给你推荐个软件,用几天就熟悉SQL注入了。-----------------------------------------------------------------WebCruiser - Web Vulnerability Scanner (Web应用漏洞扫描器) WebCruiser - Web Vulnerability Scanner, a compact but powerful web security scanning tool! It has a Crawler and Vulnerability Scanner(SQL Injection, Cross Site Scripting, XPath Injection etc. ). It can support not only scanning website, but also Prooving of concept for web vulnerabilities: SQL Injection, Cross Site Scripting, XPath Injection etc. WebCruiser是一个小巧但功能不凡的Web应用漏洞扫描器,它能够对整个网站进行漏洞扫描,并能够对发现的漏洞(SQL注入,跨站脚本,XPath注入等)进行验证;它也可以单独进行漏洞验证,链拆作为SQL注入工具、XPath注入工具、跨站检测工具使用。功能简介: * 网站爬虫(目录及文件); * 漏洞扫描(SQL注入,跨站脚本,XPath注入); * 漏洞验证(SQL注入,跨站脚本,XPath注入); * SQL Server明文/字段回显/早唤雹盲注; * MySQL字段回显/盲注; * Oracle字段回显/盲注; * DB2字段回显/盲注; * Access字段回显/盲注; * 管理入口查找; * GET/Post/Cookie 注入; * 搜索型注入延时; * 自动从自带浏览器获取Cookie进行认证; * 自动判断陆帆数据库类型; * 自动获取关键词; * 多线程; * 高级:代理、敏感词替换/过滤; * 报告; --------------------------------------------------- Function: * Crawler(Site Directories And Files); * Vulnerability Scanner(SQL Injection, Cross Site Scripting, XPath Injection etc.); * POC(Proof of Concept): SQL Injection, Cross Site Scripting, XPath Injection etc.; * GET/Post/Cookie Injection; * SQL Server: PlainText/FieldEcho(Union)/Blind Injection; * MySQL/Oracle/DB2/Access: FieldEcho(Union)/Blind Injection; * Administration Entrance Search; * Time Delay For Search Injection; * Auto Get Cookie From Web Browser For Authentication; * Report Output.
相关文章
-
SQL2008和SQL2008R2有什么不同啊 我只安后面那个可以吗
2023-10-13 13:44 阅读(561) -
SQL和MySQL有什么区别?
2023-07-07 12:40 阅读(595) -
SQL数据库插入语句
2023-06-29 13:20 阅读(581)
1 sql查询 身份证判断男女
544 阅读
2 SQL是什么?
624 阅读
3 sql文件怎么打开
648 阅读
4 SQL sever是什么?
579 阅读
5 SQL的一对多,多对一,一对一,多对多什么意思?
576 阅读