Implementing SQLi, LFI, RFI scanner

Question

Implementing SQLi, LFI, RFI scanner

Opened this issue 6 years ago · 5 comments

abhisharma404 commented 6 years ago

Currently Vault only supports XSS Scanning, we need to extend this support to SQLi, LFI, RFI.

Answer 1 · 2018-12-04T05:54:31.000Z

I would like work on this issue and also i would like to first implement LFI and RFI scanning, then SQLi.

Answer 2 · 2018-12-04T06:20:10.000Z

Go ahead :)

Answer 3 · 2018-12-06T06:47:10.000Z

Do you know any live vulnerable (intended) website where i can test before pushing?

Answer 4 · 2018-12-06T07:45:31.000Z

You can host dvwa or bwapp on your local host for testing the scanner

Answer 5 · 2018-12-06T08:07:34.000Z

@realsdx, 0xPrateek is right, install a Metaspoiltable box on your virtual machine and perform every test there.
Join this gitter channel, you'll come to know : https://gitter.im/vault_scanner/kwoc