2169 Open source projects that are alternatives of or similar to Sqlmap

File upload vulnerability scanner and exploitation tool.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Automated All-in-One OS Command Injection Exploitation Tool.

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Sifter aims to be a fully loaded Op Centre for Pentesters

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Web Application Security Scanner Framework

mXtract - Memory Extractor & Analyzer

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Database firewall written in Go

Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

fireELF - Fileless Linux Malware Framework

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Responsive Command and Control System

Exploit Pack -The next generation exploit framework

Automation for internal Windows Penetrationtest / AD-Security

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

A high performance offensive security tool for reconnaissance and vulnerability scanning

fully automated pentesting tool

Linux and Windows shellcode enrichment utility

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Relational database brute force and post exploitation tool for MySQL and MSSQL

About All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Just another script for automatize boolean-based blind SQL injections. (Demo)

A python tool to check subdomain takeover vulnerability

CMS auto detect and exploit.

List of every possible vulnerabilities in computer security.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

wide range mass audit toolkit

Notes for taking the OSCP in 2097. Read in book form on GitBook

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A thorough library database to assist with binary exploitation tasks.

This repository contains full code examples from the book Gray Hat C#

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

LBADD: An experimental, distributed SQL database

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🔗 Semantic MediaWiki turns MediaWiki into a knowledge management platform with query and export capabilities

🎉A Bitcask Distributed Key/Value store using Raft for consensus with a Redis compatible API written in Go.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Apache Hive

ImageNet 2015 Object Detection from Video (VID)

RxJava2 integration with JDBC including Non-blocking Connection Pools

🤖 The Modern Port Scanner 🤖

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

DeepValueNetwork is a peer-to-peer database network managed and hosted by its community. It contains a browser to render 2D/3D content and allow the creation of scripted applications built on top of the p2p database network and managed by its creators, without intermediary platform.

adminMongo is a Web based user interface (GUI) to handle all your MongoDB connections/databases needs.

Plugins and resources to speed up and optimize your WordPress site.

Universal binary serializer for a wide variety of scenarios https://discord.gg/FGaCX4c

Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.

My own OSCP guide

A simple, fast and durable Datalog database

A fast tool to scan CRLF vulnerability written in Go

django-watchman exposes a status endpoint for your backing services like databases, caches, etc.