Difference between revisions of "Category:OWASP SQLiX Project Roadmap"

From OWASP
Jump to: navigation, search
(Roadmap "draft")
 
Line 5: Line 5:
 
* add file download/upload feature
 
* add file download/upload feature
 
* add support for external databases which could be used during the exploit phase (like transfering data from the target database to a SQLiX managed database)
 
* add support for external databases which could be used during the exploit phase (like transfering data from the target database to a SQLiX managed database)
* integrate SQLiX with HTTP proxies like eInterceptor or pantera
+
* integrate SQLiX with HTTP scanning proxies (eInterceptor, pantera, spike ...)
 +
* integrate SQLiX with nikto HTTP scanners
 
* integrate SQLiX with metasploit (SQLiX using SQL Injection could upload the meterpreter payload and start it with a reverse connection)
 
* integrate SQLiX with metasploit (SQLiX using SQL Injection could upload the meterpreter payload and start it with a reverse connection)

Revision as of 12:34, 29 August 2006

  • add support for more database servers (Sybase, DB2 ...)
  • enhance the crawler to handle HTTP post and fill automaticaly forms
  • add a feature to dump the database schema
  • add a feature to dump data from a given table
  • add file download/upload feature
  • add support for external databases which could be used during the exploit phase (like transfering data from the target database to a SQLiX managed database)
  • integrate SQLiX with HTTP scanning proxies (eInterceptor, pantera, spike ...)
  • integrate SQLiX with nikto HTTP scanners
  • integrate SQLiX with metasploit (SQLiX using SQL Injection could upload the meterpreter payload and start it with a reverse connection)

This category currently contains no pages or media.