Skip to content

README.md

Latest commit

 

History

History
159 lines (112 loc) · 3.65 KB

README.md

File metadata and controls

159 lines (112 loc) · 3.65 KB
SQLScan Logo

SQLScan

Python Version License Security Stars

SQLScan is a lightweight Python-based SQL Injection scanner focused on
GET parameter testing using classic detection techniques.

Overview

SQLScan is designed to quickly identify common SQL Injection vulnerabilities in URL parameters with clear, readable terminal output.

Supported detection techniques:

  • Error-Based SQL Injection
  • Boolean-Based SQL Injection
  • Time-Based (Blind) SQL Injection

Features

  • Error-Based SQL Injection

    • Detects database error messages
    • Supported DBs:
      • MySQL / MariaDB
      • PostgreSQL
      • Microsoft SQL Server

  • Boolean-Based SQL Injection

    • Compares response length differences (OR 1=1 vs OR 1=2)

  • Time-Based SQL Injection

    • Uses delay payloads (SLEEP, pg_sleep, WAITFOR)
    • Double verification (3s & 7s delay)

  • Multiple Target Support

    • Scan a single URL
    • Scan multiple targets from a file

  • Clean Terminal Output

    • Colored status indicators
    • Per‑parameter testing
    • Per‑target progress display

Installation

git clone https://github.com/pangeran-droid/sqlscan.git
cd sqlscan
pip install -r requirements.txt

Usage

               __                    
   _________ _/ /_____________ _____ 
  / ___/ __ `/ / ___/ ___/ __ `/ __ \ 1.0
 (__  ) /_/ / (__  ) /__/ /_/ / / / /
/____/\__, /_/____/\___/\__,_/_/ /_/ 
|-------/_/=======]--------------->


usage: python3 sqlscan.py [options]

options:
  -h, --help       show this help message and exit
  -u, --url URL    Target URL (example: http://site.com/page.php?id=1)
  -l, --list LIST  Scan multiple targets from file (example: targets.txt)
  -v, --version    Show program version

Examples

Scan a single URL

python3 sqlscan.py "http://example.com/page.php?id=1"

Scan multiple targets from file

target.txt

http://site1.com/item.php?id=1
http://site2.com/view.php?id=5
http://site3.com/page.php?cat=2

python3 sqlscan.py -l targets.txt

Output example

[TARGET 1/1] http://site1.com/item.php?id=1

[START] Target: http://site1.com/item.php
[INFO] Parameters found: id

============================================================
[TEST] Parameter: id
============================================================
  [VULN] MySQL Error-Based SQL Injection detected!
  [INFO] Boolean-Based indication detected
      [INFO] Verifying MySQL Time-Based (double check)
      [OK] Delay 3s confirmed
      [OK] Delay 7s confirmed
  [VULN] MySQL Time-Based SQL Injection CONFIRMED

[DONE] Scan finished

Project Structure

sqlscan/
├── sqlscan.py
├── requirements.txt
├── assets/
│   └── logo.png
└── README.md

Disclaimer

This tool is for educational and authorized security testing only.

Use SQLScan only on systems you own or have explicit permission to test.

The author is not responsible for any misuse or damage caused by this tool.

Lisensi

MIT License © 2026 Pangeran