Tagged: sqli

SQL-nightmare: SQL SERVER Exploitation

SQL Nightmare An SQL SERVER Exploitation tool Functions Server Directory navigation. Server Database Dump. Read Server Files. Shell spawning. Download Use SQL-nightmare.exe Input URL Format http://localhost:1234/index.aspx?param=1 AND 0 union select 1,’rummykhan’,2 –X- Replace the...