Pangolin

Description

Pangolin is an automatic SQL injection penetration testing tool developed by NOSEC. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications.

Once it has detected one or more SQL injections on the target host, it is possible to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS.

Pangolin is compatible with Windows systems only (2K/XP/2K3).

Installation

1. Download Pangolin at this location: http://down2.nosec.org/pangolin_free_edition_2.5.2.975.rar
2. Unrar the archive and follow the steps of the installation

Usage

Section incomplète ou article incomplet Cette section ou cet article doit être complété(e) car il (elle) est en cours d'élaboration. Merci de votre compréhension. Incomplete section or article This section or this article must be completed, it is currently in progress. Thank you for your comprehension.