WorkHolic/스크랩

(스크랩) sqlmap: SQL injection 자동화 툴

gromet 2021. 11. 10. 18:50
728x90
반응형

(스크랩) sqlmap: SQL injection 자동화 툴

sqlmap.org

 

sqlmap®
Automatic SQL injection and database takeover tool

 

fail2ban log를 보다 아래와 같은 로그를 확인했다.

 

/var/log/httpd/xxx.xxx.co.kr-access_log:103.37.235.199 - - [10/Nov/2021:18:14:59 +0900] "GET /document/mn03/downFileBro.php?f_id=66&type=b&usaE=3121%20AND%201%3D1%20UNION%20ALL%20SELECT%201%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name%20FROM%20information_schema.tables%20WHERE%202%3E1--%2F%2A%2A%2F%3B%20EXEC%20xp_cmdshell%28%27cat%20..%2F..%2F..%2Fetc%2Fpasswd%27%29%23 HTTP/1.1" 406 366 "-" "sqlmap/1.5.10.17#dev (https://sqlmap.org)"

 

406은 Not Acceptable로 mod_security가 잘 처리했다는 것이다.
sqlmap 왠지 낯설지 않은데..

확인해 보니 SQL Injection 자동화 툴이다.
현재 운영중인 사이트나 신규 개발사이트에서 마지막으로 안전성 테스트를 하기에 좋을 것 같다.

 

https://sqlmap.org/

 

sqlmap: automatic SQL injection and database takeover tool

Introduction sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate p

sqlmap.org

 

#SQLInjection #Automation #sqlmap 

728x90
SMALL