Havij is a program for Windows that relies on the SQL domain-specific language to discover the vulnerabilities of different web resources. This instrument is distributed on a free of charge basis and may be used to analyze the security status of your Internet projects. Unfortunately, the developer ceased support for registration servers, thus it is no longer possible to access its functions.

Functioning principle

The application is capable of accessing websites by modifying arbitrary SQL code. To perform this action, the concatenation method is applied. In case the procedure was successful, you can change the algorithm for executing a user request, and make it serve your purpose.

During the hacking process, the software leaves an imprint in the database and exposes information about the user base and the backend of the web service. Thus, it is possible to execute various commands and queries on the remote server, as well as view data.

Powerful capabilities

As for the main functions, you are able to perform password hashing and database dumping. You also have the option to choose the type of SQL code injection into the system. The utility features support for the HTTPS protocol and works with relational databases, such as MySQL, Oracle Database, and PostgreSQL.

It is necessary to mention that you can change the value of the injected SQL code according to your preferences. Before starting the hacking process, you have the ability to view a detailed list of keywords, data types or tables.

Features

free to download and use;
compatible with modern Windows versions;
allows you to test web resources for security issues;
it is possible to pick the type of SQL code injection;
you have the ability to connect relational databases.