1use sqlmap_rs::{SqlmapEngine, SqlmapOptions, OutputFormat};
11
12#[tokio::main]
13async fn main() -> Result<(), Box<dyn std::error::Error>> {
14 if !SqlmapEngine::is_available() {
16 eprintln!("ERROR: sqlmapapi not found in PATH");
17 eprintln!("Quick fix:");
18 eprintln!(" conda env create -f environment.yml");
19 eprintln!(" conda activate sqlmap-env");
20 eprintln!(" # OR: ./setup.sh");
21 std::process::exit(1);
22 }
23
24 println!("Booting sqlmapapi daemon on port 8775...");
26 let engine = SqlmapEngine::new(8775, true, None).await?;
27 println!("Daemon ready at {}", engine.api_url());
28
29 let target = std::env::args().nth(1).unwrap_or_else(|| {
31 eprintln!("Usage: cargo run --example full_scan -- <target-url>");
32 eprintln!("Example: cargo run --example full_scan -- http://example.com/page?id=1");
33 std::process::exit(1);
34 });
35
36 println!("Target: {target}");
37
38 let opts = SqlmapOptions::builder()
39 .url(&target)
40 .level(3)
41 .risk(2)
42 .batch(true)
43 .threads(4)
44 .random_agent(true)
45 .build();
46
47 let task = engine.create_task(&opts).await?;
49 println!("Task created: {}", task.task_id());
50
51 task.start().await?;
52 println!("Scan started, polling for completion...");
53
54 task.wait_for_completion(300).await?;
56 println!("Scan complete!");
57
58 match task.fetch_log().await {
60 Ok(log_resp) => {
61 if let Some(logs) = &log_resp.log {
62 println!("\n=== Scan Log ({} entries) ===", logs.len());
63 for entry in logs.iter().rev().take(10) {
64 println!(" [{}] {}: {}", entry.time, entry.level, entry.message);
65 }
66 if logs.len() > 10 {
67 println!(" ... and {} more entries", logs.len() - 10);
68 }
69 }
70 }
71 Err(err) => eprintln!("Could not fetch log: {err}"),
72 }
73
74 let data = task.fetch_data().await?;
76 let findings = data.findings();
77
78 println!("\n=== Results ===");
79 println!(" Findings: {}", findings.len());
80
81 if findings.is_empty() {
82 println!(" No SQL injection vulnerabilities detected.");
83 } else {
84 println!("\n{}", sqlmap_rs::types::format_findings(&findings, OutputFormat::Plain));
86
87 println!("=== JSON ===");
88 println!("{}", sqlmap_rs::types::format_findings(&findings, OutputFormat::JsonPretty));
89
90 println!("=== CSV ===");
91 println!("{}", sqlmap_rs::types::format_findings(&findings, OutputFormat::Csv));
92
93 println!("=== Markdown ===");
94 println!("{}", sqlmap_rs::types::format_findings(&findings, OutputFormat::Markdown));
95 }
96
97 match task.list_options().await {
99 Ok(options) => {
100 println!("\n=== Active Options ===");
101 println!("{}", serde_json::to_string_pretty(&options)?);
102 }
103 Err(err) => eprintln!("Could not fetch options: {err}"),
104 }
105
106 println!("\nDone. Task and daemon will be cleaned up automatically.");
109
110 Ok(())
111}