Hack Tool Repository

Categories Platforms Tools List Links News

By Name | By Date | By Popularity

By Name | By Date | By Popularity | Platform overview

By Name | By Date | By Popularity | By Rating

By Name | By Date | By Popularity | By Category

By Group | By Name | By Date | By Popularity

By Date | By Popularity

SQL Auditing Tools

Web	www.hacktoolrepository.com

SQL Auditing Tools

SQLAT is a suite of tools which could be usefull for pentesting a MS SQL Server. The tools are still in development but tend to be quite stable.

The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be ‘sa’ to run some of the tools, but this usually isn’t a problem.

Related to:

FreeTDS version 0.62.4

Site:	http://www.cqure.net/wp/sql-auditing-tools/
Source URL:	files/Database/SQL Auditing Tools/sqlat-src-1.1.0.tar.gz
Category:	Database
Hits:	703
Rating:	10
Added:	2007-04-27 18:20:56
Updated:	2008-11-10 18:37:04

Tested on:

Slackware	10 11 12	install.sh
Fedora Core	4 5 6 7 8	install.sh
Red Hat	EL3 EL4 EL5	install.sh
CentOS	4 5	install.sh
OpenSUSE	10	install.sh
Ubuntu	7.10	install.sh

Comments:

When using a newer version of FreeTDS, you will receive an error message:
gcc -O6 -Wall -DNDEBUG=0 -Iinclude -g -O2 -c -o sqllib.o sqllib.c
In file included from sqllib.c:22:
include/sqllib.h:73: error: expected =, ,, ;, asm or __attribute__ before * token
sqllib.c: In function value_as_string:
sqllib.c:695: error: TDSBLOBINFO undeclared (first use in this function)
sqllib.c:695: error: (Each undeclared identifier is reported only once
sqllib.c:695: error: for each function it appears in.)
sqllib.c:695: error: expected expression before ) token
sqllib.c:706: warning: ignoring return value of realloc, declared with attribute warn_unused_result
sqllib.c:727: warning: ignoring return value of realloc, declared with attribute warn_unused_result
sqllib.c:736: warning: ignoring return value of realloc, declared with attribute warn_unused_result
make: *** [sqllib.o] Error 1

Use version 0.62.4, which contains the TDSBLOBINFO structure.

by marc at 2007-12-21 13:25:16