by r0t,der4444,cembo,VietMafia

Sunday, December 25, 2005

Blind MySQL injection database stressing tool

Hi..

Seems someone wins a fight against a blind MySQL injection, with mysql
v3 and magic_quotes enabled.. This is the funny video:
http://www.reversing.org/files/beyond_mysql_injection.avi

ed2k://|file|beyond_mysql_injection.avi|18148274
|CD388D581A720AF5C5887117D9279A1A|h=UZFXHKMLGBOB
P56FAYF2LLFNSQARNKQW|/

There's also another video here:
http://www.unsec.net/download/bsqlbf.avi

The Magic is in the ending part of the video!

The tool ("sqlbftools") is under the "projects" section and a little
article ("Blind MySQL injection and database stressing") is under the
"essays" section in the page: http://www.reversing.org. The msqlbf perl
script is available at http://www.unsec.net/


Ping!


Grettings to Dsr! and 7a69


PD: Dab told me to say nothing about http://unsec.net


--
kanutron (aka Josepmaria Roca)
* mailinglists at kanutron.net
* http://kanutron.net/
---------------------------------------------------------
" las opiniones son como los culos,
todo el mundo tiene el suyo "
- Harry Challahan -

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew