• 📢 Notice: Our community has moved to Zelo.cx! Visit us at Zelo.cx for the latest updates and discussions.

SQLRay SQLI Vulnerability Scanner

DigitalProfit

Member
Rep
0
0
0
Rep
0
Vouches
0
0
0
Vouches
0
Posts
9
Likes
0
Bits
0
2 YEARS
2 YEARS OF SERVICE
GLWS! Hackerman
 

chanchan

Premium member
Premium
Rep
0
0
0
Rep
0
Vouches
0
0
0
Vouches
0
Posts
7
Likes
0
Bits
0
2 YEARS
2 YEARS OF SERVICE
(02 June, 2021 - 05:29 PM)Voltic Wrote: Show More
what types of vulns are supported:

union
blind
Error

etc

and does it include file output with injection point / what is vuln and saved with the files saying just the database types isnt very helpfull
Click to expand...

this is only an error based scanner atm. urls are saved in files saying their database type. this scanner only tells you that a url in vulnzeloble, not how to exploit it.
[Image: eaJmeYh.gif]
 

chanchan

Premium member
Premium
Rep
0
0
0
Rep
0
Vouches
0
0
0
Vouches
0
Posts
7
Likes
0
Bits
0
2 YEARS
2 YEARS OF SERVICE
(02 June, 2021 - 05:34 PM)Voltic Wrote: Show More
(02 June, 2021 - 05:32 PM)sirchanchan Wrote: Show More
(02 June, 2021 - 05:29 PM)Voltic Wrote: Show More
what types of vulns are supported:

union
blind
Error

etc

and does it include file output with injection point / what is vuln and saved with the files saying just the database types isnt very helpfull
Click to expand...

this is only an error based scanner atm. urls are saved in files saying their database type. this scanner only tells you that a url in vulnzeloble, not how to exploit it.
Click to expand...

then in reality this is just a worser version of sqlmap vuln checker feature which is a free tool since you only support error based
Click to expand...
if all you care about is pure accuracy, this is probably true. however, given that this tool is fast, unlike sqlmap, it allows you to scan a large list of urls (100k+) in minutes instead of litzelolly weeks.
[Image: eaJmeYh.gif]
 

chanchan

Premium member
Premium
Rep
0
0
0
Rep
0
Vouches
0
0
0
Vouches
0
Posts
7
Likes
0
Bits
0
2 YEARS
2 YEARS OF SERVICE
(02 June, 2021 - 06:01 PM)Voltic Wrote: Show More
(02 June, 2021 - 05:39 PM)sirchanchan Wrote: Show More
(02 June, 2021 - 05:34 PM)Voltic Wrote: Show More
then in reality this is just a worser version of sqlmap vuln checker feature which is a free tool since you only support error based
Click to expand...
if all you care about is pure accuracy, this is probably true. however, given that this tool is fast, unlike sqlmap, it allows you to scan a large list of urls (100k+) in minutes instead of litzelolly weeks.
Click to expand...

sqlmap wrappers exist and can easilly be done due to the huge amount of payloads in sqlmap it can be editted to users choice
Click to expand...

i would like to see a sqlmap wrapper get 10k cpm
[Image: eaJmeYh.gif]
 
You must log in or register to reply here.

48,736

38,247

238,888

Trouffion
Top