Read server files through SQL injection using UNION SELECT LOAD_FILE(). Requires MySQL FILE privilege to access server-side files like /etc/passwd for security testing.
Detect time-based blind SQL injection vulnerabilities by sending sleep-inducing payloads and measuring response delays in MySQL, PostgreSQL, and MSSQL databases.
Enables AI assistants to interact with Databricks workspaces, running SQL queries, managing jobs, and exploring schemas via the Model Context Protocol.
Query Elasticsearch indices using query DSL with enabled highlights. Connect and interact with Elasticsearch data via the Elasticsearch MCP Server for precise search results.
Generate MySQL server-side password hashes for any plaintext. Supports SHA1-based formats (mysql41-57) and caching_sha2_password (mysql80). Returns hash with version, algorithm, and salt info.
Identify auto-increment columns at risk of overflow by analyzing current values against maximum limits and usage percentages to prevent database errors.
Scans Azure SQL, PostgreSQL, MySQL databases and Redis caches for security misconfigurations including encryption, firewall, authentication, and public endpoint exposure, reporting critical to medium findings.