The Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique.

Features

• Support for injections using Mysql, SQL Server, Postgres and Oracle databases.
• Command line interface. Different commands trigger different actions.
• Auto-completion for commands, command arguments and database, table and columns names.
• Support for query filters, in order to bypass certain IPS/IDS rules using generic filters, and the possibility of creating new ones easily.
• Exploits SQL Injections through GET and POST methods.
• Developed in python 3.

Downloads:-

• Windows 32bit executable: themole-0.2.6-win32.zip
• Tarball-gzipped format: themole-0.2.6-lin-src.tar.gz
• Zip format: themole-0.2.6-win-src.zip