An automatic SQL injection penetration testing (Pen-testing) tool
Pangolin's goal is to detect and take advantage of SQL injection vulnerabilities on web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or users specific DBMS tables/columns, run his own SQL statement, read specific files on the file system and more.

Test many types of databases
Your web applications using Access,DB2,Informix,Microsoft SQL Server 2000,Microsoft SQL Server 2005,Microsoft SQL Server 2008,MySQL,Oracle,PostgreSQL,Sqlite3,Sybase?
Pangolin supports all of them. Get Pangolin and take it for a spin to see what it can actually do for you!

Main features:

  • Auto-analyzing keyword,
  • HTTPS support,
  • Pre-Login,
  • Bypass firewall setting,
  • Injection Digger,
  • Data dumper, etc.

last updated on:
May 11th, 2011, 22:56 GMT
file size:
13.5 MB
developed by:
NOSEC Technologies Co., Ltd
license type:
operating system(s):
Windows 2K / XP / XP 64 bit / Vista / Vista 64 bit / 7 / 7 64 bit / 2003
C: \ Internet \ Servers \ Database Utils

In a hurry? Add it to your Download Basket!

user rating 2



Rate it!
4 Screenshots
Pangolin - This is the main window of Pangolin from where you can access all the features of the application.Pangolin - From this menu you can access various tools.PangolinPangolin
What's New in This Release:
  • New Feature:
  • Auto analyzing keywords before injecte with cookie.
  • Support manually select keywords.
  • Release "oracle_data.php" to customize "Remote Data URL" when injecte Oracle.
read full changelog

Add your review!