ScanQLi is a simple SQL injection scanner with somes additional features. This tool can’t exploit the SQLi, it just detect them. Tested on Debian 9.
ScanQLi is a SQLi scanner to detect SQL vulns.
Features
Prerequisites
Install git tool
apt update
apt install git
Clone the repo.
git clone https://github.com/bambish/ScanQLi
Install python required libs
apt install python-pip
cd ScanQLi
pip install -r requirements.txt
For python3 please install python3-pip and use pip3
Also Read : ParamPamPam : Tool For Brute Discover Parameters
Usage
./scanqli -u [URL] [OPTIONS]
Examples
Simple URL scan with output file
python scanqli.py -u ‘http://127.0.0.1/test/?p=news’ -o output.log
Recursive URL scanning with cookies
python scanqli.py -u ‘https://127.0.0.1/test/’ -r -c ‘{“PHPSESSID”:”4bn7uro8qq62ol4o667bejbqo3″ , “Session”:”Mzo6YWMwZGRmOWU2NWQ1N2I2YTU2YjI0NTMzODZjZDVkYjU=”}’
bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…