Focus on OWASP SQLiX version 1.0
SQLiX, coded in Perl, is a SQL Injection scanner, able to crawl, detect SQL injection vectors, identify the back-end database and grab function call/UDF results (even execute system commands for MS-SQL). The concepts in use are different than the one used in other SQL injection scanners. SQLiX is able to find normal and blind SQL injection vectors and doesn’t need to reverse engineer the original SQL request (using only function calls).
SQLiX is a SQL Injection scanner which attempts to fill the gap between what commercial software available on the market can do and what can really be done to detect and identify SQL injection.
Current injection methods used by commercial web assessment software are based on error generation or statement injections
Features
- SQLiX uses multiple techniques to determine if the current server-side script is vulnerable to SQL Injection
- conditional errors injection
- blind injection based on integers, strings or statements
- MS-SQL verbose error messages ("taggy" method)
- SQLiX using UDF (User defined functions) or function calls thus no need to reverse engineer the original SQL syntax
- SQLix is able to identify the database version and gather sensitive information for the following SQL servers: MS-Access, MS-SQL, MySQL, Oracle and PostgreSQL.
- The comparison module of SQLiX is able to deal with complex HTML contents even when they include dynamic ads
- SQLiX contains an exploit module to demonstrate how a hacker could exploit the found SQL injection to gather sensitive information
