Earlier I posted a found version of SQLiDumper that was dropped from a backdoored copy. I thought maybe since the clean version was dropped it would have been real, but users familiar with the real software (and who knew the author of SQLiDumper) pointed out interface differences in the 10.x versions so it seems likely this was a fake. You can see the old thread here: https://cyberarsenal.org/threads/sq...ly-not-really-10-x-version-skip-this-one.133/
I looked through a junk folder for these:
And only one of the versions actually looks like what the 10.x interface is supposed to look like, the 10.2 one I highlighted.
Virustotal goes nuts over it but many aren't trojan they are "hacktool" and similar. The community feedback is just some +1 votes. It seems likely this is legit. I ran it in a vm and saw no extra traffic (except a call to a checkip.dyndns.org which is just for determining one's own IP - this isn't a c2 or phonehome it's just a service you can check it out yourself). Anyway I can't say this is clean, but it does seem to be real and I didn't see backdoor activity or traffic so I'm posting it for the same reasons as before - to prevent others from downloading the for-sure trojaned versions out there.
As has been said and I agree, use sqlmap instead
https://www.mirrored.to/files/YU9D1JBP/SQLi_Dumper_v10.2_(adds_languages_and_settings).7z_links
