Xaoc Owasp Guide — Web Security

CTFs vulnerabilities, walkthroughs, and notes.

Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for different databases.

🔒 Educational SQL Injection Lab - Hands-on learning environment for testing Boolean-based, Union-based, and Error-based SQL injection vulnerabilities. Built with Django, Docker-ready, perfect for CTFs and security training. ⚠️ Educational use only.

Hunt sql commands in pcap

Tools Mengecek Kerentanan Pada Website Dengan Ui Interface

PoC for CVE-2021-32099

Command-Line Hacking Environment & Exploitation Toolkit. Designed for offensive security, ethical hacking, OSINT, and web exploitation directly from the terminal.

Avine is a python dork parser on many engines with an sql and lfi scanner. It also has a proxy scraper

A google dork parser that bypasses captcha's automatically.

Africana Framework is an open-source, community-driven cybersecurity toolkit designed for ethical penetration testing & vulnerability assessment. It automates the detection of security flaws across a wide range of network and web technologies, including all networks, system anonymity, & web bug hunting. It's purely written for Good and not Evil.

WebScanner is a Python-Flask desktop app that scans websites for vulnerabilities like SQL Injection and XSS. It uses tools like SQLMap and WeasyPrint to generate detailed, real-time PDF reports.

Advanced SQLMap command builder with an intuitive cheatsheet UI. Works locally in your browser as a single HTML file (no data sent anywhere).

HackLearning101 is a beginner-friendly repository for learning the basics of penetration testing and ethical hacking. It provides hands-on exercises, tools, and methodologies to help you build a solid foundation in cybersecurity.

A comprehensive vulnerability scanner built fully on python

🛡️ Beginner-friendly guide to essential web security concepts & common vulnerabilities like XSS, SQLi, SSRF, and more 🌐

This project offers a user-friendly Graphical User Interface (GUI) that allows cybersecurity professionals and developers to test single URLs or batches of URLs for possible SQL injection attacks. By combining the speed and precision of a trained Machine Learning model with the depth of SQLMap’s automated payload testing.

SQL Injection Scout 是一个用于 Burp Suite 的扩展，专为帮助安全研究人员和开发人员检测和分析 SQL 注入漏洞而设计。该扩展提供了丰富的配置选项和直观的用户界面，便于用户自定义扫描和分析过程。

Chanakya is a powerful Python-based offensive security tool that combines reconnaissance, automated Google dorking, SQL injection scanning, and live port/service analysis into a unified command-line interface.