Havij Advanced Sql Injection Tool Itsecteam

Havij is a automated SQL injection tool distributed by ITSecTeam, an Iranian security company. Since its release in 2010, other similar tools like sqlmap emerged. It can be considered forefather of automated sql injection tools.

jSQL is a java-based automatic SQL Injection tool, hence the name jSQL.

It is FOSS and is cross-platform compatible. It is assembled using libraries like Hibernate, Spock, and Spring. jSQL Injection supports 23 different databases including Access, MySQL, SQL Server, Oracle, PostgreSQL, SQLite, Teradata, Firebird, Ingris, and many more. jSQL Injection is placed on GitHub and uses platform Travis CI for continuous integration. It checks for multiple injection strategies: Normal, Error, Blind, and Time. It has other features such as searching for administration pages, brute-force of password hash, creation and visualization of Web shell and SQL shell, etc. jSQL Injection can also read or write files.

jSQL injection is available in Operating Systems like Kali, Parrot OS, Pentest Box, BlackArch Linux, and other pen-testing distros.

Download

The purpose of all of the above was to explain, step by step, and understand how a web application can be tried to be attacked using SQL injection. Even though the process was done manually, this can also be automated using a tool like Havij. You can find the link for downloading it in the article sources.

SOURCES

[1] _10-2017_Top_10

[2] _injection

[3] -how-bell-was-hacked-sql-injection/

[4] -canada-security-breach-391451

[5] =Fp47G4MQFvA

[6] -advanced-automated-sql-injection-tool/

[7] -boot/spring-boot-hello-world-example-jsp/

Several of the attacks appear to have involved an Iranian automated SQL injection tool called Havij 1.18 Pro, as per logs found in the leaked data, which includes the tool's payload, the researcher says. The attackers seem to have been successful in compromising Commercial Bank of Ceylon's web-facing front-end using a combination of this tool and Web Shell upload, but were unable to pivot onto the internal network as a result of relatively strong internal security controls.

In addition to the Commercial Bank of Ceylon attack, the Havij advanced SQL injection tool was apparently used in the attacks against Kathmandu, Nepal-based Sanima Bank and Dhaka, Bangladesh-based Dutch Bangla Bank, the researcher confirms. The Qatar National Bank breach also involved an SQL injection and Web Shell combination, but it remains unclear if it involved the Havij tool (see: Dissecting a Hacktivist Attack).

The automated SQL injection tool has gained a lot of popularity with the cybercriminals and white hat researchers alike, because of the ease with which SQL injection attacks could be launched - literally at a click of a button - greatly reducing the effort and expertise required to launch such attacks.

d0d94e66b7