/PsqlHunter

Hunt sql commands in pcap

Primary LanguagePythonMIT LicenseMIT

Description

Make sqli injection detection on pcap quicker for forensics analyst. Detect sql requests in a pcap and render in a more friendly output.

Screenshot

image

Requirement

Installation

git clone https://github.com/MikeHorn-git/PsqlHunter.git
cd PsqlHunter/
python3 -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt

Usage

usage: PsqlHunter.py [-h] [--csv] [--json] [--output OUTPUT] pcap

Hunt sql commands in pcap.

positional arguments:
  pcap             Path to the pcap file or folder containing pcap files

options:
  -h, --help       show this help message and exit
  --csv            Export results to CSV
  --json           Export results to JSON
  --output OUTPUT  Path to the output folder

To-Do

  • Reduce possible false positives