Description :
This is the alpha (testing) version of ISR SQL SunBurn – ISS.
The final version will contain more stuff, but it will remain private, this doesn't mean that we won't create a public version.
So what does ISR SQL SunBurn (ISS) do ?
ISS is a php script that extracts all the possible information from a MySQL injection. Info (here we I don't refer to colons/tables/etc ... maybe in the near future). It searches and loads over 350 files with the help of load_file() – (ex /etc/passwd, /etc/shadow, etc)
Why did we decide to build this "tool"?
It's actually simple, it simplifies your work, and second of all, it's a necessity.
Hope I didn't bore you with the description, here's the video presentation of it.
Video Demonstration Here:
[youtube=425,350]http://www.youtube.com/watch?v=lQXofH2-grk[/youtube]
Mirror HIGH QUALITY: http://www.trilulilu.ro/InSecurity/153a786f8b20fd
Source: http://insecurity.ro/blog/isr-sql-sunburn-iss/
and I think, I posted in the right section (i don't know) ;)
Excelente, estoy seguro que con el tiempo irá mejorando mucho.
Espero saquen una versión publica... :-\ :-\