Skip to content

damit5/sqli_scan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
img
img
 
 
libs
libs
 
 
src
src
 
 
README.md
README.md
 
 
color.py
color.py
 
 
requirements.txt
requirements.txt
 
 
sql_error.ini
sql_error.ini
 
 
sqli_scan.py
sqli_scan.py
 
 

Repository files navigation

SQLI SCAN

Sqli_Scan , 批量sql注入扫描器

首先从浏览器(Bing、Google、Yahoo)上根据关键词搜索符合条件的链接,再根据链接进行自动判断是否可能存在注入

依赖

  • python3
    • requests
    • bs4

下载

git clone https://github.com/damit5/sqli_scan.git

cd sqli_scan

pip install -r requirements.txt

基本使用


    ===============================================================================

    _________________   .____    .___    _________
    /   _____/\_____  \ |    |   |   |  /   _____/ ____ _____    ____
    \_____  \  /  / \  \|    |   |   |  \_____  \_/ ___\\__  \  /    \
    /        \/   \_/.  \    |___|   |  /        \  \___ / __ \|   |  \
   /_______  /\_____\ \_/_______ \___| /_______  /\___  >____  /___|  /
           \/        \__>       \/             \/     \/     \/     \/
                                                                        d4m1ts
    ===============================================================================

usage: sqli_scan.py [-h] [-k inurl:example] [-p 5] [-e search engine]

optional arguments:
  -h, --help        show this help message and exit
  -k inurl:example  sql injection keyword
  -p 5              page of websites to look for in search engine
  -e search engine  the search engine you want to use. bing,yahoo,google

执行 python sqli_scan.py -k inurl:php?id= -p 3 -e bing

image

演示视频

Demo

About

SQL注入扫描器

Topics

sqli python36 sqlinjection

Resources

Readme
Activity

Stars

19 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages