yInjector – SQL Injection Penetration Tool

yInjector is a MySQL Injection penetration tool.

SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. (Wikipedia)

Features:

Main Feature

• GET and POST request
• Proxy Support
• Log Report option avaiable

Exploitation Methods

• Columns number finder
• Database dump, SQL Injection must be provided
• Advanced and Automated Exploitation : finds the SQL Injection to provide a Shell Assistant

Shell Assistant features

• Multiple data from all DB extraction
• MySQL Command line (SELECT)
• md5 hash cracker assistant
• Remote Command Execution via SQL Injection

Video:  yInjector – SQL Injection Penetration Tool

More Information: http://y-osirys.com/softwares/

Thank you our friend Giovanni ‘Osirys‘ Buzzin (Developer of yInjector).