Tuesday, December 06, 2011

The Mole – Automatic SQL Injection SQLi Exploitation Tool

The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique.

Features:
  • Support for injections using Mysql, SQL Server, Postgres and Oracle databases.
  • Command line interface. Different commands trigger different actions.
  • Auto-completion for commands, command arguments and database, table and columns names.
  • Support for query filters, in order to bypass certain IPS/IDS rules using generic filters, and the possibility of creating new ones easily.
  • Developed in python 3.
If you want to see documentation, download or tutorial, please refer here:

2 comments:

Vdamir John said...

http://pen-testing.sans.org/blog/2011/10/31/making-blind-sql-injection-more-efficient-new-tool

good learning in sql injection

deepakw3c said...

This post teaches you how to format paragraph. This is very well written post. I have applied these formatting

to several paragraphs. This is an easy and short way to apply formatting. This post is excellent. I am going to

follow your blog on regular basis
Pc optimizer
Printer support
Printer Repair