Monday, May 27, 2013

Simple cross-platform connect-back and binds payloads in C#

I committed some simple connect-back and bind payloads to GitHub this morning. You may find them here:

Wednesday, May 22, 2013

Vulnerable SOAP endpoint and related fuzzer on github

I have written a small SOAP endpoint in C# and a corresponding fuzzer that parses the WSDL of the vulnerable endpoint and attempts to find SQL injections. It then passes vulnerable URL's it finds to SQLMap via the RESTful SQLMap API. You can get the source here: