Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.
https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet

cheatsheet mssql-dump mysql-injection mysqldump sql sql-injection

Last synced: about 2 months ago
JSON representation

A cheat sheet that contains advanced queries for SQL Injection of all types.

Host: GitHub
URL: https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet
Owner: kleiton0x00
Created: 2020-10-23T18:14:47.000Z (almost 4 years ago)
Default Branch: main
Last Pushed: 2023-05-13T17:15:20.000Z (over 1 year ago)
Last Synced: 2024-07-05T15:17:46.075Z (2 months ago)
Topics: cheatsheet, mssql-dump, mysql-injection, mysqldump, sql, sql-injection
Homepage: https://kleiton0x00.github.io
Size: 147 KB
Stars: 2,745
Watchers: 58
Forks: 649
Open Issues: 1
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml

Awesome Lists containing this project

awesome-hacking-lists - kleiton0x00/Advanced-SQL-Injection-Cheatsheet - A cheat sheet that contains advanced queries for SQL Injection of all types. (Others)

README

# Advanced SQL Injection Cheatsheet
This repository contains a advanced methodology of all types of SQL Injection.

## General Process:
- Find injection point
- Understand the website behaviour
- Send queries for enumeration
- Understanding WAF & bypass it
- Dump the database

## Cheat Sheet Tree
### MySQL Injection Cheatsheet
- [Error- or UNION-based SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/Error%20Based%20SQLi/README.md)
- [Routed queries (Advanced WAF Bypass)](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/MySQL-Routed-Queries/README.md)
- [Bypass Error: The used SELECT statements have a different number of columns](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/MySQL-Bypass-Error/README.md)
- New attacking vectors (Bypassing WAF)
- [The Alternative way of using And 0](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/The%20Alternative%20way%20of%20using%20And%200%20in%20SQL%20Injection/README.md)
- [The Alternative WAY of using Null](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/The%20Alternative%20way%20of%20using%20Null%20in%20SQL%20Injection/README.md)
- [Boolean-based (content-based) Blind SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/tree/main/MySQL%20-%20Boolean%20Based%20Blind%20SQLi)
- [Time Based SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/MySQL%20-%20Time%20Based%20SQLi/README.md)
- [Stabilise & Whitespace Filter Bypass](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/MySQL%20-%20Stabilise%20%26%20Bypass/README.md)
- [Local File Inclusion (LFI)](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/LFI-via-load_file-function/README.md)
- [Privilege Escalation](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/Privilege%20Escalation/README.md)

### PostgreSQL Injection Cheatsheet
- [Error- or UNION-based SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/tree/main/Postgres%20-%20Error%20Based%20SQLi)
- Local File Inclusion (LFI) (Coming soon)
- Privilege Escalation (Coming soon)

### Oracle Injection Cheatsheet
- [Error- or UNION-based SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/Oracle%20-%20Error%20Union%5CBased%20SQLi/README.md)

### MSSQL Injection Cheatsheet
- [Error- or UNION-based SQLi](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/MSSQL%20-%20Error%20Based%20SQLi/README.md)
- [Privilege Escalation](https://github.com/kleiton0x00/Advanced-SQL-Injection-Cheatsheet/blob/main/Privilege%20Escalation%20-%20MSSQL/README.md)