Security & Hacking

New SQLi Vulnerable Site List Finder 2019

New SQLi Vulnerable sites finder Tool

Here is a Tool New SQLi Vulnerable finder scripted written in python

Download From https://github.com/the-robot/sqliv.git

1. Multiple domain scanning with SQLi dork

  • it simply search multiple websites from given dork and scan the results one by one
python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE>  
python sqliv.py -d "inurl:index.php?id=" -e google  

2. Targetted scanning

can provide only domain name or specific URL with query params

if an only domain name is provided, it will crawl and get URLs with query

then scan the URLs one by one

python sqliv.py -t <URL>  
python sqliv.py -t www.example.com  
python sqliv.py -t www.example.com/index.php?id=1  

3. Reverse domain and scanning

do reverse domain and look for websites that hosted on the same server as target URL

python sqliv.py -t <URL> -r

4. Dumping scanned result

you can dump the scanned results as json by giving this argument

python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE> -o result.json

View help

python sqliv.py --help

usage: sqliv.py [-h] [-d D] [-e E] [-p P] [-t T] [-r]

optional arguments:
  -h, --help  show this help message and exit
  -d D        SQL injection dork
  -e E        search engine [Google only for now]
  -p P        number of websites to look for in search engine
  -t T        scan target website
  -r          reverse domain

Tags
Show More

Related Articles

Leave a Reply

Leave a Reply

  Subscribe  
Notify of
Back to top button
Close