README SQLI-LABS is a platform to learn SQLI Following labs are covered for GET and POST scenarios: Error Based Injections (Union Select) String Intiger Error Based Injections (Double Injection Based) BLIND Injections: 1.Boolian Based 2.Time Based Update Query Injection. Insert Query Injections. Header Injections. 1.Referer based. 2.UserAgent based. 3.Cookie based. Second Order Injections Bypassing WAF Bypassing Blacklist filters Stripping comments Stripping OR & AND Stripping SPACES and COMMENTS Stripping UNION & SELECT Impidence mismatch Bypass addslashes() Bypassing mysql_real_escape_string. (under special conditions) Stacked SQL injections. Secondary channel extraction Install Instructions: Unzip the contents inside the apache folder, for example under /var/www This will create a folder sql-labs under it. else you can use git command from within /var/www folder. /var/www folder and then use following command> git clone https://github.com/Audi-1/sqli-labs.git sqli-labs Open the file "db-creds.inc" which is under sql-connections folder inside the sql-labs folder. Update your MYSQL database us
FEATURES
ALTERNATIVES
Deliberately vulnerable web application for security professionals to practice attack techniques.
Donate to your favorite open-source projects and charities using PayPal
A demonstration site for the Acunetix Web Vulnerability Scanner, featuring intentionally vulnerable PHP code to test web application security.
Web-application vulnerability scanner with extensive coverage of security testing modules.
A script that checks for common best-practices around deploying Docker containers in production.
A disclosure of a bug found in Twitter's Vine and the process of procuring the source code.
A tool that showcases the attack surface of a given Android device, highlighting potential vulnerabilities and security risks.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.