VulnerabilityAssessment.co.uk

SQLdict

SQLdict is a basic single ip brute-force MS SQL Server password utility that can carry out a dictionary attack against a named SQL account.

SQLdict is available from here.

The use of this tool is simple you just specify the IP address you are attacking, the user account you are up against and then load an appropriate wordlist to try via the Load Password File button

As you can see from the output the sa account has a password set to "password".

IT Security News:

Security boffins unveil BitUnlocker
Worries over "good worms" rise again
The Saga continues: Mujahedeen secrets - 2
Vulnerability count falls in 2007
Mozilla plugs critical flaws with Firefox patch
A rough 24 hours for Windows users - 81.01% affected
Russix is out
more........

Pen Testing Framework:

Pen Test Framework (html)
Source (FreeMind .mm format)
PDF (zip format)
Framework Poster available
Pre-site Template (html)
Pre-site Template (pdf)
Report Template (html)
Report Template (pdf)
Compliance Testing

Latest Tool Reviews:

firecat
creddump
goolag
dirbuster
fgdump password list
CTUpdate (WSUS Offline)
netwox
maltego
more

Information:
DNS Tools
Exploiting NFS
IT Threats
NTP Enumeration
Online Trace Route
Routing Registries
RSS Feed

Security boffins unveil BitUnlocker

DNS Tools

Exploiting NFS

© VulnerabilityAssessment.co.uk 24 February 2008