Jump to content

privet sql server scanner edited by me :)


Recommended Posts

You search for the word sql, not for an sql error message. Its an interesting start but maybe needs some refinement.

Why are you using the file as the intermediary between the two functions? Seems a wasted resource as you don't use it for anything else.

Link to comment
Share on other sites

As that machine is in a completely different country to you I'd guess that you don't have permission to be hitting it with SQL injection attacks so I'd suggest not doing it.

I do know what you mean, you are expecting the word SQL only to come back if there is a verbose error, that isn't always the case which is why I said you need to refine it.

Link to comment
Share on other sites

I'm not deleting anything, just make your changes and update the tool when you do.

Another suggestion for next time is to explain more about how your script works and what it is supposed to do, from your initial post there is no clue that it is checking for SQLi in GET parameters.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...