Forums: Best Sql Hello Vulnerability Scanner - Forums

Jump to content

  • (3 Pages)
  • +
  • 1
  • 2
  • 3
  • You cannot start a new topic
  • You cannot reply to this topic

Best Sql Hello Vulnerability Scanner

#1 User is offline   MxMx 

  • Sergeant First Class
  • Icon
  • Group: Members
  • Posts: 329
  • Joined: 23-August 03

Posted 21 September 2004 - 01:32 PM

Hey all..

Yeah I know ... Ive searched google but NO results <_<
I only found Retina and Nessus .. which one is the best for the SQL Hello hole?

thanx :(
0

#2 User is offline   labbertasche 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 34
  • Joined: 30-August 03

Posted 22 September 2004 - 02:05 AM

look at xscan nasal* scripts ;) (you can delete the other scripts and ... you have a hello scanner)

greets
labbertasche



ps: why do you need a scanner ? ping 1433 an take a bat script from the board :rolleyes:


*nasal or nessus mhhh my brain ... :blink:
0

#3 User is offline   realloader 

  • Corporal
  • Icon
  • Group: Members
  • Posts: 164
  • Joined: 05-December 03

Posted 22 September 2004 - 02:25 AM

i got a shell.
But all Port r closed! what can we do?
0

#4 User is offline   MxMx 

  • Sergeant First Class
  • Icon
  • Group: Members
  • Posts: 329
  • Joined: 23-August 03

Posted 22 September 2004 - 02:49 AM

type exit :) <_<
0

#5 User is offline   labbertasche 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 34
  • Joined: 30-August 03

Posted 22 September 2004 - 02:52 AM

* mp * :P




uhhh mist sorry spam :unsure:
0

#6 User is offline   Lanig 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 70
  • Joined: 29-November 03

Posted 22 September 2004 - 06:27 AM

SQLScan by foundstone
link:
http://foundstone.co...ile=sqlscan.zip
0

#7 User is offline   MxMx 

  • Sergeant First Class
  • Icon
  • Group: Members
  • Posts: 329
  • Joined: 23-August 03

Posted 22 September 2004 - 09:18 AM

SQLScan is a Windows GUI scanner tailored specifically to finding SQL servers
that may be vulnerable to the recent SQL "Slammer" or "SQHell" worm that
attacks vulnerable Microsoft SQL 2000 servers.

thanq for the url but dont think this is the right scanner for SQLHello .. I had some results checking by hand .. and then checked it with these scanner and it didnt find my result ( shell vuln ) .. but thanks anyway :)

I found this vuln @ Buqtrack ID 53..

and Sql Hello is Buqtrack ID 5411 :blink:
0

#8 User is offline   SkullSplitter 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 48
  • Joined: 12-September 03

Posted 22 September 2004 - 04:47 PM

when i remember right ,

is the sqlhello exploit over 2 years old

why do you want a scanner for this old shit ?
0

#9 User is offline   isaiah 

  • Corporal
  • Icon
  • Group: Members
  • Posts: 199
  • Joined: 12-August 03

Posted 22 September 2004 - 05:09 PM

they are probly berlly getting exploit l00l
0

#10 User is offline   EzMe 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 139
  • Joined: 03-March 04

Posted 22 September 2004 - 06:13 PM

Gere u go m8

Usage: sqlhelloscanner2 scan.txt yourip > results.txt
Make sure scan.txt being your scan file and you must enter your ip after scan.txt the rest explains its self ;)

Attached File(s)


0

#11 User is offline   ganz2 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 67
  • Joined: 04-December 03

Posted 22 September 2004 - 08:08 PM

EzMe, on Sep 23 2004, 02:13 AM, said:

Gere u go m8

Usage: sqlhelloscanner2 scan.txt yourip > results.txt
Make sure scan.txt being your scan file and you must enter your ip after scan.txt the rest explains its self ;)

can u specify an ip range in the text file or must you list all ips?
0

#12 User is offline   BoNzO 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 119
  • Joined: 24-December 03

Posted 22 September 2004 - 11:06 PM

scan500 -p 1433 127.0.0.1 127.*.*.1 & good batch script...
0

#13 User is offline   MxMx 

  • Sergeant First Class
  • Icon
  • Group: Members
  • Posts: 329
  • Joined: 23-August 03

Posted 22 September 2004 - 11:48 PM

yeah the SQL hello is 2 years old .. but still quite vulnerable :)
0

#14 User is offline   MxMx 

  • Sergeant First Class
  • Icon
  • Group: Members
  • Posts: 329
  • Joined: 23-August 03

Posted 23 September 2004 - 06:02 AM

Help Me !

I typ sqlscanner.exe ips.txt myIP

the progs outputs a result.txt after 1 sec :(

I hasnt scanned my ips :unsure:
0

#15 User is offline   iiiemuiii 

  • Private
  • Icon
  • Group: Members
  • Posts: 4
  • Joined: 05-September 04

Posted 23 September 2004 - 04:04 PM

that's just how fast the scanner works. i scanned about 2000 ips in 5-8 seconds.

also u need to make sure the contents in your file must be just the ips.
0
  • (3 Pages)
  • +
  • 1
  • 2
  • 3
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users

  • Share



Our Sponsors:


SwiftLayer Affiliate Web Hosting