From Aldeid

Jump to: navigation, search
Draft.png
DRAFT
THIS ARTICLE IS A DRAFT. IT MUST NOT BE CONSIDERED AS PUBLISHED YET.
Thank you for your comprehension.

Contents

Pangolin

Description

Pangolin is an automatic SQL injection penetration testing tool developed by NOSEC. Its goal is to detect and take advantage of SQL injection vulnerabilities on web applications.

Once it has detected one or more SQL injections on the target host, it is possible to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specific DBMS.

Pangolin is compatible with Windows systems only (2K/XP/2K3).

Installation

  1. Download Pangolin at this location: http://down2.nosec.org/pangolin_free_edition_2.5.2.975.rar
  2. Unrar the archive and follow the steps of the installation

Usage

Incomplete.png
INCOMPLETE SECTION OR ARTICLE
This section/article is being written and is therefore not complete.
Thank you for your comprehension.
Retrieved from "http://www.aldeid.com/wiki/Pangolin"
Aldeid.com • Sébastien DAMAYE • Network Security, Ethical Hacking, Network Forensics