SQLiv is a scanning tool written in Python which uses Google, Bing, or Yahoo for targeted scanning, concentrated on uncovering pages with SQL Injection vulnerabilities. It uses known dorks to find vulnerable URLs.
Let’s try to find any vulnerabilities using SQL injection dork (-d) and search for sites that contain “php?id=” in their URLs. For this, we are going to use the Google search engine (-e), and display a maximum of 20 vulnerable websites.
Ex: (root@kali:/opt/sqliv# python sqliv.py -d “php?id=” -e google -p 20).