Skip to content

BKreisel/sqlmap-websocket-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
src/sqlmap_websocket_proxy
src/sqlmap_websocket_proxy
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

sqlmap Websocket Proxy

💉Tool to enable blind sql injection attacks against websockets using sqlmap

Heavily based on an excellent writeup from Rayhan Ahmed: Automating Blind SQL injection over WebSocket

Example

sqlmap-websocket-proxy -u soc-player.soccer.htb:9091 -p '{"id": "%param%"}' --json

Usage

usage: sqlmap-websocket-proxy [-h] -u URL -p PAYLOAD [-o PORT] [--json] options: -h, --help show this help message and exit -u URL, --url URL URL to the websocket (example: soc-player.soccer.htb:9091) -p PAYLOAD, --payload PAYLOAD String with params for the playload encoded as %param% (example: {"id": "%param%"}) -o PORT, --port PORT Proxy Port (default: 8080) --json Escape text for JSON payloads

Installation

PyPI

python3 -m pip install sqlmap-websocket-proxy

Manual

python3 -m pip install sqlmap_websocket_proxy-1.0.0-py3-none-any.whl

Download Latest Release

Demo

demo

About

Tool to enable blind sql injection attacks against websockets using sqlmap

Topics

python websocket sqlmap

Resources

Readme

License

MIT license
Activity

Stars

66 stars

Watchers

1 watching

Forks

7 forks
Report repository

Releases 2

1.1.0 Latest
Nov 4, 2023
+ 1 release

Packages

No packages published

Contributors 2

  •  
  •  

Languages