SQLiHunter is a tool designed to identify SQL Injection (SQLi) vulnerabilities in web applications by utilizing the Wayback Machine to fetch URLs from domains and subdomains. This tool automates the collection of URLs from the Wayback Machine, filters them, cleans them, and generates a sqlmap command for analysis.
- Fetches URLs from the Wayback Machine for a domain or list of domains.
- Filters URLs to find potential SQL injection points (URLs with query parameters).
- Generates
sqlmapcommands to test the identified URLs. - Supports processing single domains or lists of domains.
- Saves raw and processed URLs in output files.
- Python 3
- cURL
The script uses the following Python libraries:
coloramafor console colorization.argparsefor command-line argument handling.subprocessto interact with cURL and execute system commands.
pip install coloramaInstallation Run this one-liner to install SQLiHunter globally:
git clone https://github.com/Acorzo1983/SQLiHunter.git && cd SQLiHunter && chmod +x sqlihunter.py && sudo ln -s $(pwd)/sqlihunter.py /usr/local/bin/sqlihunter- Clone the repository.
- Make the script executable.
- Create a symbolic link to run sqlihunter from any directory.
Scanning a Single Domain
sqlihunter -d example.com- Fetch URLs for example.com from the Wayback Machine.
- Filter URLs with query parameters.
- Save raw/cleaned URLs to the output directory.
Scanning Multiple Domains Create a text file (e.g., domains.txt) and run:
sqlihunter -l domains.txtThis will:
- Fetch URLs for all domains in the list.
- Save raw/cleaned URLs in separate files per domain.
- Generate a combined sqlmap command for all domains.
Argument Description
-d, --domain Specify a single domain to scan.
-l, --list Specify a text file containing a list of domains.
-o, --output Set the output directory (default: ./output).Feel free to contribute to this project! Open an issue or submit a pull request.
This project is licensed under the MIT License. See the LICENSE file for details.
Made with ❤️ by Albert C.