Alternatives and similar repositories for SQL-Injection-Payloads

Users that are interested in SQL-Injection-Payloads are comparing it to the libraries listed below

• frizb / Bypassing-Web-Application-Firewalls
  A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockers
  ☆276Updated 6 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆259Updated 4 months ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆325Updated 3 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆424Updated 5 years ago
• evilcos / xss.swf
  a tiny tool for swf hacking, just browse it:)
  ☆243Updated 12 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆214Updated 11 months ago
• skiptomyliu / solutions-bwapp
  In progress rough solutions to bWAPP / bee-box
  ☆177Updated 5 years ago
• PortSwigger / command-injection-attacker
  SHELLING - a comprehensive OS command injection payload generator
  ☆111Updated 6 years ago
• bugbountyforum / XSS-Radar
  ☆328Updated 7 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆127Updated 8 years ago
• commixproject / commix-testbed
  A collection of web pages, vulnerable to command injection flaws.
  ☆179Updated 2 years ago
• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆91Updated 3 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆229Updated 8 months ago
• JacobReynolds / ssrfDetector
  Server-side request forgery detector
  ☆163Updated 8 years ago
• appsecco / vulnerable-apps
  ☆217Updated 3 years ago
• wafpassproject / wafpass
  Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
  ☆219Updated last year
• 0ang3el / EasyCSRF
  ☆162Updated 7 years ago
• 003random / 003Recon
  Some tools to automate recon - 003random
  ☆295Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆296Updated 2 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆172Updated 2 years ago
• upgoingstar / hackerone_public_reports
  Finds all public bug reports on reported on Hackerone
  ☆93Updated 9 years ago
• zigoo0 / Pemburu
  Pemburu AKA GoldDigger.
  ☆71Updated 5 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆281Updated 5 years ago
• danTaler / detectionString
  list of sql-injection and XSS strings
  ☆115Updated 9 years ago
• melvinsh / subresolve
  Resolve and quickly portscan a list of (sub)domains.
  ☆87Updated 9 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆333Updated 4 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆152Updated 2 years ago
• davevs / dvxte
  Damn Vulnerable eXtensive Training Environment
  ☆106Updated 3 years ago
• IFGHou / wapiti
  A web-application vulnerability scanner
  ☆117Updated 5 years ago
• neex / gifoeb
  exploit for ImageMagick's uninitialized memory disclosure in gif coder
  ☆282Updated 8 years ago