hey reiluke,
nice work brothaa..&..thanks for sharing this..
good luck

bai ag imong sql helper 2.7 kay inig extract nimo sa columns sa table kay ang first column name dili makita modiritso siya sa second column.

very nice indeed. I like it.
What about adding a debug option to the application.
Might be useful.

this does not work. after selecting columns and hit “dump” the window opens but does nothing

hey mrs reiluke

u can add basic autentification? to the SQLI helper??

and dump limit more the 100 ??

ur tool is amazing… congratulation

Keep up the good work man don’t be a lamer like sql_dare_evil and make people have to pay thats dumb and so is he Your SQLI Helper is the bomb if you need donations man I’ll donate to help out

You could also add manual query field to the application. That would be useful to have.

Nice work! But if I dump more than 3 columns I cant see any entrys in the dumpwindow anymore.

I found a few things while playing around with your tool which i find quite usefull

If you want to make the sqlhelper tool more compatible with sqlserver you can use @@version for database version instead of db_version , also selecting null columns for union (all) queriies is i think a more universal working method to build your union injections. Sqlserver doesnt like 1,2,3,4.. unions most of the time

Another tip is to to avoid using ‘’ in your queries when blind dumping data. Many sites/applications filter scripting tags from user input by default
You can use the functions BETWEEN or GREATEST which are supported by nearly all rdbms.
Also put a %20 at the end of the standard ‘–’ comment tag that works better most of the time.

i’m using burp proxy at the moment to rewrite some of your query syntax when injecting and those few modifications i mentioned help quite a bit for succesfull automatic injection in sqlserver.

an option to url encode the entire injection would be a nice thing to have if you’re planning to release another version someday.

cheers

i think there is some problem with sqliscanner v2.7 , the problem is i have find vulnerable site from exploit scanner and then i have put the same extracted url in sqliscanner, it starts injecting 1st it search for “Get Server Info” then “Check if url is vulnerable” then it shows “Url is Vulnerable” then “Check No. of Columns” followed by
“Check No. of Columns - finished” followed by
“Looking for larget text visible column” but the whole thing it shows as if its under process but i dont see any result in any of the columns? i dont know what went wrong ….can u help me out please ….i will give you expample of this site..” http://ceres.lweb.net/theweddingring.ca/store/index.asp?Product_ID=1100&Department=All and 1=0+–+”

hi, thanks for the comment, sqlscanner does not find the parameter that is vulnerable, so edit the link such that the last parameter is the one that is exploitable

change it to

http://ceres.lweb.net/theweddingring.ca/store/index.asp?Department=Purses&Product_ID=837

i tested it and its ok but its mysql4, could some tables though

hello i am vagino colasee
i use to have sql helper injection software but i loosed it and on trying to get it back here have not been able to gat a specified link for the download… my YM devagileo@yahoo.fr need some to help me out .. and on trying to download all reiluke tools it says i need a premium account

Phrase to find: “Trojan.Win32.Agent2.cibu”
Found: 1

Trojan.Win32.Agent2.cibu
[ Virus Watch ]
Malware detected 2009-09-15 Update released 2009-09-16