SQLMC

SQLMC (SQL Injection Massive Checker) is a massive scanner that checks all URLs of a domain for SQL injection vulnerabilities. It crawls the provided URL to a specified depth, tests each discovered link for SQLi issues, and reports the findings. This tool is particularly useful for penetration testers and security researchers performing web application security assessments.

The tool automates the process of identifying potential SQL injection points across an entire domain, saving time compared to manual testing. It supports output to a file for further analysis or reporting. SQLMC is lightweight, with an installed size of 65 KB, and integrates well into Kali Linux workflows.

Use cases include reconnaissance during vulnerability assessments, verifying SQLi protections on web applications, and batch scanning multiple endpoints for common injection flaws.

SQLMC crawls the specified URL up to the defined depth, extracting and following links within the domain. For each discovered URL, it performs SQL injection vulnerability checks using predefined payloads or techniques. Results are compiled and can be saved to an output file for review.