SQLi.py is a Python script designed for automating Time-Based Blind SQL Injection attacks. The script requires the -u
parameter with the URL and the GET parameter.
- Python 3
pwn
library- Other required libraries (install them using
pip install -r requirements.txt
)
python sqli.py -u <target_url>
-u, --url: The target URL with the vulnerable parameter, and the get param(now just working with 1)
Automated Time-Based Blind SQL Injection attacks. Utilizes pwn library for visuals.
Clone the repository:
git clone https://github.com/hamibubu/sqli.py.git
cd sqli.py
Install the required dependencies:
pip install -r requirements.txt
Run the script with the appropriate parameters:
python sqli.py -u <target_url>
python sqli.py -u http://example.com/vulnerable_page.php?id=12