Fast, and accurate blind SQL injection scanner!

Automate the detection of blind SQL injection vulnerabilities with ease!

Features | Installation | Tool Usage | Tool-Preview

Features

• Dynamic Baseline Measurement: Automatically determines a response time baseline for each target and calculates dynamic thresholds.
• Concurrent Scanning: Supports multi-threaded scanning for faster results.
• Interactive Live UI: Live interface with progress tracking and clickable hyperlinks to Sucessfull URLs+Payloads.

Installation

Clone the repository & install dependencies:

git clone https://github.com/zebbern/BlindSQL.git
cd BlindSQL
pip install -r requirements.txt

Usage

python blindsql.py

Can also be ran with Multiple Threads Like this:

python blindsql.py -u https://example.com/vulnerable.php?id= -t 10 -v

If no payload file is specified using the -p flag, the tool will list all .txt files in the payload directory and prompt you to select one.

Tool-Preview

Contributing

Contributions are welcome! Please open issues or submit pull requests for improvements!

Warning

These is intended for educational and ethical hacking purposes only. It should only be used to test systems you own or have explicit permission to test. Unauthorized use of third-party websites or systems without consent is illegal and unethical.