A Step-by-Step Guide to Using V3n0M-Scanner for Dork Scanning and SQLi Testing

Introduction

In this comprehensive guide, we will walk you through the process of using V3n0M-Scanner, a powerful tool for dork scanning and SQL injection (SQLi) testing. Let’s dive in and get started!

Step 1: Getting Kali Linux

1. If you’re using Windows as your operating system, the best way to access a Kali Linux environment is by creating a Linux Virtual Machine (VM). A VM allows you to run a separate operating system within your Windows environment. Full guide and list of free proxy in the end!
2. If you’re new to the concept of a VM, simply search “What is a Virtual Machine” on Google to learn more about it. For help with creating a VM, there are plenty of tutorials available on YouTube that can guide you through the process.
3. Once your VM is set up, it’s recommended to install Kali Linux on it. Allocate at least 17-20GB of memory to ensure smooth functioning and avoid potential errors during installation.

Step 2: Downloading and Installing V3n0M-Scanner

V3n0M-Scanner is available for free on GitHub. To download it, we will need the “git” command. Open the terminal and type the following command to install git:

apt-get install git

After installing git, download V3n0M-Scanner using the following command:

git clone GitHub - v3n0m-Scanner/V3n0M-Scanner: Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

To prevent errors related to Python, install the necessary packages with the following commands:

arduino apt-get install python-dev apt-get install python3-dev apt-get install python3-bs4

Navigate to the V3n0M-Scanner directory using this command:

cd V3n0M-Scanner/

Finally, install V3n0M-Scanner using this command:

python3 setup.py install --user

Step 3: Running the Program and Importing Your Dorks

Before running the program, enter the src directory by typing:

cd src

Now you can run the V3n0M-Scanner using the command:

python3 v3n0m.py

The main menu of V3n0M-Scanner will be displayed.

To load your dorks, you’ll need to install the “nano text editor.” Use this command to install nano:

apt-get install nano

While still in the src directory, access the “lists” directory using this command:

cd lists

In the “lists” directory, you’ll find a file named “d0rks.” Edit this file to add your own dorks using the nano text editor:

nano d0rks

1. Delete the default dorks present in the file. To do this, use the following commands:
2. Press Ctrl+6 to set a mark
3. Press Ctrl+/ to open a menu
4. Press Ctrl+v to navigate to the end of the file
5. Press Ctrl+k to delete everything
6. Paste your dorks into the nano editor.
7. Save and exit the nano text editor by typing:
8. Press Ctrl+x
9. Press ‘y’
10. Press Enter

Step 4: Scanning Dorks with V3n0M-Scanner

1. In the main menu, select the first option “Dork and Vuln Scan” by typing 1 and pressing Enter.
2. Choose a target domain for your dorks if necessary, otherwise press Enter.
3. The program will ask how many dorks you want to scan. You can choose a specific number, or 0 to scan all the dorks from the d0rks file.
4. Select the number of threads based on your internet speed. If you have a decent internet connection (4+ Mb/s), you can use 500 threads. Otherwise, adjust the number accordingly.
5. Choose the number of pages from the search engine (bing) to be scanned. A recommended option is to pick 25 or 50 pages.
6. The scanning process will begin.

Important Note: For security reasons, it’s advisable to use a proxy(free list in discord)to protect and hide your IP address. While using V3n0M-Scanner, consider turning off your firewall and antivirus to avoid interference with the scanning process.

1 post - 1 participant

Read full topic