🧪 Injection Tester Documentation

Welcome to the Injection Tester! This tool helps you find and test for common web injection vulnerabilities like XSS and SQLi. It’s a must-have for web security testing, right in your browser toolkit.

🚀 Features

• Target Analysis
  • 🔍 Enter a URL and click Analyze to detect forms and input fields automatically.
• Injection Types
  • 🛡️ Test for various vulnerabilities:
    • XSS (Cross-Site Scripting)
    • SQLi (SQL Injection)
    • (More types like CMDi, LFI, XXE, SSRF, SSTI are planned!)
• Payload Wordlists
  • 📚 Select or refresh payload wordlists for each injection type.
  • 📝 Add your own payloads in the wordlists folder.
• Customizable Settings
  • ⚡ Threads: Control concurrent requests.
  • ⏱️ Timeout & Delay: Fine-tune request timing.
  • 🔄 Follow Redirects, 🗂️ Auto-Save Results, 🧩 Test All Parameters Together.
  • 🏷️ Custom Headers & Cookies for advanced testing.
• Results & Statistics
  • 📋 Results Table: View findings with severity, type, parameter, payload, and details.
  • 📊 Stats Bar: Track forms, parameters, requests, vulnerabilities, time, and RPS (requests/sec).
  • 🔍 Filter by severity, type, or search term.
• Payloads View
  • 💣 See the payloads used for the current test type.
• Logging
  • 📝 Real-time log of actions, errors, and test progress.
• Export
  • 📤 Export results as JSON for further analysis.

🛠️ How to Use

1. Set Target
   • Enter the target URL and click the 🔍 Analyze button.
2. Select Test Type
   • Choose the injection type (e.g., XSS, SQLi) from the buttons.
3. Choose Payload Wordlist
   • Pick a wordlist or refresh to load new ones.
4. Configure Settings
   • Adjust threads, timeout, delay, and other options as needed.