07 July 2010 | 17,427 views

Safe3 SQL Injector – Automatic Detection & Exploitation Of SQL Injection Flaws

Check For Vulnerabilities with Acunetix

Safe3 SQL Injector is one of the most powerful penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers.


  • Full support for GET/Post/Cookie Injection
  • Full support for HTTP Basic, Digest, NTLM and Certificate authentications
  • Full support for MySQL, Oracle, PostgreSQL, MSSQL, ACESS, DB2, Sybase & Sqlite
  • Full support for Error/Union/Blind/Force SQL injection
  • Support for file access, command execute, IP domain reverse, web path guess, md5 crack etc.
  • Super bypass WAF

You can download Safe3 SQL Injector here:


Or read more here.


Recent in Database Hacking:
- OAT – Oracle Auditing Tools For Database Security
- ODAT (Oracle Database Attacking Tool) – Test Oracle Database Security
- Navy Sys Admin Hacks Into Databases From Aircraft Carrier

Related Posts:
- FG-Injector – SQL Injection & Proxy Tool
- The Mole v0.3 Released For Download – Automatic SQL Injection Exploitation Tool
- sqlmap 0.9 Released – Automatic Blind SQL Injection Tool

Most Read in Database Hacking:
  • Pangolin – Automatic SQL Injection Tool - 74,614 views
  • bsqlbf 1.1 – Blind SQL Injection Tool - 54,029 views
  • SQLBrute – SQL Injection Brute Force Tool - 39,368 views

  • Advertise on Darknet

    7 Responses to “Safe3 SQL Injector – Automatic Detection & Exploitation Of SQL Injection Flaws”

    1. Andy 7 July 2010 at 11:54 am Permalink

      It’s worth noting that this is just a trial and isn’t fully functional (E.g. the Pentest section doesn’t work).

      From purchase.txt

      Contact safe3q@ or admin@
      Fee $250
      Pay throught Western Union

      • Darknet 7 July 2010 at 12:36 pm Permalink

        Hmm sneaky bait and switch, seen as though it’s on Sourceforge it’s implied that it’s open source. They don’t mention anything about a commercial version or this version being limited on the project page.

    2. NNM 8 July 2010 at 6:22 am Permalink

      So it’s just a scam…
      And I’d bet all it does, is scan the website for forms and input boxes, then just brute force on every input every technique until it detects a vulnerability…

    3. Hordakk 15 July 2010 at 4:18 pm Permalink

      this is a shame. and I was close to downloading it but I definitely cannot trust it now. Probably investigate it in a sandbox some time.

    4. VMw4r3 19 July 2010 at 3:31 pm Permalink

      Both links are dead.
      Looks like Sourceforge have taken it down.

      • Darknet 19 July 2010 at 6:51 pm Permalink

        Yup, looks like SF ditched it – thanks for the update.

    5. iris 20 July 2010 at 10:07 am Permalink

      It’s not fully free,but can still inject database
      You can it download from google