the-robot / Sqliv
Licence: gpl-3.0
massive SQL injection vulnerability scanner
Stars: ✭ 840
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Sqliv
Arachni
Web Application Security Scanner Framework
Stars: ✭ 2,942 (+250.24%)
Mutual labels: crawler, scanner, sql-injection
docus
Android application for scanning and managing documents.
Stars: ✭ 39 (-95.36%)
Mutual labels: scanner, scanning
Resources
No description or website provided.
Stars: ✭ 38 (-95.48%)
Mutual labels: scanner, sql-injection
Gorecon
Gorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Stars: ✭ 208 (-75.24%)
Mutual labels: crawler, scanner
magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (-43.1%)
Mutual labels: scanner, sql-injection
Cracker-Tool
All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭
Stars: ✭ 181 (-78.45%)
Mutual labels: sqli, sql-injection
Pspider
简单易用的Python爬虫框架,QQ交流群:597510560
Stars: ✭ 1,611 (+91.79%)
Mutual labels: crawler, multiprocessing
Crawlertutorial
爬蟲極簡教學(fetch, parse, search, multiprocessing, API)- PTT 為例
Stars: ✭ 282 (-66.43%)
Mutual labels: crawler, multiprocessing
W3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
Stars: ✭ 3,804 (+352.86%)
Mutual labels: scanner, sql-injection
Fooproxy
稳健高效的评分制-针对性- IP代理池 + API服务,可以自己插入采集器进行代理IP的爬取,针对你的爬虫的一个或多个目标网站分别生成有效的IP代理数据库,支持MongoDB 4.0 使用 Python3.7(Scored IP proxy pool ,customise proxy data crawler can be added anytime)
Stars: ✭ 195 (-76.79%)
Mutual labels: crawler, multiprocessing
Red hawk
All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
Stars: ✭ 1,898 (+125.95%)
Mutual labels: crawler, scanner
Whour
Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.
Stars: ✭ 18 (-97.86%)
Mutual labels: scanner, sqli
Black Widow
GUI based offensive penetration testing tool (Open Source)
Stars: ✭ 124 (-85.24%)
Mutual labels: crawler, sql-injection
core
An advanced and highly optimized Java library to build frameworks: it's useful for scanning class paths, generating classes at runtime, facilitating the use of reflection, scanning the filesystem, executing stringified source code and much more...
Stars: ✭ 100 (-88.1%)
Mutual labels: scanner, scanning
Not Your Average Web Crawler
A web crawler (for bug hunting) that gathers more than you can imagine.
Stars: ✭ 107 (-87.26%)
Mutual labels: crawler, scanner
Fawkes
Fawkes is a tool to search for targets vulnerable to SQL Injection. Performs the search using Google search engine.
Stars: ✭ 108 (-87.14%)
Mutual labels: crawler, sql-injection
Phoneinfoga
PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.
Stars: ✭ 5,927 (+605.6%)
Mutual labels: scanner, scanning
Konan
Konan - Advanced Web Application Dir Scanner
Stars: ✭ 412 (-50.95%)
Mutual labels: scanner, scanning
SQLiv
Massive SQL injection scanner
Features
- multiple domain scanning with SQL injection dork by Bing, Google, or Yahoo
- targetted scanning by providing specific domain (with crawling)
- reverse domain scanning
both SQLi scanning and domain info checking are done in multiprocessing
so the script is super fast at scanning many urls
quick tutorial & screenshots are shown at the bottom
project contribution tips at the bottom
Installation
- git clone https://github.com/the-robot/sqliv.git
- sudo python2 setup.py -i
Dependencies
Pre-installed Systems
Quick Tutorial
1. Multiple domain scanning with SQLi dork
- it simply search multiple websites from given dork and scan the results one by one
python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE>
python sqliv.py -d "inurl:index.php?id=" -e google
2. Targetted scanning
- can provide only domain name or specifc url with query params
- if only domain name is provided, it will crawl and get urls with query
- then scan the urls one by one
python sqliv.py -t <URL>
python sqliv.py -t www.example.com
python sqliv.py -t www.example.com/index.php?id=1
3. Reverse domain and scanning
- do reverse domain and look for websites that hosted on same server as target url
python sqliv.py -t <URL> -r
4. Dumping scanned result
- you can dump the scanned results as json by giving this argument
python sqliv.py -d <SQLI DORK> -e <SEARCH ENGINE> -o result.json
View help
python sqliv.py --help
usage: sqliv.py [-h] [-d D] [-e E] [-p P] [-t T] [-r]
optional arguments:
-h, --help show this help message and exit
-d D SQL injection dork
-e E search engine [Google only for now]
-p P number of websites to look for in search engine
-t T scan target website
-r reverse domain
screenshots
Development
TODO
- POST form SQLi vulnerability testing
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].