[Owasp-dotnet] Some comments on the current version of Beretta
nummish
nummish at gmail.com
Tue Aug 16 10:23:28 EDT 2005
Hey, sorry to jump in on this about a week late...
On 8/3/05, Dinis Cruz <dinis at ddplus.net> wrote:
> I had a quick look at Berreta and here is a brain dump about it
> ...[snip]...
>
> 3) I'm a bit bias on this one, but I think that creating an SQL
> Injection module will make this tool already usable by thousands of
> users. We need to write the plug-in for this that (based on an SQL
> Injection) displays all information available (from databases to tables
> to columns to data (a bit like what DataThief and absInThe do,
If you're going to start from scratch and write a plugin for this, by
all means.. but I'm pretty sure DataThief is OSS and I know for a fact
Absinthe is.
> although
> ironically none gets the data from the error messages. DataThief needs
> an supporting SQL Server and AbsInThe works via 'Blind Sql Injection')).
> I have some scripts which allows the enumeration via error messages
> which I want to convert to this
> ...[snip]...
Interestingly enough, when I started writing Absinthe about a year and
a half ago (at which point it was called SQueaL) I started by writing
the SQL Error based injections. These were the easiest to understand
and seemed like the quickest method. I switched the focus to Blind
injections when I realized nobody had a publically available tool to
handle blind (SPI's tool had not been released at this point either)
Since last december, it's been available under the GPL so all the
source code is there to poke at.. including the stubs for the error
based code that has been in there from the start. The main reason that
I have never gotten around to releasing the error based version (which
runs a LOT faster) is that it is very incomplete.
Since the 1.3.1 release, I've drastically rewrote the plugin code, so
if anyone is interested in contributing plugin code (either for blind
or for error based) let me know, and I can make the interfaces
available.
- nummish
--
Bigger 1:23
This address if for mailing list traffic only.
Please direct non-list correspondence to 0x90.org
More information about the Owasp-dotnet
mailing list