Tech Directions
NT Objectives, A security application provider released a new SQL Injection Vulnerability Scanner, it will be very helpful for Penetration Testers to find the Vulnerabilities in Web Application.
"NTO SQL Invader" which scans for Sql injection vulnerability and exploits the Sql Injection vulnerability with few simple clicks. It is free to use..! NTO SQL Invader allows pen testers and developers to quickly and easily leverage a vulnerability to view the list of records, tables and user accounts on the back-end database.
Features:
- Easy to use - The tool’s GUI interface enables you to simply paste the injectable request found by a DAST tool or feed a detailed request straight from an application scan report. You can then control how much information is harvested.
- Clearly presents evidence - Unlike tools that provide all data via command line, NTO SQL Invader provides the data in a organized manner that is useful for both executive meetings as well as technical analysis and re mediation.
- Enables easy transport of logging data - All of the data harvested from NTO SQL Invader can be saved into a CSV file so the reports can be included as penetration evidence as part of a presentation or POC.
You can download the tool from here:
http://go.ntobjectives.com/l/8672/2011-12-01/DRMN
In order to get the application , you have to enter your email address. They will send the link to the application.
I got only NTOSQLInvader_Setup.exe file. I think you know that ".exe" files works only in Windows.
http://go.ntobjectives.com/l/8672/2011-12-01/DRMN
In order to get the application , you have to enter your email address. They will send the link to the application.
I got only NTOSQLInvader_Setup.exe file. I think you know that ".exe" files works only in Windows.
(You can also run the .exe files in Linux using Wine Application).
How to run the SQL Invader in Linux?
Requirements:
JRE 1.4 or 1.5 or 1.6 version
Step 1:
Download the .exe file from the given link.
Place it in desktop.
Step 2:
Right click on the NTOSQLInvader_Setup.exe file and click the extract here .
Now you can find a NTOSQLInvader_Setup folder in your desktop.
Step 3:
Open the folder ,there you can see three files . We are going to need "NTOSQLInvader.jar " file only. So delete other two files.
Step 4:
That's all , copy the .jar file anywhere else or leave it in Dekstop itself.
Double click the file it will start to run.
Enjoy the application in Linux also...!!
Requirements:
JRE 1.4 or 1.5 or 1.6 version
Step 1:
Download the .exe file from the given link.
Place it in desktop.
Step 2:
Right click on the NTOSQLInvader_Setup.exe file and click the extract here .
Now you can find a NTOSQLInvader_Setup folder in your desktop.
Step 3:
Open the folder ,there you can see three files . We are going to need "NTOSQLInvader.jar " file only. So delete other two files.
Step 4:
That's all , copy the .jar file anywhere else or leave it in Dekstop itself.
Double click the file it will start to run.
Enjoy the application in Linux also...!!
You can run the NTOSQLInvader.jar file alone in any operating system(windows,mac,...), if you installed JRE.
Post a Comment