1058 Open source projects that are alternatives of or similar to Sql Injection Payload List

A simple automated dependency injection library for TypeScript, supporting React class and functional components.

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

anewer appends lines from stdin to a file if they don't already exist in the file. This is a rust version of https://github.com/tomnomnom/anew

🎯 Advanced debugging skills used in the iOS project development process, involves the dynamic debugging, static analysis and decompile of third-party libraries. iOS 项目开发过程中用到的高级调试技巧，涉及三方库动态调试、静态分析和反编译等领域

A simple PHP application to learn SQL Injection detection and exploitation techniques.

My own OSCP guide

Lightweight dependency injection engine and DI-driven tools.

Kali Linux Cheat Sheet for Penetration Testers

One-click installer for Frida and Burp certs for SSL Pinning bypass

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Reconness Agents Script

A guide for hacking unity games

An efficient multi-threaded DNS resolver validator

network reconnaissance toolkit

ROP Benchmark is a tool to compare ROP compilers

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Nuubi Tools (Information-ghatering|Scanner|Recon.)

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).

A big list of Android Hackerone disclosed reports and other resources.

本脚本旨在生成各类畸形URL链接，进行探测使用的payload，尝试绕过服务端ssrf限制。

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

swiss army knife for hackers

Ruby on Rails Phishing Framework

🦘 A dependency injection container for C++11, C++14 and later

A framework for Backdoor development!

The fastest dork scanner written in Go.

渗透测试☞经验/思路/总结/想法/笔记

Drone pentesting framework console

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

Tips and Tutorials for Bug Bounty and also Penetration Tests.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

💣 Impulse Denial-of-service ToolKit

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

CMS auto detect and exploit.

Chrome extension to aid in finding DOMXSS by simple taint analysis of string values.

自动漏洞扫描器，自动子域名爆破，自动爬取注入，调用sqlmapapi检测注入，端口扫描，目录爆破，子网段服务探测及其端口扫描，常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic crawl injection, injection, call the sqlmapapi port scan detection, directory service detection and segment blasting, port scanning, vulnerability detection framework commonly used.

PoC memory injection detection agent based on ETW, for offensive and defensive research purposes

Writeups for infosec Capture the Flag events by team Galaxians

macOS keychain cracking tool

A simple Kotlin multi-platform abstraction around the javax.inject annotations.

Awesome XSS stuff

sub domain wild card filtering tool

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.

DNS Rebinding Exploitation Framework

Hacker101 CTF Writeup

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

📓 Some security related notes

A collection of android Exploits and Hacks

Automation for javascript recon in bug bounty.

Apache Tomcat auto WAR deployment & pwning penetration testing tool.

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Quickly analyze and reverse engineer Android packages