Reference: OWASP
Testing for SQL Injection
- OWASP SQLiX
- Sqlninja: a SQL Server Injection & Takeover Tool – http://sqlninja.sourceforge.net
- Bernardo Damele A. G.: sqlmap, automatic SQL injection tool – http://sqlmap.org/
- Absinthe 1.1 (formerly SQLSqueal) – http://sourceforge.net/projects/absinthe/
- SQLInjector – Uses inference techniques to extract data and determine the backend database server. http://www.databasesecurity.com/sql-injector.htm
- Bsqlbf-v2: A perl script allows extraction of data from Blind SQL Injections – http://code.google.com/p/bsqlbf-v2/
- Pangolin: An automatic SQL injection penetration testing tool – http://www.darknet.org.uk/2009/05/pangolin-automatic-sql-injection-tool/
- Antonio Parata: Dump Files by sql inference on Mysql – SqlDumper – http://www.ruizata.com/
- Multiple DBMS Sql Injection tool – SQL Power Injector – http://www.sqlpowerinjector.com/
- MySql Blind Injection Bruteforcing, Reversing.org – sqlbftools – http://packetstormsecurity.org/files/43795/sqlbftools-1.2.tar.gz.html