SQLI DUMPER V9.7批量GETSHELL破解版
很多使用起来的顺手的工具都是俄罗斯黑客开发的,日后安三会尝试多分享一些国外经典好用的安全测试工具,从代码严谨和功能实现上确实比国内很多“随手之作”好很多。这款SQLi Dumper v9.7批量Getshell工具就是俄罗斯黑客的一种批量注入工具,支持多个搜索引擎批量,支持URL,发布,cookies多种注入方式,支持多线程转储数据,支持代理功能等等。功能实在是强大到秒杀很多国内SQL自动检测工具,有兴趣的可以研究下,--支持的注入– MySQL – Union (Integer / String) – Error (Integer / String) ** Error Methods: – Double Query – XPATH – ExtractValue – XPATH – UpdateXML – Brute Forcing – Blind – Load File – Load File Scanner ** Illegal Mix Of Collations: – UnHexHex() – Binary() – Cast As Char – Compress(Uncompress()) – Convert Using utf8 – Convert Using latin1 – Aes_decrypt(aes_encrypt()) – MS SQL – Union (Integer / String) – Error (Integer / String) ** Illegal Mix Of Collations: – SQL_Latin1; – Cast As Char. – Oracle – Union (Integer / String) – Error (Integer / String) ** Error Methods: – GET_HOST_ADDRESS – DRITHSX.SN – GET;APPINGXPATH. ** Illegal Mix Of Collations: – Cast As Char. ** Suports TOP N Types: – ROWUM – RANK() – DESE_RANK() ** Analizer detects also: – MS Access – PostgredSQL – Sybase
页:
[1]