https://github.com/coalfire-research/sqlinator

Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
https://github.com/coalfire-research/sqlinator

mitmproxy plugin security sqlinjection webapps xss

Last synced: 5 months ago
JSON representation

Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS

• Host: GitHub
• URL: https://github.com/coalfire-research/sqlinator
• Owner: Coalfire-Research
• Created: 2017-12-19T20:45:38.000Z (almost 8 years ago)
• Default Branch: main
• Last Pushed: 2022-12-08T01:13:38.000Z (almost 3 years ago)
• Last Synced: 2025-04-01T18:11:11.851Z (7 months ago)
• Topics: mitmproxy, plugin, security, sqlinjection, webapps, xss
• Language: Python
• Homepage:
• Size: 27.3 KB
• Stars: 83
• Watchers: 11
• Forks: 19
• Open Issues: 5
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# SQLinator

Uses mitmproxy to intercept all HTTP traffic and automatically forwards HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS

# Installation

**SQLinator only supports Python >= 3.6**

It's recommended to install SQLinator with pipenv: `pipenv install &&  pipenv shell`

# Usage

1. Start the SQLMap API server:

    `python sqlmapapi.py -s`

2. Run this script:

    `mitmdump -s "sqlinator.py "`

3. Start clicking through the target website

4. Profit