File transfer via TFTP, FTP and HTTP - Githubissues

sqlmapproject / sqlmap

Automatic SQL injection and database takeover tool

http://sqlmap.org

Other

32.43k stars 5.71k forks source link

File transfer via TFTP, FTP and HTTP #32

Open bdamele opened 12 years ago

bdamele commented 12 years ago

In both --file-upload and --os-pwn provide the user with the option to download onto the DBMS filesystem the payload stager (or shellcodeexec executable) via HTTP/TFTP/FTP server from the attacker (or a staged third-party server) machine rather than uploading it via SQL payload's file write methods.

Port the same concept eventually to --file-download too.

Libraries:

FTP server: http://code.google.com/p/pyftpdlib/ (MIT License).
TFTP server: http://tftpy.sourceforge.net/ (MIT License).
HTTP server: either http://docs.python.org/library/basehttpserver.html or http://docs.python.org/library/simplehttpserver.html (both part of Python interpreter).

stamparm commented 11 years ago

Example how to for MsSQL/FTP: http://labs.portcullis.co.uk/download/Revelli-OwaspDay2-Rome.pdf (slide 12)