Application security encompasses measures taken throughout the application's life-cycle to prevent exceptions in the security policy of an application or the underlying system (vulnerabilities) through flaws in the design, development, deployment, upgrade, or maintenance of the application.

Monday, May 20, 2013

Droid SQLi - Android SQL Injection Tool

DroidSQLi is the first automated MySQL Injection tool for Android OS. It allows you to test your MySQL based web application against SQL injection attacks. DroidSQLi supports the following injection techniques:

* Time based injection
* Blind injection
* Error based injection
* Normal injection


The technique to run the tool is almost same as other SQL Injection tool (like Pangolin, Havij), have to provide the URL with some parameter, then the tool will start injecting different value against this parameter.

It automatically selects the best technique to use and employs some simple filter evasion methods.

Legal Notice: This application is for educational purposes ONLY. No warranties of any kind are expressed or implied. Use at your own risk!

No comments:

Post a Comment