jSQL Injection Java Application for Automatic SQL Injection
jSQL Injection Java Application for Automatic SQL Injection

jSQL Injection: Java Application for Automatic SQL Injection

jSQL Injection is a lightweight application used to find database information from a distant server.

It’s freeopen source and cross-platform for Windows, Linux and Mac OS X with Java from version 8 to 15.

jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest BoxParrot Security OSArchStrike and BlackArch Linux.

Features

  • Automatic injection of 33 kinds of databases: Access, Altibase, C-treeACE, CockroachDB, CUBRID, DB2, Derby, Exasol, Firebird, FrontBase, H2, Hana, HSQLDB, Informix, Ingres, InterSystems-IRIS, MaxDB, Mckoi, MemSQL, MimerSQL, MonetDB, MySQL, Neo4j, Netezza, NuoDB, Oracle, PostgreSQL, Presto, SQLite, SQL Server, Sybase, Teradata and Vertica
  • Multiple injection strategies: Normal, Error, Stacked, Blind and Time
  • Various injection processes: Default, Zip, Dios
  • Sandbox for SQL and tampering scripting
  • List to inject multiple targets
  • Read and write file using injection
  • Create and display Web shell and SQL shell
  • Bruteforce password hash
  • Search for admin pages
  • Hash, encode and decode text
  • Authenticate using Basic, Digest, NTLM and Kerberos
  • Proxy connection on HTTP, SOCKS4 and SOCKS5

Installation

Install Java 8 or up to 15, then download the latest release and double-click on the file jsql-injection-v0.83.jar to launch the software.

You can also type java -jar jsql-injection-v0.83.jar in your terminal to start the program.

If you are using Kali Linux then get the latest release using command sudo apt-get -f install jsql, or make a system full upgrade with apt update then apt full-upgrade.

Continuous integration

This software is developed using open source libraries like SpringSpock and Hibernate and is tested using continuous integration platform like Travis CI and Github Actions.

Non regression tests run against dockerized and in memory databases and GUI is tested on VNC screen in the cloud on CI platforms.

Then quality checks are stored on code quality platforms.

+---+ +-----------------------------------------------------------------------+
|   | |                         JUNIT TEST FRAMEWORK                          |
|   | +-----------------|-------------------------------------|---------------+
| D | +-----------------v-------------------+  +--------------v---------------+
| O | |          INJECTION MODEL            <--+             GUI              |
| C | +-----------------|-------------------+  +------------------------------+
| K | +-----------------v-----------------------------------------------------+
| E | |                              SPRING API                               |
| R | +---|---------|----------|----------|------|------|-------|--------|----+
|   | +---v---------v----------v----------v------v------v-------v--------v----+
|   | | MYSQL | POSTGRES | SQL SERVER | CUBRID | H2 | DERBY | HSQLDB | SQLITE |
+---+ +-----------------------------------------------------------------------+

Test-bed scripts for PHP

Use the sample scripts to test injection on your local environment. First install a development environment like EasyPHP, then download the test-bed PHP scripts and place them into www/.

<?php
# http://127.0.0.1/mysql/strategy/get-normal.php?id=0

$link = mysqli_connect('localhost', 'root', '', 'my_database');

$result = $link->query("SELECT col1, col2 FROM my_table where id=$_GET[id]");

while ($row = $result->fetch_array($result, MYSQLI_NUM))
    echo join(',', $row);

Screenshots

Database
Database
SQL Engine
SQL Engine
Admin page
Admin page
SQL Shell
SQL Shell
Upload
Upload
Coder
Coder

Roadmap

  • WAF fingerprinting
  • Inject user defined query
  • Inject range of rows
  • Full Path Disclosure
  • Strategies: DNS out-of-band and routed query

Change log

  • v0.83 Modes Zip and Dios, Insertion char and db fingerprinting, 33 dbs including Altibase C-treeACE Exasol FrontBase InterSystems-IRIS MemSQL MimerSQL MonetDB Netezza and Presto
  • v0.82 Tampering options, Refactoring for Cloud and multithreading
  • v0.81 Test all parameters including JSON, Parse forms and Csrf tokens, 23 dbs including CockroachDB Mckoi Neo4j NuoDB Hana and Vertica, Translation complete: Russian, Chinese
  • v0.79 Error Strategies for MySQL and PostgreSQL compatible with Order/Group By, Wider range of Characters Insertion including multibyte %bf
  • v0.78 SQL Engine, MySQL Error strategy: DOUBLE, Translations: es pt de it nl id, 18 Database flavors including Access
  • v0.76 Translation: cz, 17 dbs including SQLite
  • v0.75 URI injection point, Source code mavenification, Upgrade to Java 7
  • v0.73 Authentication: Basic Digest Negotiate NTLM and Kerberos, Database flavor selection
  • v0.7 Scan multiple URLs, Github Issue reporter, 16 dbs including Cubrid Derby H2 HSQLDB MariaDB and Teradata
  • alpha-v0.6 Speed x2: No more hex encoding, 10 dbs including Oracle SQLServer PostgreSQL DB2 Firebird Informix Ingres MaxDb and Sybase, JUnit tests, Log4j, GUI translation
  • 0.5 SQL Shell, File Uploader
  • 0.4 Admin page finder, Bruteforce hashes like MD5 and MySQL, Encode and decode string with methods like Base64, Hex and MD5
  • 0.3 File injection, Web Shell with integrated CLI, Persistence of application parameters, Update checker
  • 0.2 Strategy Time, Multi-thread control: Start Pause Resume and Stop, Log URL calls
  • 0.0-0.1 Method GET POST Header and Cookie, Strategies Normal Error and Blind, Best strategy selection, Progression bars, Simple evasion, Proxy settings, MySQL only
Dark Mode

jsql-injection (this link opens in a new window) by ron190 (this link opens in a new window)

jSQL Injection is a Java application for automatic SQL database injection.

More Stories
DHCPEyes Intercept requests passively DHCP
DHCPEyes: Intercept requests passively of DHCP