Título: ISR SQL SunBurn – ISS Publicado por: c0de.breaker en 27 Mayo 2010, 14:24 pm Description :
This is the alpha (testing) version of ISR SQL SunBurn – ISS. The final version will contain more stuff, but it will remain private, this doesn’t mean that we won’t create a public version. So what does ISR SQL SunBurn (ISS) do ? ISS is a php script that extracts all the possible information from a MySQL injection. Info (here we I don’t refer to colons/tables/etc … maybe in the near future). It searches and loads over 350 files with the help of load_file() – (ex /etc/passwd, /etc/shadow, etc) Why did we decide to build this “tool”? It’s actually simple, it simplifies your work, and second of all, it’s a necessity. Hope I didn’t bore you with the description, here’s the video presentation of it. Video Demonstration Here: lQXofH2-grk Mirror HIGH QUALITY: http://www.trilulilu.ro/InSecurity/153a786f8b20fd Source: http://insecurity.ro/blog/isr-sql-sunburn-iss/ and I think, I posted in the right section (i don't know) ;) Título: Re: ISR SQL SunBurn – ISS Publicado por: laideker en 29 Mayo 2010, 05:48 am Excelente, estoy seguro que con el tiempo irá mejorando mucho.
Espero saquen una versión publica... :-\ :-\ |