sql-injection

There are 118 repositories under sql-injection topic.

sqlmapproject / sqlmap
Automatic SQL injection and database takeover tool
sql-injection detection exploitation takeover python database pentesting vulnerability-scanner sqlmap
Language:Python 35282
SafeLine
chaitin / SafeLine
SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.
firewall http-flood security sql-injection waf web-application-firewall web-security xss captcha api-gateway appsec cve cybersecurity hackers vulnerability websecurity application-security bruteforce blueteam self-hosted
Language:Go 17683
Hacker0x01 / hacker101
Source code for Hacker101.com - a free online web and mobile security class.
education hacking security hackerone hacker101 xss clickjacking csrf web-security session-fixation unchecked-redirects sql-injection mobile-security vulnerability
Language:SCSS 14213
digininja / DVWA
Damn Vulnerable Web Application (DVWA)
dvwa hacking infosec php security sql-injection training
Language:PHP 11784
payloadbox / sql-injection-payload-list
🎯 SQL Injection Payload List
sql-injection attacker sql-injection-attacks sql-injection-proof sql-injection-exploitation sql-injections sql-injection-payloads injection-payloads sql-injection-filterer sql-injection-attack owasp-top-10 payloads payload websecurity bugbounty security-research hacking sql-inject injection-attacks injection
5791
reddelexc / hackerone-reports
Top disclosed reports from HackerOne
writeups hackerone bugbounty reports xss xxe sql-injection csrf idor rce ssrf security
Language:Python 4836
andresriancho / w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
scanner security appsec cross-site-scripting sql-injection
Language:Python 4784
Arachni / arachni
Web Application Security Scanner Framework
arachni dom ruby audit detection security-audit analysis modular javascript scanners web-application vulnerability-detection crawler scanner hack hacking penetration-testing xss sql-injection
Language:Ruby 3945
1N3 / IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
burpsuite intruder payloads fuzz-lists fuzzing fuzz injection burpsuite-engagement burpsuite-intruder attack sql-injection bugbounty
Language:BlitzBasic 3849
codingo / NoSQLMap
Automated NoSQL database enumeration and web application exploitation tool.
nosql nosql-databases penetration-testing scanner security-audit security-tools security-toolset offensive-security enumeration databases mongodb couchdb web-application-security bugbounty redis mongodb-database sql-injection hacking hacking-tool hacktoberfest
Language:Python 3153
kleiton0x00 / Advanced-SQL-Injection-Cheatsheet
A cheat sheet that contains advanced queries for SQL Injection of all types.
cheatsheet mssql-dump mysql-injection mysqldump sql sql-injection
2986
DDoS-Ripper
palahsu / DDoS-Ripper
DDos Ripper a Distributable Denied-of-Service (DDOS) attack server that cuts off targets or surrounding infrastructure in a flood of Internet traffic
ddos-attacks ddos-tool ddos-attack-tools ddos-protection ddos ddos-attack-tool denial-of-service attack-defense deface-website hacking-tools hacking-tool ddos-ripper ddos-attack internet-traffic protection web-security security attack-server sql-injection linux-tools
Language:Python 2499
ron190 / jsql-injection
jSQL Injection is a Java application for automatic SQL database injection.
java sql-injection ctf-tools spring-boot sonarcloud hibernate docker hacking spock kali-linux devops pentest
Language:Java 1677
GraphQLmap
swisskyrepo / GraphQLmap
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
graphql sql-injection nosql-injection graphql-injection fuzz pentest ctf capture-the-flag hacktoberfest
Language:Python 1457
the-robot / sqliv
massive SQL injection vulnerability scanner
sqli sqli-vulnerability-scanner sql-injection scanning scanner crawler reverse-ip-scan multiprocessing
Language:Python 1221
Janusec / janusec
JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关，提供安全的接入，包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。
waf web-application-firewall application-gateway load-balance gateway application-security golang security web-application-security sql-injection janusec-application-gateway web-ssh janusec port-forwarding acme k8s-ingress-controller cookie-banner gslb cookie-compliance
Language:Go 1182
uuWAF
Safe3 / uuWAF
An industry-leading free, high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP) - UUSEC WAF.
