Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with sqlinjection

A curated list of projects in awesome lists tagged with sqlinjection .

https://github.com/chaitin/xray

一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

passive-vulnerability-scanner poc security sqlinjection vulnerability vulnerability-scanner xss

Last synced: 27 Mar 2025

https://github.com/chybeta/web-security-learning

Web-Security-Learning

security sqlinjection xss

Last synced: 13 Apr 2025

https://github.com/CHYbeta/Web-Security-Learning

Web-Security-Learning

security sqlinjection xss

Last synced: 13 Mar 2025

https://github.com/az0x7/vulnerability-checklist

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

bugbounty security sqlinjection vulnerability vulnerability-checklist web-vulnerability

Last synced: 23 Mar 2025

https://github.com/Az0x7/vulnerability-Checklist

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

bugbounty security sqlinjection vulnerability vulnerability-checklist web-vulnerability

Last synced: 16 Feb 2025

https://github.com/eslam3kl/SQLiDetector

Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for different databases.

bug-bounty bugbounty infosec penetration-testing pentesting sqlinjection

Last synced: 16 Nov 2024

https://github.com/tangxiaofeng7/SecExample

JAVA 漏洞靶场 (Vulnerability Environment For Java)

cors csrf docker fastjson java rce springboot sqlinjection ssrf vulnerability xss-vulnerability

Last synced: 21 Nov 2024

https://github.com/charlie-belmer/nosqli

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

mongodb nosql nosql-injection security security-automation security-scanner security-tools sqlinjection

Last synced: 06 Apr 2025

https://github.com/Charlie-belmer/nosqli

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

mongodb nosql nosql-injection security security-automation security-scanner security-tools sqlinjection

Last synced: 02 Apr 2025

https://github.com/malvads/sqlmc

Official Kali Linux tool to check all urls of a domain for SQL injections :)

database pentest-tool pentesting python3 sql sqlinjection

Last synced: 04 Apr 2025

https://github.com/TeraSecTeam/ary

Ary 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。

automation penetration-testing pentest poc sqlinjection vulnerability vulnerability-scanners xss

Last synced: 21 Nov 2024

https://github.com/angelsecurityteam/sqlidumper-angelsecurityteam

Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI

database keyword-dork lfi mysql oracle rfi sqlinjection xss

Last synced: 20 Dec 2024

https://github.com/xer0times/SQLi-Query-Tampering

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

bug-bounty bugbounty bughunting burp-extensions burp-plugin burpsuite burpsuite-pro evasion payload-generator pentesting pentesting-tools sqli sqlinjection

Last synced: 02 Jan 2025

https://github.com/blackhatethicalhacking/sqlmutant

SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. It filters URLs to identify those with parameters susceptible to SQL injection formats and then performs injection attacks. These attacks include pattern matching, error analysis, and timing attacks.

arjun hacking offensivesecurity pentesting redteam sqlinjection sqlmap subdomain-enumeration waybackurls

Last synced: 04 Apr 2025

https://github.com/javeleyqaq/sql-injection-scout

SQL Injection Scout 是一个用于 Burp Suite 的扩展,专为帮助安全研究人员和开发人员检测和分析 SQL 注入漏洞而设计。该扩展提供了丰富的配置选项和直观的用户界面,便于用户自定义扫描和分析过程。

burp burp-extensions burp-plugin burpsuite sqlinject sqlinjection sqlinjectionattack

Last synced: 05 Mar 2025

https://github.com/coalfire-research/sqlinator

Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS

mitmproxy plugin security sqlinjection webapps xss

Last synced: 18 Nov 2024

https://github.com/R0X4R/Pinaak

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

bash-script bugbounty fastscanner find-vulnerabilities nuclei sqlinjection vulnerabilities vulnerability-scanners xss-vulnerability

Last synced: 21 Nov 2024

https://github.com/aigptcode/ai-security-url

functions to exploit common web application vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Server-Side Request Forgery (SSRF), and Path Traversal.

