sqliv: massive SQL injection vulnerability scanner
SQLiv
Massive SQL injection vulnerability scanner
Features
- multiple domain scanning with SQL injection dork
- targetted scanning by providing specific domain (with crawling)
- reverse domain scanning
both SQLi scanning and domain info checking are done in multiprocessing so the script is super fast at scanning .many urls
Installation
- git clone https://github.com/the-robot/sqliv.git
- sudo python2 setup.py -i
Quick Tutorial
1. Multiple domain scanning with SQLi dork
- it simply searches multiple websites from given dork and scans the results one by one
2. Targetted scanning
- can provide an only domain name or specific url with query params
- if an only domain name is provided, it will crawl and get urls with query
- then scan the urls one by one
3. Reverse domain and scanning
- do reverse domain and look for websites that hosted on the same server as target url
Source: https://github.com/the-robot/