New SQLi Vulnerable sites finder Tool

Here is a Tool New SQLi Vulnerable finder scripted written in python

Download From

1. Multiple domain scanning with SQLi dork

  • it simply search multiple websites from given dork and scan the results one by one
python -d <SQLI DORK> -e <SEARCH ENGINE>  
python -d "inurl:index.php?id=" -e google  

2. Targetted scanning

can provide only domain name or specific URL with query params

if an only domain name is provided, it will crawl and get URLs with query

then scan the URLs one by one

python -t <URL>  
python -t  
python -t  

3. Reverse domain and scanning

do reverse domain and look for websites that hosted on the same server as target URL

python -t <URL> -r

4. Dumping scanned result

you can dump the scanned results as json by giving this argument

python -d <SQLI DORK> -e <SEARCH ENGINE> -o result.json

View help

python --help

usage: [-h] [-d D] [-e E] [-p P] [-t T] [-r]

optional arguments:
  -h, --help  show this help message and exit
  -d D        SQL injection dork
  -e E        search engine [Google only for now]
  -p P        number of websites to look for in search engine
  -t T        scan target website
  -r          reverse domain