Shoryuken

 SQL Injection Takeover

Linux bash tool designed to get full control of poorly configurated web applications with backend DBMS in the same machine

Method

Uses SQL injection techniques

It is done using the same unique HTTP request, the shoryuken (that means "rising dragon punch" in japanese).

Usage

./shoryuken1.5 [OPTION] {TARGET | INPUT_FILE} {OUTPUT_FILE}

Options

  • -h help

  • -i interactive mode

  • -p direct punch

  • -t test mode

  • -s scan from list

  • -l test from list

Advantages

  • Gets root/system almost instantly;

  • Scans and tests multiple targets;

  • Very simple to use;

  • Very small (just 9k) e portable;

  • Can be easily used in tiny linux systems like mobile ones;

  • No need to download/upload anything to target;

  • No need for an extra open port on machine or firewall;

Example

./shoryuken1.5 -t "www.example.com/page.php?name=john"

End

Made with Slides.com