New SQLi Vulnerable sites finder Tool

Here is a Tool New SQLi Vulnerable finder scripted written in python

Download From https://github.com/the-robot/sqliv.git

1. Multiple domain scanning with SQLi dork

  • it simply search multiple websites from given dork and scan the results one by one
python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE>  
python sqliv.py -d "inurl:index.php?id=" -e google

2. Targetted scanning

can provide only domain name or specific URL with query params

if an only domain name is provided, it will crawl and get URLs with query

then scan the URLs one by one 

python sqliv.py -t <URL>  
python sqliv.py -t www.example.com  
python sqliv.py -t www.example.com/index.php?id=1

3. Reverse domain and scanning

do reverse domain and look for websites that hosted on the same server as target URL 

python sqliv.py -t <URL> -r

4. Dumping scanned result

you can dump the scanned results as json by giving this argument 

python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE> -o result.json

View help 

python sqliv.py --help

usage: sqliv.py [-h] [-d D] [-e E] [-p P] [-t T] [-r]

optional arguments:
  -h, --help  show this help message and exit
  -d D        SQL injection dork
  -e E        search engine [Google only for now]
  -p P        number of websites to look for in search engine
  -t T        scan target website
  -r          reverse domain
Security & Hacking

Tagged in:

, , , , , ,