Safe3 SQL Injector – Automatic Detection & Exploitation Of SQL Injection Flaws


Safe3 SQL Injector is one of the most powerful penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers.

Features

  • Full support for GET/Post/Cookie Injection
  • Full support for HTTP Basic, Digest, NTLM and Certificate authentications
  • Full support for MySQL, Oracle, PostgreSQL, MSSQL, ACESS, DB2, Sybase & Sqlite
  • Full support for Error/Union/Blind/Force SQL injection
  • Support for file access, command execute, IP domain reverse, web path guess, md5 crack etc.
  • Super bypass WAF

You can download Safe3 SQL Injector here:

Safe3SI.6.2.rar

Or read more here.

Posted in: Database Hacking, Hacking Tools, Web Hacking

, , , , , ,


Latest Posts:


Aclpwn.Py - Exploit ACL Based Privilege Escalation Paths in Active Directory Aclpwn.Py – Exploit ACL Based Privilege Escalation Paths in Active Directory
Aclpwn.py is a tool that interacts with BloodHound< to identify and exploit ACL based privilege escalation paths.
Vulhub - Pre-Built Vulnerable Docker Environments For Learning To Hack Vulhub – Pre-Built Vulnerable Docker Environments For Learning To Hack
Vulhub is an open-source collection of pre-built vulnerable docker environments for learning to hack. No pre-existing knowledge of docker is required, just execute two simple commands.
LibInjection - Detect SQL Injection (SQLi) and Cross-Site Scripting (XSS) LibInjection – Detect SQL Injection (SQLi) and Cross-Site Scripting (XSS)
LibInjection is a C library to Detect SQL Injection (SQLi) and Cross-Site Scripting (XSS) through lexical analysis of real-world Attacks.
Grype - Vulnerability Scanner For Container Images & Filesystems Grype – Vulnerability Scanner For Container Images & Filesystems
Grype is a vulnerability scanner for container images and filesystems with an easy to install binary that supports the packages for most major *nix based OS.
APT-Hunter - Threat Hunting Tool via Windows Event Log APT-Hunter – Threat Hunting Tool via Windows Event Log
APT-Hunter is a threat hunting tool for windows event logs made from the perspective of the purple team mindset to provide detection for APT movements hidden in the sea of windows event logs.
GitLab Watchman - Audit Gitlab For Sensitive Data & Credentials GitLab Watchman – Audit Gitlab For Sensitive Data & Credentials
GitLab Watchman is an app that uses the GitLab API to audit GitLab for sensitive data and credentials exposed internally, this includes code, commits, wikis etc


7 Responses to Safe3 SQL Injector – Automatic Detection & Exploitation Of SQL Injection Flaws

  1. Andy July 7, 2010 at 11:54 am #

    It’s worth noting that this is just a trial and isn’t fully functional (E.g. the Pentest section doesn’t work).

    From purchase.txt

    Contact safe3q@ or admin@
    Fee $250
    Pay throught Western Union

    • Darknet July 7, 2010 at 12:36 pm #

      Hmm sneaky bait and switch, seen as though it’s on Sourceforge it’s implied that it’s open source. They don’t mention anything about a commercial version or this version being limited on the project page.

  2. NNM July 8, 2010 at 6:22 am #

    So it’s just a scam…
    And I’d bet all it does, is scan the website for forms and input boxes, then just brute force on every input every technique until it detects a vulnerability…

  3. Hordakk July 15, 2010 at 4:18 pm #

    this is a shame. and I was close to downloading it but I definitely cannot trust it now. Probably investigate it in a sandbox some time.

  4. VMw4r3 July 19, 2010 at 3:31 pm #

    Both links are dead.
    Looks like Sourceforge have taken it down.

    • Darknet July 19, 2010 at 6:51 pm #

      Yup, looks like SF ditched it – thanks for the update.

  5. iris July 20, 2010 at 10:07 am #

    It’s not fully free,but can still inject database
    You can it download from google
    http://code.google.com/p/safe3si/downloads/list