SQLi-Query-Tampering

Payload Generator

Customizable extension for Burp Suite's Intruder to generate and process SQLi payloads with various evasion techniques.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

GitHub

150 stars
6 watching
23 forks
Language: Python
last commit: over 4 years ago
bug-bountybugbountybughuntingburp-extensionsburp-pluginburpsuiteburpsuite-proevasionpayload-generatorpentestingpentesting-toolssqlisqlinjection

Related projects:

Repository Description Stars
attackercan/burp-xss-sql-plugin Automated tool for detecting cross-site scripting (XSS) and SQL injection vulnerabilities in web applications. 44
jiangsir404/xss-sql-fuzz Automates fuzzing of XSS and SQL injection vulnerabilities in web applications using Burp Suite extensions. 61
initroot/burpsqltruncsanner Automatically scans endpoints for potential SQL Truncation vulnerabilities by fuzzing request parameters 62
zt2/sqli-hunter A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. 423
ebryx/aes-killer A plugin for Burp Suite to decrypt AES-encrypted traffic on the fly. 634
anof-cyber/pycript A tool for bypassing client-side encryption in web applications during penetration testing and bug bounty activities 188
vsec7/burpsuite-xkeys An extension for Burp Suite to identify and extract interesting strings from web pages 251
volkandindar/agartha An extension for a web application security testing tool that identifies vulnerabilities and exploits HTTP requests for penetration testing. 354
cyal1/pyburp An extension that allows modifying HTTP requests and responses with Python code to facilitate security testing of encrypted transactions 22
aress31/openapi-parser Automates security assessment of REST APIs using Burp Suite 195
xnl-h4ck3r/gap-burp-extension An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. 1,260
rhinosecuritylabs/sleuthql A Python script to identify and extract potential SQL injection points from Burp Proxy History files. 465
twelvesec/bearerauthtoken Tools to facilitate security testing of applications with authorization tokens 46
ricardojba/poi-slinger Automatically identifies serialization issues in PHP applications by forcing them to perform DNS lookups with serialized objects 42
yandex/burp-molly-pack Security checks pack for Burp Suite that extends its functionality with plugins containing active and passive security checks. 138