SQLi-Query-Tampering
Payload Generator
Customizable extension for Burp Suite's Intruder to generate and process SQLi payloads with various evasion techniques.
SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.
150 stars
6 watching
23 forks
Language: Python
last commit: over 4 years ago bug-bountybugbountybughuntingburp-extensionsburp-pluginburpsuiteburpsuite-proevasionpayload-generatorpentestingpentesting-toolssqlisqlinjection
Related projects:
Repository | Description | Stars |
---|---|---|
attackercan/burp-xss-sql-plugin | Automated tool for detecting cross-site scripting (XSS) and SQL injection vulnerabilities in web applications. | 44 |
jiangsir404/xss-sql-fuzz | Automates fuzzing of XSS and SQL injection vulnerabilities in web applications using Burp Suite extensions. | 61 |
initroot/burpsqltruncsanner | Automatically scans endpoints for potential SQL Truncation vulnerabilities by fuzzing request parameters | 62 |
zt2/sqli-hunter | A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. | 423 |
ebryx/aes-killer | A plugin for Burp Suite to decrypt AES-encrypted traffic on the fly. | 634 |
anof-cyber/pycript | A tool for bypassing client-side encryption in web applications during penetration testing and bug bounty activities | 188 |
vsec7/burpsuite-xkeys | An extension for Burp Suite to identify and extract interesting strings from web pages | 251 |
volkandindar/agartha | An extension for a web application security testing tool that identifies vulnerabilities and exploits HTTP requests for penetration testing. | 354 |
cyal1/pyburp | An extension that allows modifying HTTP requests and responses with Python code to facilitate security testing of encrypted transactions | 22 |
aress31/openapi-parser | Automates security assessment of REST APIs using Burp Suite | 195 |
xnl-h4ck3r/gap-burp-extension | An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. | 1,260 |
rhinosecuritylabs/sleuthql | A Python script to identify and extract potential SQL injection points from Burp Proxy History files. | 465 |
twelvesec/bearerauthtoken | Tools to facilitate security testing of applications with authorization tokens | 46 |
ricardojba/poi-slinger | Automatically identifies serialization issues in PHP applications by forcing them to perform DNS lookups with serialized objects | 42 |
yandex/burp-molly-pack | Security checks pack for Burp Suite that extends its functionality with plugins containing active and passive security checks. | 138 |