[ad]
Piggy is yet another tool for performing online password guessing against Microsoft SQL servers.
It supports scanning multiple servers using a dictionary file or a file with predefined accounts (username and password combinations).
It’s a pretty simple tool and has a Win32 binary verson – it is a command line tool however.
1 2 3 4 5 6 7 8 9 10 11 12 13 |
Piggy v1.0.1 by patrik@cqure.net -------------------------------- usage: piggy [options] options: -u [username] - Single username -p [password] - Single password -s [server] - Single server -S [srvfile] - File containing ip/hostnames -D [dicfile] - File containing passwords -A [accounts] - File containing username;password combinations -N - Do not check availability before scan -v verbose - Verbose logging |
You can download it here:
piggy-src-1_0_1.zip (Source code)
piggy-win32-1_0_1.zip (Binary version)
backbone says
even if a simple one this is a great tool, this way we could dump the database in a simpler way without the need to get complicated with sql injection to dump it.
Sandeep Nain says
its just like a blade.. small & sharp :)
very impressive…
backbone says
and like a blade it is very messy.
if you don’t get it right from the first time (with the dictionary and all that stuff), than you’d better give up due to the fill up of your IP in the log file :(
TheRealDonQuixote says
I know I can’t code for crap, or spell or type for that matter.
Hey backbone, can you fix to the source code so Piggy is easier to use? Or at least fix the Log File issue? Just wondering, cause that would be awesome!!
backbone says
theRealDonQuixote: I’m not the person who developed this, so why not try and ask the developers of Piggy =)
TheRealDonQuixote says
backbone- I doubt the d00d over at cquer.com has more time to fiddle with this little tool. That’s why we publish the source code, so peeps can help out and make tools better and better. A million heads are better than one, or so they say. :)
Sandeep Nain says
I agree with you TRDQ but someone has to take the lead and why don’t you start it instead of askin backbone :)
and if you don’t know coding.. this can be your starting point… what say?? ;)
TheRealDonQuixote says
Sandeep – Oooooh No. I’m not taking on another side project right now. Heck I can barely keep up with my crap blog!! ;)
backbone says
TRDQ, we all can give excuses, as I have done earlier on this post….
why? because I am no C/C++ coder, and I am also working on a project already, you’ll surely like it when it will be over ;)
TheRealDonQuixote says
BKBN – My interest is peaked. Now, you have to tell us what your project is. ;)
I already said mine was putting all the pentesting tools from BackTrack2 onto a Kubuntu distro. Now your turn…just a hint? Please?
Sandeep Nain says
backbone is just giving an excuse TRDQ.
when are you releasing your kubuntu based edition
TheRealDonQuixote says
Sandeep – As soon as I can figure out how to get it done in an efficient manner. I know that I should be able to write a bash script for each slax module in order to use recontructor to add the modules to a Kubuntu iso, but I don’t know where to get the modules for all the bactrack tools AND I don’t want to write 300+ bash scripts. There has to be an easier way. I just haven’t found it yet.
backbone says
I don’t just make up excuses…
http://sla.ckers.org/forum/read.php?16,13327
Sandeep Nain says
backbone: nice… it seems very promising. (and i didnt intend to hurt you or your feelings in any way…)
backbone says
I’m not an emo to get so fast hurt… anyway I posted it because TRDQ also posted a comment about his work… hey TRDQ hope you contact me when you finish the project ;)
Sandeep Nain says
BB:good that u dnt mind on such small things…
TRDQ: Lemme know if you need any assistance to finish off your project… happy to help you to serve the community.