| Title |
Advanced MySQL Exploitation |
| Type |
Video
|
| Tags |
MySQL
SQL injection
exploiting
|
| Abstract |
Attackers performing SQL injection on a MySQL platform must deal with several limitations and constraints. For example, the lack of multiple statements in one query makes MySQL an unpopular platform for remote code execution compared to other platforms. This talk will show that arbitrary code execution is possible on the MySQL platform and explain the techniques. In this presentation, the author will demonstrate the tool he wrote, titled MySqloit. This tool can be integrated with metasploit and is able to upload and execute shellcodes using a SQL Injection vulnerability in LAMP or WAMP environments.
|
| Authors |
Muhaimin Dzulfakar
|
| Submitted |
October 06, 2009 |
| Rating |
Currently 0/5 stars (0 votes).
|
| Correlation |
| Linked to |
|
| Event |
HAR 2009
|
| Resource |
---
|
| Download |
| Source |
259_l2932_Advanced_MySQL_Exploitation.mp4 |
| Size |
221.4 MB |
| MD5 |
23776f580f373c9cfc4cf580ef148bb5 |
| SHA1 |
796701f3ad865f544f355f7998d6ced7058b80f7 |
top
