quinta-feira, 26 de outubro de 2017

SQLiv – SQL Injection Dork Scanning Tool

Em 23/10/2017 no site Darknet

SQLiv is a Python-based massive SQL Injection dork scanning tool which uses Google, Bing or Yahoo for targetted scanning, multiple-domain scanning or reverse domain scanning.
SQLiv - SQL Injection Dork Scanning Tool

SQLiv Massive SQL Injection Scanner Features

Both the SQLi scanning and domain info checking are done in a multiprocess manner so the script is super fast at scanning a lot of URLs. It’s a fairly new tool and there are plans for more features and to add support for other search engines like DuckDuckGo.
  • Multiple domain scanning with SQL injection dork by Bing, Google, or Yahoo
  • Targetted scanning by providing specific domain (with crawling)
  • Reverse domain scanning

Using SQLiv For SQL Injection Dorks Scanning

Multiple domain scanning with SQLi dork

Simply search multiple websites from given dork and scan the results one by one:

Targetted scanning

You can provide just the domain name or specific URLs with query parameters. If only the domain name is provided, it will crawl and get URLs with queries then scan the URLs one by one.

Reverse domain and scanning

Reverse domain scan and look for websites that are hosted on the same server as target URL.

SQLiv Dork SQL Injection Tool Usage

There is nothing else exactly like this, there are tools for information gathering via dorks like:
And SQL Injection tools like:
You can download SQLiv here:
Or read more here.

Nenhum comentário:

Postar um comentário