Skip to content

rummykhan/SQL-nightmare

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

SQL-nightmare

SQL-nightmare

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

SQL-nightmare.sln

SQL-nightmare.sln

 
 

Repository files navigation

SQL Nightmare

An SQL SERVER Exploitation tool

Executable

Since this is source code, you can download exe from here SQL Nightmare

Functions

  1. Server Directory navigation.
  2. Server Database Dump.
  3. Read Server Files.
  4. Shell spawining.

Input URL Format

http://localhost:1234/index.aspx?param=1 AND 0 union select 1,'rummykhan',2 --X-

Replace the string/vulnerable column to 'rummykhan' and ending comments to --X-

Disclaimer

  1. This software was written for educational purposes only.
  2. Don't use it on any site without prior permission of site owner.

Contact

Drop me an email at rehan_manzoor@outlook.com

MIT License

This software is licensed under The MIT License (MIT).

With Love for

| Lafangoo | Connecting | Ch3rn0by1 | exploiter-z | PMH`s Str!k3r | Makman | Madcode | g00n | benzi | Ricardo | Ajkaro | SOG | Jin | Zee-PK | Gujjar | Ashx | h98d (Hussein) | Muhammad Bilal |

About

SQL SERVER Exploitation.

Topics

sql-server sql-injection

Resources

Readme

License

MIT license
Activity

Stars

29 stars

Watchers

4 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages