen
TheHacker 6.7.0.0.022 2010.09.17 -
TrendMicro 9.120.0.1004 2010.09.18 TROJ_Gen.MZ40M2
TrendMicro-HouseCall 9.120.0.1004 2010.09.18 TROJ_Gen.MZ40M2
VBA32 3.12.14.0 2010.09.17 -
ViRobot 2010.9.18.4048 2010.09.18 -
VirusBuster 12.65.13.0 2010.09.18 HackTool.VB.GOQD |
these are considered as hack tools. dont worry they cant harm you in anyway
[size=large]TIP : [/size]before start learning sqli injection . get these three firefox addons
1) hackbar
2)tamper data
2)add and edit cookie
DOWNLOADS :
SQLI SCANNER PACK : http://adf.ly/6tth
MD5 tools pack : http://adf.ly/6tuV
ADMIN FINDR : http://adf.ly/6tuk
SQLI TUTORIAL PACK : http://adf.ly/6tuw
DORKS PACK : http://adf.ly/6tv7
SHELLS PACK : http://adf.ly/6tvD
UBER AND LEET members plz pm me for direct links |
|
|
|
|
|
|
|
|
Posted: Mon Sep 20, 2010 5:56 pm |
|
|
pink_spider |
Advanced user |
|
|
Joined: Aug 28, 2010 |
Posts: 91 |
|
|
|
|
|
|
|
Very good !
thank you õ// |
|
|
|
|
Posted: Sun Sep 26, 2010 5:13 am |
|
|
sk8er |
Advanced user |
|
|
Joined: May 09, 2005 |
Posts: 64 |
|
|
|
|
|
|
|
this links, it's bit slow |
|
|
|
|
www.waraxe.us Forum Index -> Sql injection
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|