I’ve just found a nice python script of SQL Injection Google Scanner from here. It’s not just a single host SQL Injection Scanner , but its task is to collect hosts that vulnerable to SQL Injection by running Google search query. If you’re already familiar with Remote File Inclusion Scanner by Morgan , then you should be familiar with this one , too.
usage :
python SQLscan.py -g inurl:’.gov’ 200 -s ‘/index.php?offset=-1/**/UNION/**/SELECT/**/1,2,concat(password)/**/FROM/**/TABLE/*’ -write sql_found.txt -v
It will scan for any site that contains ‘.gov’ in its URLs , and then they’ll be checked by inject a SQL Injection String (you could modify the strings as creative as you can be) , and make sure that your box is installed with python 1st 
. Writing ccda and mcitp becomes much easier for an mcts if he consults testking material.
To download the script , i’ve made a mirror of it , which is located here :
http://4r13-is-a.lamer.la/scrapts/SQLscan.py
Computer Security Stuff on eBay!Electronics stuffs on ebay
SQL Injection Google Scanner is posted on September 14th, 2007 by admin. This post is filed under: Sectools, Security, Hacking, python, Security, SQL Injection, Vulnerabilities scanner, Web Hacking .
Some people come to this post with this search term: sql injection scanner, sql injection dorks, google dorks for SQL Injection, sql dorks, SQL dork, dork sql injection, SQL injection dork, dork sql, google sql injection, google scanner, sql injection google, google dork scanner, dork scanner, sql injection google dorks, google dork sql injection, sql injection scan, sql injection google dork, google sql injection scanner, dorks sql injection, google sql scanner,
And here is the related entries of this post:
Google hack rie? When you give tips how to hack Google? :d
hahha…
i can’t hack google , and i will never be able to ..