mssqli-duet
SQL scraper
A tool designed to extract domain users from Active Directory environments by exploiting SQL injection vulnerabilities in MSSQL databases.
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
93 stars
6 watching
19 forks
Language: Python
last commit: over 4 years ago
Linked from 1 awesome list
active-directoryapplication-securityburp-extensionsburp-pluginmssqlpenetration-testingsql-injectionuser-enumerationwindows
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 rhinosecuritylabs/sleuthql | A Python script to identify and extract potential SQL injection points from Burp Proxy History files. | 466 |
 aksw/sparql2nl | Converts SPARQL queries to natural language expressions. | 42 |
 klahnakoski/mo-sql-parsing | A Python-based library for parsing and transforming SQL queries into a JSON-izable format | 263 |
 mithrandyr/simplysql | A PowerShell module for querying various SQL databases with an intuitive set of cmdlets. | 203 |
 starlake-ai/jsqltranspiler | Translates large RDBMS query dialects into smaller dialects for unit testing and development | 33 |
 tumblr/jetpants | Automates complex MySQL database tasks and provides a Ruby library for building custom migration scripts | 1,135 |
 epimorphics/qonsole | A console application for executing SPARQL queries and displaying results from a remote triple store | 16 |
 charlie-belmer/nosqli | A command-line tool to detect and exploit NoSQL injection vulnerabilities in MongoDB databases. | 359 |
 benibela/xidel | A tool to extract data from web pages using various query languages and selectors. | 690 |
 chop-dbhi/sql-agent | An HTTP service for executing ad-hoc SQL queries on various databases. | 93 |
| aksw/sparqlanalytics | Real-time analytics framework for SPARQL queries | 5 |
 motrboat/hotcoal | Protects against SQL injection by validating and sanitizing user input in handcrafted SQL queries. | 22 |
 matrix/burp-nosqliscanner | A tool to detect NoSQL injection vulnerabilities in web applications using a Java-based plugin for Burp Suite. | 23 |
 smpetersgithub/advancedsqlpuzzles | A collection of challenging SQL puzzles and writings to test and improve skills in Microsoft SQL Server T-SQL. | 617 |
 kevgk/leya | An API that enables interaction with MySQL databases using Autohotkey without exposing server credentials. | 16 |