GitHunt
KA

KAY53N/ksql

一个SQL注入检测工具 Ksql is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.

blind-sql-injectiondatabasepythonsql-injection

Ksql

Ksql is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.Using mutiple threads to scaning

Screenshots

python ksql.py -u "http://localhost/test/test.php?id=1&name=kaysen" --current-user

ksql

Installation

You can download the latest tarball by clicking here or latest zipball by clicking here.

Preferably, you can download ksql by cloning the Git repository:

git clone --depth 1 https://github.com/kaysen820/ksql ksql-dev

ksql works out of the box with Python version 2.6.x and 2.7.x on any platform.

Usage

To get a list of basic options and switches use:

python ksql.py -h

Blind SQL injection

  • Boolean-based blind SQL injection
  • Time-based blind SQL injection
  • Error-based SQL injection
  • UNION query SQL injection
  • Stacked queries SQL injection

Languages

PHP67.5%Python32.5%

Contributors

KA
Created February 17, 2017
Updated August 8, 2023
KAY53N/ksql | GitHunt