10 August 2007 | 9,664 views

mssql-hax0r v0.9 – Multi-purpose MS-SQL injection script

Check Your Web Security with Acunetix

mssql-hax0r v0.9 is a Multi-purpose MS-SQL injection attack tool for advanced Microsoft SQL Server exploitation. Three modes of operation are currently available: info (Information Gathering), dump (Record Dump), and brute (Brute Force).

You may need to tweak the code a bit to make it fit your needs (i.e. modifying the injection string and/or the language used by the RDBMS).

TODO (v1.0):

  • fix italian language support (test platform needed)
  • info mode: add logins target (master..sysxlogins) [name,dbname,password]
  • brute mode: automatic login grabbing feature?
  • info mode: add sys target (xtype=’S’)?
  • info mode: implement better types/keys dumping
  • add a command execution mode via master..xp_cmdshell?
  • add a privileged testing mode for post-auth vulnerabilities

It’s a fairly early version, I’ve been watching it since v0.1 – it’s a little more polished now but it’s still definitely a tool for more advanced users.

I’m sure some of you will find it useful.

Grab it here:

mssql-hax0r



Recent in Database Hacking:
- Navy Sys Admin Hacks Into Databases From Aircraft Carrier
- aidSQL – PHP Application For SQL Injection Detection & Exploitation
- 1 Million Accounts Leaked From Banks, Government Agencies & Consultancy Firms

Related Posts:
- Patator – Multi Purpose Brute Forcing Tool
- Safe3 SQL Injector – Automatic Detection & Exploitation Of SQL Injection Flaws
- Pangolin – Automatic SQL Injection Tool

Most Read in Database Hacking:
- Pangolin – Automatic SQL Injection Tool - 69,457 views
- bsqlbf 1.1 – Blind SQL Injection Tool - 53,700 views
- Absinthe Blind SQL Injection Tool/Software - 38,868 views

Low-cost VPS Hosting

7 Responses to “mssql-hax0r v0.9 – Multi-purpose MS-SQL injection script”

  1. TheRealDonQuixote 10 August 2007 at 8:10 pm Permalink

    I wonder if you can add this script to the metasploit framework. First you’d have to convert the Bash script to Ruby. hmm

  2. J Random 12 August 2007 at 5:40 pm Permalink

    Why is there no email on this page? How can I reach you?

  3. Darknet 13 August 2007 at 8:54 am Permalink

    TRDQ: You could, but it’d be quite a bit of work.

    J Random: What do you think the Contact Darknet link is for?

  4. Daniel 13 August 2007 at 9:30 am Permalink

    hmm any project with the word hax0r in the name is born out of boredom and pure blackhat glee

  5. J Random 13 August 2007 at 12:10 pm Permalink

    Hehe, oopsie

  6. Sandeep Nain 16 August 2007 at 12:54 am Permalink

    good tool in making… im sur eit will be a good tool once its mature enough

  7. Sandeep Nain 31 August 2007 at 2:40 am Permalink

    Very good tool for information gathwring and record dumping…
    Really cool tool in security toolbox..