Ah D injection tool functions:
1. Scan the injection point
Use AhD to scan the website and just enter the URL.
2. SQL injection detection
Detect links known to be injected.
3. Management entrance detection
Detect the entry point for website login. If you have obtained the username and password, you can use this to scan to see if you can find the backend for login.
4. Browse the web
You can use this to browse the web. If you encounter a link that can be injected into the web page, you will be prompted.
5. Directory view
This is mainly used to view the physical directory of the website.
6. CMD/upload
When you have a database with SA permissions, you can enter here to execute CMD commands, or upload some small files, such as some scripts. But those who can get SA permission now are very lucky.
7. Annotation and uploading
Look at other virtual sites on the same host as this website and detect whether there are vulnerabilities in other sites on the host. That upload is basically unusable now.
AhD injection tool features:
1. Self-created injection engine can detect more injected connections.
2. Using multi-threading technology, the detection speed is fast
3. It has good injection detection capabilities for databases such as "MSSQL error display mode", "MSSQL non-error display mode", "Access" and other databases.
4. Built-in "cross-database query", "injection point scanning", "management entrance detection", "directory view", "CMD command", "trojan upload", "registry reading", "sidenote/upload" , "WebShell management" integrated injection toolkit
How to use the D injection tool:
1. Run the ahd injection tool and open the software
2. Click the "Scan Injection Point" function on the left side of the software, enter the website address that needs to be detected in the address bar, and click the detection button behind the address bar.
3. The injection point detected on the current page will be displayed at the bottom of the software. If there is no injection point on the homepage, you can change to other pages. You can click on the webpage to enter other pages, and click to enter each column of the website to see if there is an injection point on each page. .
4. If there are no injection points on all pages and links you click, it is possible that your website does not have common injection vulnerabilities.
5. If the test finds that there is an injection point, you can first select an injection point, right-click and select "Injection Test" to check whether the injection is available.
6. Enter the injection detection page and click the "Detection" button directly.
7. Wait for the message "Detection Complete" to appear in the lower left corner, and then click "Detect Table Segment"
8. The account and password related table segments have been detected here. Generally, sensitive characters for administrator accounts such as "admin" or "administrator" or user are preferred.
9. After the test is completed, check the password field and select the test content.
10. You can detect the administrator’s login account and password!
AhD Injection Tool FAQ:
Question: What does the ahd injection tool detect to intrude?
Answer: The injection tool is just a tool for detecting injection vulnerabilities. If the website does not have this vulnerability, it will not be injected! Generally, the website tested is asp Extended websites (other extensions are also possible, as long as there are SQL injection problems). As for the old test, no available ones were detected. This is because many websites have already patched this vulnerability, so it is normal that it is not available. , and what I want to say is that when you use this software to cause damage, you must also be prepared to drink tea. The editor of Huajun would like to remind you: Users must use this software within the scope of the law, such as The user shall bear the consequences of using the software beyond the scope permitted by law!
Question: Why does the ahd injection tool prompt "You may not have appropriate permissions to access this project" when running?
Answer: Anti-virus has prohibited the software from running. Please add the software to the anti-virus whitelist.
AhD injection tool update log:
Developer GG said there are really no bugs this time~
Decompression password: softwaredownload4.com
The editor recommends:Ah D injection tool software has the advantages of easy use, simple interface, and elegant appearance. Huajun Software Park also has software such as Jinshan Network Shield and Changyou Patrol. Come and choose the software you need!
it works
it works
it works