mssqli-duet
SQL scraper
A tool designed to extract domain users from Active Directory environments by exploiting SQL injection vulnerabilities in MSSQL databases.
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
92 stars
6 watching
20 forks
Language: Python
last commit: over 4 years ago
Linked from 1 awesome list
active-directoryapplication-securityburp-extensionsburp-pluginmssqlpenetration-testingsql-injectionuser-enumerationwindows
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 rhinosecuritylabs/sleuthql | A Python script to identify and extract potential SQL injection points from Burp Proxy History files. | 465 |
 aksw/sparql2nl | Converts SPARQL queries to natural language expressions | 42 |
 klahnakoski/mo-sql-parsing | A Python-based library for parsing and transforming SQL queries into a JSON-izable format | 261 |
 mithrandyr/simplysql | A PowerShell module that provides an intuitive set of cmdlets for querying various SQL databases in a vendor-agnostic manner. | 202 |
 starlake-ai/jsqltranspiler | Transpiles queries from various databases into DuckDB-compatible SQL | 29 |
 tumblr/jetpants | Automates complex MySQL database tasks and provides a Ruby library for building custom migration scripts | 1,136 |
 epimorphics/qonsole | A console application for executing SPARQL queries and displaying results from a remote triple store | 16 |
 charlie-belmer/nosqli | A command-line tool to detect and exploit NoSQL injection vulnerabilities in MongoDB databases. | 355 |
 benibela/xidel | A tool to extract data from web pages using various query languages and selectors. | 681 |
 chop-dbhi/sql-agent | An HTTP service for executing ad-hoc SQL queries on various databases. | 93 |
| aksw/sparqlanalytics | Real-time analytics framework for SPARQL queries | 5 |
 motrboat/hotcoal | Protects against SQL injection by validating and sanitizing user input in handcrafted SQL queries. | 19 |
 matrix/burp-nosqliscanner | A tool to detect NoSQL injection vulnerabilities in web applications using a Java-based plugin for Burp Suite. | 23 |
 smpetersgithub/advancedsqlpuzzles | A collection of challenging SQL puzzles and writings to test and improve skills in Microsoft SQL Server T-SQL. | 595 |
 kevgk/leya | An API that enables interaction with MySQL databases using Autohotkey without exposing server credentials. | 16 |