hacking kali python sqlinjection ssrf url webdevelopment xss

Last synced: 11 Apr 2025

https://github.com/JaveleyQAQ/SQL-Injection-Scout

SQL Injection Scout 是一个用于 Burp Suite 的扩展,专为帮助安全研究人员和开发人员检测和分析 SQL 注入漏洞而设计。该扩展提供了丰富的配置选项和直观的用户界面,便于用户自定义扫描和分析过程。

burp burp-extensions burp-plugin burpsuite sqlinject sqlinjection sqlinjectionattack

Last synced: 16 Feb 2025

https://github.com/echo-devim/litewaf

Lightweight In-App Web Application Firewall for PHP

attack-log attack-prevention php sanity-check security sqlinjection waf xss

Last synced: 27 Mar 2025

https://github.com/blackhatethicalhacking/sql-injection-pwn

A 1 Liner SQL Injection Attack using SQLMAP and various parameters that helps quickly check for a vulnerabilities during Bug Bounty

bugbounty hacking penetration-testing pentesting redteam sqlinjection

Last synced: 04 Apr 2025

https://github.com/trixsec/waymap

Waymap is a fast and optimized web vulnerability scanner built for penetration testers. It helps in identifying vulnerabilities by testing against various payloads.

command-injection command-injection-scanner command-line-tool exploitation-framework hacking lfi-exploitation open-redirect-detection python scanner sql-scanner sqli-scanner sqlinjection sqlmap ssti trixsec waymap website-hacking website-hacking-tool xss-detection xss-exploitation

Last synced: 10 Apr 2025

https://github.com/machine1337/sqlscan

A small and an efficient tool to find SQL injection vulnerability in a websites.

automation-framework bugbounty bugbounty-tool hacking machine1337 sql sqli sqlinjection

Last synced: 25 Apr 2025

https://github.com/adel-qusay/adel-waf

PHP lightweight in-app Web Application Firewall

firewall php sqlinjection waf xss

Last synced: 10 Apr 2025

https://github.com/paulveillard/cybersecurity-web-application-labs

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Web Application Security Labs in Cybersecurity

labs sqlinject-defense sqlinjection web-application-framework web-security-gateway web-security-research xss xss-exploitation xss-payloads xss-scanner xss-vulnerability

Last synced: 10 Apr 2025

https://github.com/thenewattacker64/theattackerscanner

Simple Tool for webhacking

sqlinjection webhacking

Last synced: 01 Jan 2025

https://github.com/binsarjr/sql-bypass-waf

SQL Bypass WAF merupakan tools yang membantu membypass WAF pada sql dengan menggunakan payload yg sudah ditentukan

concept hacktoberfest proof sqlbypasswaf sqli sqlinjection

Last synced: 13 Apr 2025

https://github.com/abyssdawn/poc_scan_web

全自动化漏洞扫描系统。包括poc扫描、sql注入漏洞扫描、资产收集(模仿fofa)等功能。

poc python sqlinjection webshell

Last synced: 23 Nov 2024

https://github.com/boloto1979/code-sentinel

The project is a Python Code Sentinel that scans code files for potential security vulnerabilities. The goal is to identify suspicious patterns in the code that could indicate the presence of vulnerabilities.

csrf cybersecurity python sql sqlinjection ssrf xss xss-vulnerability

Last synced: 11 Apr 2025

https://github.com/sovea/feelingshare_seecu

A web platform for landscape introduction, article sharing, feeling sharing, and diary recording with a social system. Support HTTP/HTTPS. It can defend against SQL injection attacks and XSS.Use NodeJs (Express), HTML, CSS3, Javascript, MySQL, Redis to develop.

html-css-javascript mysql-database nodejs nodejs-server redis-cache session-cookie sqlinject-defense sqlinjection web xss xss-defense

Last synced: 06 Dec 2024

https://github.com/ushelp/easyfilter

Jave Web请求内容过滤替换组件. Jave Web content filtering request replacement component

content-filter content-filtering filter filter-replacement java java-filter jave-web request-filtering sql sql-injection sqlinjection

Last synced: 22 Nov 2024

https://github.com/cossacklabs/acra-censor-demo

AcraCensor (SQL firewall) example project: see how to configure AcraCensor to prevent SQL injections in vulnerable OWASP web application.

