Linux bash tool designed to get full control of poorly configurated web applications with backend DBMS in the same machine
Uses SQL injection techniques
It is done using the same unique HTTP request, the shoryuken (that means "rising dragon punch" in japanese).
./shoryuken1.5 [OPTION] {TARGET | INPUT_FILE} {OUTPUT_FILE}
-h help
-i interactive mode
-p direct punch
-t test mode
-s scan from list
-l test from list
Gets root/system almost instantly;
Scans and tests multiple targets;
Very simple to use;
Very small (just 9k) e portable;
Can be easily used in tiny linux systems like mobile ones;
No need to download/upload anything to target;
No need for an extra open port on machine or firewall;
./shoryuken1.5 -t "www.example.com/page.php?name=john"
By Daniel Llano Bermúdez
Frontend Developer
