This script is for Slackware 13.37 only and may be outdated.

SlackBuilds Repository

13.37 > Network > sqlninja (0.2.5)

Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web
application that uses Microsoft SQL Server as its back-end. Its main goal is
to provide a remote access on the vulnerable DB server, even in a very hostile
environment. It should be used by penetration testers to help automate the
process of taking over a DB Server when a SQL Injection vulnerability has been
discovered.

Since version 0.2.5, sqlninja will upload .exe files by default instead of
.scr ones. If you want to upload .scr files instead, the original sqlninja
files are distributed inside /usr/lib$LIBDIRSUFFIX/sqlninja/scripts/ .

Raul Siles' patch for better Metasploit Framework interaction has been
discontinued since it was released for an old version of sqlninja only. The
patch added two new timers ($client_delay (30 secs) and $server_delay (5
secs)) to use within sqlninja. Since it could be still somehow handy it has
been included in the package documentation directory.

This requires perl-Net-DNS, perl-Net-Pcap, perl-IO-Socket-SSL, Net-SSLeay,
perl-NetPacket, and perl-Net-RawIP.

Maintained by: Marco Bonetti
Keywords: microsoft sql,injection
ChangeLog: sqlninja

Homepage:
http://sqlninja.sourceforge.net/

Source Downloads:
sqlninja-0.2.5.tgz (95acfd9c5bc2305f239596c613d4ffc7)

Download SlackBuild:
sqlninja.tar.gz
sqlninja.tar.gz.asc (FAQ)

(the SlackBuild does not include the source)

Validated for Slackware 13.37

See our HOWTO for instructions on how to use the contents of this repository.

Access to the repository is available via:
ftp git cgit http rsync

© 2006-2024 SlackBuilds.org Project. All rights reserved.
Slackware® is a registered trademark of Patrick Volkerding
Linux® is a registered trademark of Linus Torvalds