acra data-protection data-security database docker encryption firewall mutillidae owasp playground sql sqlfirewall sqlinjection waf

Last synced: 12 Nov 2024

https://github.com/depermitto/gs-hackathon

Finalist Beton SKM solution to Goldman Sachs Hackathon Warsaw 13th December event.

fastapi hackathon python react sqlinjection vulnerability-detection

Last synced: 04 Apr 2025

https://github.com/abdullahwaqar/sqlinjfinder

This program finds vulnerabilities for SQL Injection.

dork-scanner sqlinjection

Last synced: 19 Nov 2024

https://github.com/gustavogss/pentests-tools

Dicas e documentações sobre pentests para fins de estudo

brute-force burpsuite python shell-script sqlinjection

Last synced: 14 Apr 2025

https://github.com/sapphicart/sqli-fuzzer

Python script to fuzz for SQL injection vulnerabilities in URL and input parameters

python sqli-vulnerability-scanner sqlinjection

Last synced: 11 Apr 2025

https://github.com/vrikodar/sql_injection

Some sqli methods, labs from portswigger along with python3 scripts to automate some tasks

mssql mssql-database mysql-database oracle-db sql-injection-attacks sql-injection-exploitation sql-injection-payloads sqlinjection

Last synced: 23 Mar 2025

https://github.com/exfil0/sqli-advanced-scanner

The Advanced SQL Injection Scanner is a sophisticated, Python-based tool crafted for security analysts and penetration testers. It automates the detection of SQL Injection vulnerabilities in web applications by sending varied SQLi payloads to specified URLs and analyzing the responses for signs of injectable parameters.

automated cybersecurity linux payloads python scanner sqlinjection

Last synced: 23 Feb 2025

https://github.com/svendolin/all-about-hack

This repository is about IT-Security / how to recognise security vulnerabilities (e.g. SQL injections) and demonstrate them on a webshop that is designed for this purpose.

itsecurity sql sqlinject-defense sqlinjection

Last synced: 13 Mar 2025

https://github.com/simsieg/pyinjection

A python tool to find sqli vulnerabilities in python code

code-analysis python sqlinjection

Last synced: 16 Mar 2025

https://github.com/mrnazu/tryhackme-ctf-s

Capture the Flag (CTF) is a cybersecurity competition that is used as a test of security skills.

bugbounty burpsuite csrf ctf-writeups idor openredirect rce recon sqlinjection tryhackme webhacking xss-vulnerability xxe-injection

Last synced: 11 Mar 2025

https://github.com/k3rnel-dev/sqlab

A simple web application for skills to learn sql-injection for a more precise understanding

hack pentest sql sqlinjection web-application

Last synced: 15 Mar 2025

https://github.com/yogsec/sql-injection-payloads

This repository is a comprehensive collection of SQL Injection Payloads designed for educational, research, and testing purposes. It includes a wide variety of payloads for different SQLi techniques.

bug-bounty bugbounty cybersecurity ethical-hacking ethical-hacking-tools osint sql-injection sql-injection-exploitation sql-injection-payload sql-injection-payloads sql-injections sql-payload sql-payload-list sql-payloads sqli sqli-payloads-list sqlinj sqlinjection sqlmap yogsec

Last synced: 16 Mar 2025

https://github.com/integeralex/sql-injection-demo

This project is a demonstration of a SQL injection vulnerability in a Node.js application using Express.js and PostgreSQL. It showcases how an attacker can exploit such vulnerabilities to execute arbitrary SQL queries and potentially gain unauthorized access to sensitive data in the database.

demo docker nodejs postgresql sqlinject sqlinjection

Last synced: 28 Mar 2025

https://github.com/twseptian/hprmsv1.0-sql-injection-authenticated

Hospital's Patient Records Management System v1.0 - 'id' SQL Injection (Authenticated)

exploit-database exploit-db sqlinjection vulnerability-assessment

Last synced: 17 Feb 2025

https://github.com/nabilmouzouna/exp-v0

This website demonstrates SQL injection vulnerabilities by simulating weak database security and minimal input validation. It shows how attackers can exploit these flaws, underscoring the need for secure coding practices.

