Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/sysdream/pysqli
Python SQL injection framework
https://github.com/sysdream/pysqli
Last synced: about 2 months ago
JSON representation
Python SQL injection framework
- Host: GitHub
- URL: https://github.com/sysdream/pysqli
- Owner: sysdream
- License: other
- Created: 2012-11-03T20:26:35.000Z (almost 12 years ago)
- Default Branch: master
- Last Pushed: 2021-11-08T18:54:06.000Z (almost 3 years ago)
- Last Synced: 2024-06-27T19:55:46.520Z (3 months ago)
- Language: Python
- Size: 514 KB
- Stars: 133
- Watchers: 26
- Forks: 36
- Open Issues: 3
-
Metadata Files:
- Readme: README.md
- License: LICENSE.txt
Awesome Lists containing this project
README
PySQLi - Python SQL injection framework
=======================================
1. Overview
-----------
PySQLi is a python framework designed to exploit complex SQL injection
vulnerabilities. It provides dedicated bricks that can be used to build
advanced exploits or easily extended/improved to fit the case.
2. Why another SQLi framework ?
-------------------------------
Simple answer: because there are other ways than HTTP requests to exploit
SQLi vulnerabilities ! Most of the available tools only rely on HTTP GET/POST
methods, and sometimes provide other methods.
PySQLi is thought to be easily modified and extended through derivated classes
and to be able to inject into various ways such as command line, custom network
protocols and even in anti-CSRF HTTP forms.
PySQLi is still in an early stage of development, whereas it has been developed
since more than three years. Many features lack but the actual version but this
will be improved in the next months/years.
3. Documentation
----------------
Look at our demos or dig deeper into PySQLi's code to get more information on
how to use it. We will add many other info in the wiki if we find some time.