sqli-hunter v1.2.2 releases: simple sqlmap api wrapper and proxy server

SQLi-Hunter

SQLi-Hunter is a simple HTTP proxy server and a sqlmap api wrapper that makes dig SQLi easily.

Installation

Requirement

• Ruby: > 2.0.0
• sqlmap

Install

via source code

git clone https://github.com/sqlmapproject/sqlmap.git
git clone https://github.com/zt2/sqli-hunter.git
cd sqli-hunter
gem install bundle
bundle install

via docker

• Build the Docker image:

docker build -t sqli-hunter https://github.com/zt2/sqli-hunter.git

• Run the Docker image:

docker run -ti -p 8080:8080 -v /tmp:/tmp --rm sqli-hunter -p 8080

The volume argument allows SQLi-Hunter to persist output files to be accessed on the host system. The port mapping argument will enable SQLi-Hunter to start a proxy server to be accessed on the host system.

• Setup proxy in the browser and you are ready to go.

Usage

start sqlmap api

python sqlmapapi.py -s

Run SQLi-Hunter

ruby bin/sqli-hunter.rb

configure proxy server settings in your browser