sql-injection

There are 670 repositories under sql-injection topic.

  • sqlmapproject/sqlmap

    Automatic SQL injection and database takeover tool

    Language:Python35.3k1.1k5.4k6k
  • SafeLine

    chaitin/SafeLine

    SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

    Language:Go17.7k869741.1k

  • Hacker0x01/hacker101

    Source code for Hacker101.com - a free online web and mobile security class.

    Language:SCSS14.2k6891082.6k

  • digininja/DVWA

    Damn Vulnerable Web Application (DVWA)

    Language:PHP11.8k3124454.2k

  • payloadbox/sql-injection-payload-list

    🎯 SQL Injection Payload List

    5.8k9491.3k

  • reddelexc/hackerone-reports

    Top disclosed reports from HackerOne

    Language:Python4.8k16311869

  • andresriancho/w3af

    w3af: web application attack and audit framework, the open source web vulnerability scanner.

    Language:Python4.8k19218.7k1.2k

  • Arachni/arachni

    Web Application Security Scanner Framework

    Language:Ruby3.9k2051k779

  • 1N3/IntruderPayloads

    A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

    Language:BlitzBasic3.9k168131.2k

  • codingo/NoSQLMap

    Automated NoSQL database enumeration and web application exploitation tool.

    Language:Python3.2k10781605

  • kleiton0x00/Advanced-SQL-Injection-Cheatsheet

    A cheat sheet that contains advanced queries for SQL Injection of all types.

    3.1k600687
  • DDoS-Ripper

    palahsu/DDoS-Ripper

    DDos Ripper a Distributable Denied-of-Service (DDOS) attack server that cuts off targets or surrounding infrastructure in a flood of Internet traffic

    Language:Python2.5k4382616

  • ron190/jsql-injection

    jSQL Injection is a Java application for automatic SQL database injection.

    Language:Java1.7k8495.9k435
  • GraphQLmap

    swisskyrepo/GraphQLmap

    GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

    Language:Python1.5k2129212
  • uusec-waf

    Safe3/uusec-waf

    Industry-leading free, high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP) - UUSEC WAF.

    Language:Lua1.4k10130149

  • the-robot/sqliv

    massive SQL injection vulnerability scanner

    Language:Python1.2k6337378

  • Janusec/janusec

    JANUSEC Application Gateway provides secure access, including reverse proxy, K8S Ingress Controller, Automatic ACME Certificate, WAF, 5-Second Shield, CC Defense, OAuth2 Authentication, Global Server Load Balance, and Cookie Compliance etc. JANUSEC应用网关,提供安全的接入,包括反向代理、K8S Ingress Controller、自动化ACME证书、WAF、5秒盾、CC防御、OAuth2身份认证、GSLB负载均衡与Cookie合规等。

    Language:Go1.2k3950267

  • utkusen/leviathan

    wide range mass audit toolkit

    Language:Python1k7910246
  • magicRecon

    robotshell/magicRecon

    MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

    Language:Shell1k1911159

  • Ekultek/Zeus-Scanner

    Advanced reconnaissance utility

    Language:Python984541.1k247
  • Cracker-Tool

    cracker911181/Cracker-Tool

    All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭

    Language:Python811212696

  • nim4/DBShield

    Database firewall written in Go

    Language:Go686537162

  • YagamiiLight/Cerberus

    一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

    Language:Python6481612127

  • chushuai/wscan

    Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

    Language:Go645153165

  • ning1022/SQLInjectionWiki

    一个专注于聚合和记录各种SQL注入方法的wiki

    Language:JavaScript586202109

  • s-shemmee/SQL-101

    Get started with SQL database programming. This beginner's guide provides step-by-step tutorials, practical examples, exercises, and resources to master SQL. Let's unlock the power of data with SQL!

    55591104

  • rizemon/exploit-writing-for-oswe

    Tips on how to write exploit scripts (faster!)

    51450107

  • Mr-Robert0/Logsensor

    A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning

    Language:Python49610487

  • swisskyrepo/DamnWebScanner

    Another web vulnerabilities scanner, this extension works on Chrome and Opera

    Language:Python461174158

  • DataWithBaraa/sql-ultimate-course

    The most comprehensive SQL guide from a real-world expert! Learn everything from basics to advanced queries, optimizations, and real-world SQL

    Language:TSQL441

  • zt2/sqli-hunter

    SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

    Language:Ruby4311911127

  • RisingStack/protect

    Proactively protect your Node.js web services

    Language:JavaScript399111023

  • brandonprry/gray_hat_csharp_code

    This repository contains full code examples from the book Gray Hat C#

    Language:C#395320124

  • JohnTroony/Blisqy

    Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

    Language:Python392142108

  • OWASP/Vulnerable-Web-Application

    OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber

    Language:PHP387153491

  • americo/sqlifinder

    SQL Injection Vulnerability Scanner made with Python

    Language:Python3703972