[SQL Injection Tool] Hexjector v1.0.7.4 - Web Application Security

hexon

Hexjector is an Opensource,Cross Platform PHP script to automate site
Pentest for SQL Injection Vulnerabilties.

Version 1.0.7.4 (3/7/2010)

Hexjector v1.0.7.4
-WAF_Detector v1.0.2
-HexacURL v1.0.1
-Hexafind v1.0.1
-Error_Check v1.0.2
-Hexdumper v1.0.1
-HexaCurD v1.0.0
-Hexdumpfile v1.0.0
-Hexoutfile v1.0.0
-Hexloader v1.0.0
-HexDorker v1.0.1

-MsAccess SQL Injection is not added yet, it will be added in the next version.
-MySQL Injection v4 is back !
-WebPanel is Added.
-Every additional tool is separated to enable users to know the progress of the
additional tools.
-Index.php is made to convenient users in using tools of Hexjector.
-Refined the code to reduce wastage of HTTP Requests.
-Every file that specialized in Connection will have a prefix "Con_".
-Waf_Detector.php is removed.
-Waf_Detector is integrated into each Connection.
-Every File with Waf_Detector have a postfix "_WD" to ease users & developers
to identify it.
-Wafdetect on MySQL Injection v4 is disabled by default as it may hinder the process.
(Enabled back by integrating connection with wafdetect)
-wafdetect is removed as wafdetect is integrated into each Connection.
-Coalesce() is removed.
-Problem on Webservers not using apache is fixed. (Apache_request_headers() )
-Error_reporting is enabled. (Previously disabled due to my fault)
-Background of Hexjector is changed.
-Hexjector Wordpress Blog opened (http://sourceforge.net/hexjector/wordpress)
-Personal Wordpress Blog opened.
-Wallpaper Gallery opened.
-Users can see Wallpapers submitted at the Gallery.
-Filename error fixed as Filename is case-sensitive in Unix.
-Auto-Update Check is done.
-Union All select in Information.php is changed to Union distinct select.
-HexacURL and HexDorker is separated from main

A New Tool had been made.
-HexaCurD.php is made.
-HexaCurD is an additional tool to aid users to retrieve the Current Directory
of a particular table in MsAccess SQL Injection.

A New Tool had been made.
-HexDorker.php is made.
-HexDorker is a Tool to search for sites by using Google Dork and check the sites
for SQL Injection Vulnerabilities.

Download Link:

Win32 :

http&#58;//sourceforge&#46;net/projects/hexjector/files/Hexjector%20(Win32)/Hexjector%20v1&#46;0&#46;7&#46;4&#46;zip/download

Unix :

http&#58;//sourceforge&#46;net/projects/hexjector/files/Hexjector%20(Unix)/Hexjector%20v1&#46;0&#46;7&#46;4&#46;tar/download

Mac :

http&#58;//sourceforge&#46;net/projects/hexjector/files/Hexjector%20(Mac)/Hexjector%20v1&#46;0&#46;7&#46;4&#46;tar/download

CustomiZer

nice share, thank you

hexon

Yeah, your welcome

undead

nice share ;)

Xin

Nice share, i will check this out soon

alix10

im gonan download this ty :D

hexon

Thanks for the replies

Bursihido

nice share bro :)

hexon

There is a patch for this version , I will post it up later.

hexon

Hexjector v1.0.7.4 Fix.

Filename : hexjector.php

Replace hexjector.php with this code:
http://hexjector.net/patch/hexjector.txt

Credits to jackh4x0r for notifying and me for the fix.

Any questions, please submit a ticket @ http://support.hexjector.net/ and your question will be answered ASAP.

GameOver

Thanks for share! :)

hexon

Remember to patch it first before using it though.

Forgotten King

is this an automated tool or manual one.

hexon

It is an automated one of course.

qibo212

Nice share, i will check this out soon

Howdy, Stranger!

Top Posters

Who's Online (1)