A Web Application Vulnerability Scanner Demo at https://pen-tester.herokuapp.com/ It can work with any URL, however, for injection, provided URL(s) should most likely be of the following nature (containing endpoints) http://testphp.vulnweb.com/listproducts.php?cat=1