How to automatically validate SQLI xray scan results

chaitin / xray

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

https://docs.xray.cool

Other

10.45k stars 1.83k forks source link

How to automatically validate SQLI xray scan results #1839

Open bluerekt opened 1 week ago

bluerekt commented 1 week ago

After getting the scan results we need to validate them manually using sqlmap, is there an automatic way?

4ra1n commented 4 days ago

At present, there is no automatic verification method. You can specify the output JSON to match the target through some regular code and then automatically call sqlmap (write some Python yourself)