sqlget v1.0.0 – Blind SQL Injection Tool in PERL


sqlget is a blind SQL injection tool developed in Perl, it lets you get databases schemas and tables rows. Using a single GET/POST you can access quietly the database structure and using a single GET/POST you can dump every table row to a csv-like file.

Databases supported:

  • IBM DB2
  • Microsoft SQL Server
  • Oracle
  • Postgres
  • Mysql
  • IBM Informix
  • Sybase
  • Hsqldb
  • Mime
  • Pervasive
  • Virtuoso
  • SQLite
  • Interbase/Yaffil/Firebird (Borland)
  • H2
  • Mckoi
  • Ingres
  • MonetDB
  • MaxDB
  • ThinkSQL
  • SQLBase

Evasion features:

  • Full-width/Half-width Unicode encoding
  • Apache non standard CR bypass
  • mod_security bypass
  • Random uppercase request transform
  • PHP Magicquotes: encode every string using db CHR function or similar.
  • Convert requests to hexadecimal values
  • Avoid non-space replacing for /**/ or (\t) tab
  • Avoid non || or + concatenation using db concat function or similar.
  • Random user-agent
  • Random proxy-server
  • Random delay request

Common features:

  • Database schemate download blacklist
  • Cookie array support
  • SSL support
  • Proxy server support
  • Database information dumped in csv format

You can find a demo here bypassing IBM ISS Proventia IPS:


ISR sqlget ISS Proventia Bypass

And you can download sqlget here:

ISR-sqlget v.1.0.0

Or read more here.

Posted in: Database Hacking, Hacking Tools, Web Hacking

, , , , , ,


Latest Posts:


Arcane - Tool To Backdoor iOS Packages (iPhone ARM) Arcane – Tool To Backdoor iOS Packages (iPhone ARM)
Arcane is a simple script tool to backdoor iOS packages (iPhone ARM) and create the necessary resources for APT repositories.
SharpHose - Asynchronous Password Spraying Tool SharpHose – Asynchronous Password Spraying Tool
SharpHose is an asynchronous password spraying tool in C# for Windows environments that takes into consideration fine-grained password policies and can be run over Cobalt Strike's execute-assembly.
Axiom - Pen-Testing Server For Collecting Bug Bounties Axiom – Pen-Testing Server For Collecting Bug Bounties
Project Axiom is a set of utilities for managing a small dynamic infrastructure setup for bug bounty, basically a pen-testing server out of the box with 1-line.
Quasar RAT - Windows Remote Administration Tool Quasar RAT – Windows Remote Administration Tool
Quasar is a fast and light-weight Windows remote administration tool coded in C#. Used for user support through day-to-day administrative work to monitoring.
Pingcastle - Active Directory Security Assessment Tool Pingcastle – Active Directory Security Assessment Tool
PingCastle is a Active Directory Security Assessment Tool designed to quickly assess the Active Directory security level based on a risk and maturity framework.
Second Order - Subdomain Takeover Scanner Tool Second Order – Subdomain Takeover Scanner Tool
Second Order Subdomain Takeover Scanner Tool scans web apps for second-order subdomain takeover by crawling the application and collecting URLs (and other data)


8 Responses to sqlget v1.0.0 – Blind SQL Injection Tool in PERL

  1. gyaresu July 9, 2007 at 6:31 am #

    Lovely. Another fine toy to play with.

    Thanks Chap(s/ettes).

  2. Darknet July 9, 2007 at 7:40 am #

    Yah I like the evasion features of this one, you can really tell it’s written by a pen-tester :)

    No chapettes here tho heh.

  3. gyaresu July 9, 2007 at 7:48 am #

    No chapettes here tho heh.

    One must not assume.

    Again the flash example is quite instructive. Great for just jumping in and having a bash. The README contains plenty of info also.

    The flash player it’s running in is also good. Not having a complete mental when you drag it fore & back in time. Some of them are rubbish.

  4. backbone July 9, 2007 at 1:16 pm #

    well it sounds promising, I’ll have to try it out….

  5. SN July 9, 2007 at 8:00 pm #

    I am going to check this out. Let’s see if it crashes my site.

  6. Sandeep Nain July 9, 2007 at 11:52 pm #

    seems to be a good tool with such a long list of supported databases. ill check this one out..

  7. Sandeep Nain July 31, 2007 at 11:41 pm #

    Hi Guys

    anybody tried this out? I did but sorry to say that I didnt find it much impressive. although it offers a great database support and some nice features such as proxy server supoort and ssl support.

    But i found OWASP sqlix better than this. better results…

    let me know if your opinion differs from me…

  8. backbone August 1, 2007 at 3:36 am #

    I didn’t even succeed with the compilation of it :-\