api-gateway api-security application-security data-mask ddos hips modsecurity nginx owasp rasp security sql-injection uusec uusec-waf uuwaf waap waf web-application-firewall web-security-gateway xss
Language:C 1066
utkusen / leviathan
wide range mass audit toolkit
python sql-injection brute-force exploitation port-scanning service-discovery
Language:Python 1029
Ekultek / Zeus-Scanner
Advanced reconnaissance utility
admin-panel-finder captcha-bypass dork-scanning google-dorks ip-block-bypass pgp-keyserver port-scanner recon sql-injection vulnerability-scanners xss-scanner
Language:Python 971
magicRecon
robotshell / magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
subdomain bug bugbounty-tool bugbounty vulnerability-scanners scanner tool infosec bugbountytricks bash-script subdomains-enumeration xss-vulnerability sql-injection nuclei
Language:Shell 941
Cracker-Tool
cracker911181 / Cracker-Tool
All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭
cracker cracker-tool cracker911181 cracker911181-tool facebook hacking pentest pentesting python python-3 shell sql-injection sqli sqlinjection temp-mail termux termux-hacking termux-tool web-tool webtool
Language:Python 762
nim4 / DBShield
Database firewall written in Go
sql-injection database golang mysql db2 postgresql mariadb oracle
Language:Go 682
YagamiiLight / Cerberus
一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
hacking-tool sql-injection xss waf proxy middleware ssrf penetration-testing security-tools websecurity python bypass
Language:Python 650
ning1022 / SQLInjectionWiki
一个专注于聚合和记录各种SQL注入方法的wiki
mssql mysql oracle sql-injection sqlserver wiki
Language:JavaScript 582
chushuai / wscan
Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.
crawler passive-vulnerability-scanner poc sql-injection vulnerability-scanner webscan chromedp headless cel-go martian wscan xss subdomains testwaf waf
Language:Go 555
rizemon / exploit-writing-for-oswe
Tips on how to write exploit scripts (faster!)
awae awae-prep oswe oswe-prep python python3 requests web-exploitation cross-site-scripting sql-injection sqli xss
514
Mr-Robert0 / Logsensor
A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning
bugbounty login login-automation sql-injection sql-injection-exploitation sql-injection-post sqli sqlinjection
Language:Python 484
s-shemmee / SQL-101
Get started with SQL database programming. This beginner's guide provides step-by-step tutorials, practical examples, exercises, and resources to master SQL. Let's unlock the power of data with SQL!
data-analysis data-science sql sql-challenges sql-commands sql-database sql-injection sql-server
474
swisskyrepo / DamnWebScanner
Another web vulnerabilities scanner, this extension works on Chrome and Opera
sql-injection polyglot-vector web-vulnerabilities-scanner plugin extension webbrowser xss-vulnerability rce lfi scans
Language:Python 461
zt2 / sqli-hunter
SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
sql-injection detection exploitation ruby pentesting vulnerability-scanner sqlmap
Language:Ruby 430
RisingStack / protect
Proactively protect your Node.js web services
express nodejs security sql-injection xss
Language:JavaScript 401
JohnTroony / Blisqy
Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
sql sql-injection blind-sql-injection sql-payloads exploitation database-security appsec blisqy john-ombagi
Language:Python 392
brandonprry / gray_hat_csharp_code
This repository contains full code examples from the book Gray Hat C#
sql-injection fuzzer metasploit payload c-sharp automation dotnet mono xamarin security nessus openvas nexpose sqlmap arachni clamav cuckoo-sandbox pentesting blueteam redteam
Language:C# 388
OWASP / Vulnerable-Web-Application
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
vulnerable-web-app web php sql-injection xss-vulnerability command-execution file-upload directory-traversal xss sql
Language:PHP 387
americo / sqlifinder
SQL Injection Vulnerability Scanner made with Python
hacking scanner security sql sql-injection sql-injection-attacks vulnerability web-hacking
Language:Python 361
AlaBouali / bane
The "bane" Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks. Its versatile range of functionalities covers various aspects, including bruteforce attacks, cryptographic methods, DDoS attacks, information gathering, botnet creation and management, and CMS vulnerability scanning and more..
botnet-tools botnets bruteforce-attacks cms-vulns-finder cors-misconfiguration-scanner csrf-scanner ddos-attacks hacking hacking-tools information-gathering-tools path-traversal-scanner penetration-testing pentesting-python rce-scanner remote-code-execution remote-command-execution sql-injection ssrf-scanner vulnerability-scanners xss-scanner
Language:Python 331