aboutsummaryrefslogtreecommitdiff
path: root/network/sqlninja/README
diff options
context:
space:
mode:
Diffstat (limited to 'network/sqlninja/README')
-rw-r--r--network/sqlninja/README13
1 files changed, 13 insertions, 0 deletions
diff --git a/network/sqlninja/README b/network/sqlninja/README
new file mode 100644
index 0000000000000..d7e1edb17607f
--- /dev/null
+++ b/network/sqlninja/README
@@ -0,0 +1,13 @@
+Sqlninja is a tool targeted to exploit SQL Injection vulnerabilities on a web
+application that uses Microsoft SQL Server as its back-end. Its main goal is
+to provide a remote access on the vulnerable DB server, even in a very hostile
+environment. It should be used by penetration testers to help automate the
+process of taking over a DB Server when a SQL Injection vulnerability has been
+discovered.
+
+This version includes Raul Siles' patch for better Metasploit Framework
+integration which adds two new timers ($client_delay (30 secs) and
+$server_delay (5 secs)).
+
+This requires perl-Net-DNS, perl-Net-Pcap, perl-IO-Socket-SSL, Net-SSLeay,
+perl-NetPacket, and perl-Net-RawIP.