https://github.com/facingdependencyhell/unionselectpayloadgenerator
This script generates UNION SELECT NULL, ... payloads to use for enumerating data types for UNION based SQL injection.
https://github.com/facingdependencyhell/unionselectpayloadgenerator
burp injection portswigger python sql sqli sqlinjection sqlinjectionattack
Last synced: 10 months ago
JSON representation
This script generates UNION SELECT NULL, ... payloads to use for enumerating data types for UNION based SQL injection.
- Host: GitHub
- URL: https://github.com/facingdependencyhell/unionselectpayloadgenerator
- Owner: FacingDependencyHell
- Created: 2025-03-03T12:20:18.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2025-04-08T15:30:35.000Z (12 months ago)
- Last Synced: 2025-06-13T03:02:50.010Z (10 months ago)
- Topics: burp, injection, portswigger, python, sql, sqli, sqlinjection, sqlinjectionattack
- Language: Python
- Homepage:
- Size: 20.5 KB
- Stars: 2
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
This is a simple generator for enumerating data types in UNION SELECT NULL,NULL -- based SQLi attacks.
I've tried to find a way of doing this through Burp's intruder, but could not figure it out. So I've just wrote this simple script to do it for me.
---
# Usage
1 - Download the `generator.py` script
2 - Navigate to the directory where you've downloaded it to
3 - `python3 generator.py`
4 - `How many positions` - This defines, how many positions will be generated. If you choose 3, the output will be as follows:
5 - `Character(s) to substitute` - This defines what will be substituted instead of the `NULL` character.
6 - `How many substitutions:` - How many substitutions will be used per line. If you use 2 for example, the output will look like this:
