sqli-hunter v1.2.2 releases: simple sqlmap api wrapper and proxy server

by do son · Published · Updated

sqlmap api

SQLi-Hunter

SQLi-Hunter is a simple HTTP proxy server and a sqlmap api wrapper that makes dig SQLi easily.

Installation

Requirement

  • Ruby: > 2.0.0
  • sqlmap

Install

via source code

git clone https://github.com/sqlmapproject/sqlmap.git
git clone https://github.com/zt2/sqli-hunter.git
cd sqli-hunter
gem install bundle
bundle install

via docker

  • Build the Docker image:
docker build -t sqli-hunter https://github.com/zt2/sqli-hunter.git
  • Run the Docker image:
docker run -ti -p 8080:8080 -v /tmp:/tmp --rm sqli-hunter -p 8080

The volume argument allows SQLi-Hunter to persist output files to be accessed on the host system. The port mapping argument will enable SQLi-Hunter to start a proxy server to be accessed on the host system.

  • Setup proxy in the browser and you are ready to go.

Usage

start sqlmap api

python sqlmapapi.py -s

Run SQLi-Hunter

ruby bin/sqli-hunter.rb

configure proxy server settings in your browser

Tags: sql injectionSQLi-Huntersqlmap