Absinthe is a gui-based tool that automates the process of downloading the schema & contents of a database that is vulnerable to Blind SQL Injection.

Absinthe does not aid in the discovery of SQL Injection holes. This tool will only speed up the process of data recovery.

[b]Requirement[/b]
windows*: require .Net libs
Linux or Mac Os X: MUST install emulation of .Net libs called [url=http://www.mono-project.com/] Momo[/url] and [url=http://wxnet.sf.net/]wx.NET[/url]. Ninaries are alrealy include in the tarball.

[b]Features[/b]
-Automated SQL Injection
-Supports MS SQL Server, MSDE, Oracle, Postgres
-Cookies / Additional HTTP Headers
-Query Termination
-Additional text appended to queries
-Supports Use of Proxies / Proxy Rotation
-Multiple filters for page profiling
-Custom Delimiters

[b]MacOSX Version[/b] (Mac OSX & Mono) Version 1.3
This is the Mac OS X release of Absinthe (assembled by Freshman), and should work with Mono. (It has not been tested with pnet)
This package includes both the binaries and the source code, as well as custom builds of wx.NET 0.6.1 that are patched to allow threading (The patch is available here)
Everything you need to run the application should be in the Absinthe.app structure.
The C# source code for Absinthe is available under the GPLv2. Certain portions of the source are also available under a BSD-style license in the documentation section.

[b]Screenshot[/b]

Download[url=http://packetstormsecurity.org/UNIX/security/Absinthe-1.3-MacOSX.tar.gz] Absinthe 1.3 fo OSX[/url]

---

Filed under: OSX security tools - @ April 5, 2005 8:31 pm