The Mole Automatic SQL Injection SQLi Exploitation Tool Tips



The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique.
The Mole SQL Injection Tool

Features
  • Support for injections using Mysql, SQL Server, Postgres and Oracle databases.
  • Command line interface. Different commands trigger different actions.
  • Auto-completion for commands, command arguments and database, table and columns names.
  • Support for query filters, in order to bypass certain IPS/IDS rules using generic filters, and the possibility of creating new ones easily.
  • Developed in python 3.
If you want to know how to use The Mole there’s a good tutorial here.
You can download The Mole here:

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • RSS