pentesting security sqlinjection vunerability websecurity

Last synced: 03 Apr 2025

https://github.com/hackfutsec/sqlwp

A specialized SQL injection scanner targeting WordPress sites with the TO MiniProgram plugin vulnerable endpoint.

blind-sql-injection bug-bounty cybersecurity open-source python3 sqlinjection vulnerability-detection vulnerability-scanners web-security wordpress-plugin wordpress-security-scanner

Last synced: 13 Apr 2025

https://github.com/entr0pie/things-things

A SQL Injection vulnerable server. Easy setup, minimal code. For educational purposes.

bootstrap5 education educational express sqlinjection sqlite3

Last synced: 26 Feb 2025

https://github.com/puskar-roy/riskradar

RiskRadar is a vulnerability scanning tool designed to detect SQL Injection and Cross-Site Scripting (XSS) vulnerabilities in web applications. It provides detailed insights to help developers identify and address security issues effectively.

portscanning sqlinjection vulnerability-detection web-vulnerability-scanner xss-vulnerability

Last synced: 06 Mar 2025

https://github.com/hackfutsec/logdump

This program automates SQL injection testing on login pages by sending payloads, logging results, and supporting both single and multiple URL tests with concurrency and retry logic.

injection logging login logininjection loginjection sql sqlinjection sqlite sqlite3 sqlogininjection

Last synced: 18 Feb 2025

https://github.com/polespurnes/sql-injecteducation

SQL Injection guided labs to learn the basics.

ctf cybersecurity educational python sqlinjection websecurity

Last synced: 02 Mar 2025

https://github.com/sofiahuang315/neuralnetwork_evaluation

Neural network models evaluation for SQLi detection

machine-learning neural-network sql sqlinject-defense sqlinjection

Last synced: 26 Feb 2025

https://github.com/va1da5/sqli-sandbox

SQL injection sandbox

flask mariadb postgres sqli sqlinjection

Last synced: 19 Feb 2025

https://github.com/wickedsoda/ethacking-tool

A Python application for educational penetration testing and cybersecurity learning.

bruteforce ddos information-extraction python sqlinjection

Last synced: 15 Mar 2025

https://github.com/eccentrix-ca/sql-injection-attack-understanding-the-threat-in-cybersecurity

This article aims to demystify SQL Injection, explaining what it is, how it operates, its purposes in the cybersecurity landscape, and mentioning tools that can be used to conduct such attacks.

cyberattack sqlinjection vulnerability-identification web-vulnerabilities

Last synced: 19 Feb 2025

https://github.com/theodo/typeormsqliplugin

Plugin for WebStorm to highlight suspicious SQL injections using Typeorm

sqlinjection typeorm webstorm

Last synced: 25 Mar 2025

https://github.com/camillebaronnet/fix-the-shortener

:mortar_board: Lean how to fix commons PHP vulnerabilities

ctf local-file-inclusion pdo php shortener sqlinjection wargame xss

Last synced: 11 Mar 2025

https://github.com/refiaa/sqli-xss-exploit_python

SQLi・XSS・SSRF just for study

csrf python sqli sqlinjection ssrf xss

Last synced: 10 Apr 2025

https://github.com/mauricelambert/weakwebserver

A weak web server for ethical hacking (implemented in python).

bruteforce ethical-hacking hacking python3 sqlinjection training webserver xss

Last synced: 04 Mar 2025

https://github.com/facingdependencyhell/unionselectpayloadgenerator

This script generates UNION SELECT NULL, ... payloads to use for enumerating data types for UNION based SQL injection.

burp injection portswigger python sql sqli sqlinjection sqlinjectionattack

Last synced: 04 Mar 2025

https://github.com/faizan-khanx/sql-commandgenerator

sql.cyberethic.in is a web-based tool designed to simplify SQL injection testing by generating SQLMap commands. It allows users to easily select attack techniques, customize parameters, and generate optimized SQLMap commands without the need for manual coding. Perfect for penetration testers and ethical hackers looking to save time and avoid errors

cyber-threat-intelligence cybersecurity explorer hacking hacking-tool sql sqlinjection sqlmap

Last synced: 03 Apr 2025