| Scanner | Version | Build | Vendor |
| Damn Small SQLi Scanner (DSSS) | 0.1h | 0.1h+ | Miroslav Stampar |
| Tested Against WAVSEP Version: |
| Detection Accuracy | Chart | ||||
| 39.71% Detection Rate 20.00% False Positives | (54/136) (2/10) |
| Response Type | Input Vector | Detection Rate | Details |
| Errorneous 500 Responses | HTTP GET (Query String Parameters) | 19 out of 20 | Cases Detected: 1(1st&2nd)-18 Cases Missed: 19 |
| Errorneous 500 Responses | HTTP POST (Body Parameters) | 0 out of 20 | POST parameters are not scanned by this tool |
| Errorneous 200 Responses | HTTP GET (Query String Parameters) | 19 out of 20 | Cases Detected: 1(1st&2nd)-18 Cases Missed: 19 |
| Errorneous 200 Responses | HTTP POST (Body Parameters) | 0 out of 20 | POST parameters are not scanned by this tool |
| Valid 200 Responses | HTTP GET (Query String Parameters) | 13 out of 20 | Cases Detected: 1(1st&2nd)-3,6-8,12,13,15-18 Cases Missed: 4,5,9,10,11,14,19 |
| Valid 200 Responses | HTTP POST (Body Parameters) | 0 out of 20 | POST parameters are not scanned by this tool |
| Identical 200 Responses | HTTP GET (Query String Parameters) | 3 out of 8 | Cases Detected: 1-3 Cases Missed: 4-8 |
| Identical 200 Responses | HTTP POST (Body Parameters) | 0 out of 8 | POST parameters are not scanned by this tool |
| False Positive SQLi Test Cases | HTTP GET (Query String Parameters) | 2 out of 10 | 7,8 |
| DSSS (Damn Simple SQLi Scanner) is a proof of concept tool designed to prove that the accuracy of commercial vendors can be beaten with less than 200 lines of python code? written by Miroslav Stampar, one of the authors of sqlmap.
Even though the tool didn't support POST parameters (only GET parameters were supported, and only at a crawling depth of 1), it still provided damn good results for less than 100 lines of python code. I used python 2.6.5 to execute DSSS, and executed the tool using the following command: python dsss.py --url=[URL] |