A web application penetration testing tool that can extract data from SQL Server, MySQL, DB2, Oracle, Sybase, Informix, and Postgres. Further, it can crawl a website as a vulnerability scanner looking for sql injection vulnerabilities.
Features
- Web Application Penetration Testing
- SQL Injection (SQL Server 2000/2005, MySQL, Oracle, DB2, Informix, Sybase, & Postgress
- Web site vulnerability scanner with automatic takeover
- Extract password hashes from a remote host via sql injection
- Blind and time-based sql injection on discovered vulnerabilities.
- MySQL command command execution
- Integrated vulnerability scanner and penetration testing platform