CIP Cyber

Log In
Menu
Log In
  • Opinion
  • Product Reviews
  • Industrial Cybersecurity
  • Videos

SQLSentinel – SQL Injection Vulnerability Scanner

Table of Contents

SQL injection is the most dangerous and common web application attack, there are so many tools are available to exploit the SQL-injection vulnerability like Havij and SQLmap but to find a vulnerability is an important step to exploit the web application. So in this article we will discuss about a wonderful tool that can find the SQL-injection vulnerability on a web application.


SQLSentinel is an opensource tool that automates the process of finding
the sql injection on a website. SQLSentinel includes a spider web and
sql errors finder. You give in input a site and SQLSentinel crawls and
try to exploit parameters validation error for you. When job is
finished, it can generate a pdf report which contains the url vuln found
and the url crawled.

Please remember that SQLSentinel is not an exploiting tool. It can only finds url Vulnerabilities.

Find the SQL-injection vulnerability and then exploit the vulnerability by using the famous SQL-injection tool, SQLSentinel is a very easy tool to use.


SQLSentinel Tutorial

  • Go and download the tool here.
  • Extract it on your directory.
  • In my case I am on backtrack 5 based on Ubuntu.
  • Simply open the terminal and then locate the directory where you have extracted the tool before.
  • It is a Java dependent so use the command as:

root@bt:~/Desktop# java -jar sqlsentinel.jar





Do not forget to share this wonderful tool around your circle.








Note: If you want to learn more about Linux and Windows based Penetration testing, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
CIP Cyber Staff

CIP Cyber Staff

CIP Cyber Staff comprises CIP cybersecurity experts committed to delivering comprehensive information on critical infrastructure protection. The content covers diverse topics, equipping professionals to defend organizations and communities in an ever-evolving cyber landscape.

Most popular

Opinion

Password Cyberattack: Everything You Need to Know

November 7, 2023

Industrial Cybersecurity

Cybersecurity Awareness Month: Spotlight on ICS/OT Security

September 28, 2023

Opinion

How to Protect IoT Devices in Critical Infrastructure Networks

September 15, 2023

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training

Related Articles

What Proxies Are For

When you cannot access certain sites or hide your identity, you need a tool for that. For example, the USA proxies are in demand among

March 24, 2022

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training