Advanced SQL Injection Techniques for Bug Bounty Hunters
☆74Jul 23, 2024Updated last year
Alternatives and similar repositories for SQL_Injection-Techniques
Users that are interested in SQL_Injection-Techniques are comparing it to the libraries listed below
Sorting:
- ☆54Jun 22, 2025Updated 9 months ago
- collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.☆33Aug 28, 2024Updated last year
- Spring Boot whitelabel error page SpEL rce EXP☆13May 24, 2024Updated last year
- Process URLs and remove duplicate query parameters.☆27Mar 19, 2024Updated 2 years ago
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Feb 3, 2024Updated 2 years ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆36Nov 5, 2024Updated last year
- BPP hunting☆10Nov 10, 2024Updated last year
- Monitor your target continuously for new subdomains!☆25Mar 18, 2023Updated 3 years ago
- 一款BurpSuite插件,辅助手工测试☆72Aug 4, 2023Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆75Jun 12, 2025Updated 9 months ago
- ☆85Sep 24, 2024Updated last year
- Finds graphql queries in javascript files☆69May 18, 2024Updated last year
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆29Nov 26, 2024Updated last year
- A passive way to find backups/ sensitive information.☆89Jul 10, 2025Updated 8 months ago
- Find The Admin Panel & SQL Injection Endpoints, Using Google Dorks !!!☆26Nov 15, 2024Updated last year
- Get acquisitions by scraping titles of crunchbase.☆15Dec 18, 2024Updated last year
- Custom nuclei templates for bug hunting.....☆26May 30, 2024Updated last year
- Brute Force subdomains with a list of custom DNS records.☆13Feb 24, 2023Updated 3 years ago
- 用于批量扫描远程桌面是否关闭NLA,而后半自动寻找搜狗输入法RCE。☆22Oct 10, 2024Updated last year
- De-clutter a list of URLs☆385Mar 8, 2026Updated 2 weeks ago
- Just a nice little shellcode loader using unconventional methods to avoid using signatured APIs☆24Jul 11, 2025Updated 8 months ago
- Nuclei Templates☆25Oct 17, 2024Updated last year
- A proof of concept program that pulls and parses security.txt files at mass.☆29May 31, 2023Updated 2 years ago
- unleashed ffuf☆249Oct 29, 2025Updated 4 months ago
- Get 10k subdomains in securitytrails using cookie without apikey.☆37Oct 23, 2025Updated 4 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆28Jul 21, 2024Updated last year
- 哥斯拉webshell管理工具的插件,用于连接websocket型webshell☆176Apr 17, 2024Updated last year
- MysqlHoneypot☆24May 4, 2022Updated 3 years ago
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆28Sep 28, 2025Updated 5 months ago
- A C# Tool to gather information about email breaches☆16Dec 21, 2023Updated 2 years ago
- 阿里云先知社区xss挑战☆23Sep 17, 2017Updated 8 years ago
- Google Hacking Database☆10Jan 11, 2019Updated 7 years ago
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆22May 1, 2024Updated last year
- ☆30Sep 9, 2025Updated 6 months ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆21Aug 25, 2024Updated last year
- A tool to migrate Burpsuite HTTP history to Caido☆35Apr 25, 2025Updated 10 months ago
- This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filt…☆229May 20, 2025Updated 10 months ago
- A simple bash script for Web Cache Deception exploitation.☆16Oct 7, 2024Updated last year
- MS17-010 Exploits With Original NSA Tool(only for windows)☆32Jul 30, 2024Updated last year