Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Groovy

Rust

PHP

CoffeeScript

Emacs Lisp

Ruby

R

OCaml

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Swift

MATLAB

Ruby

C

PHP

JavaScript

Clojure

C#

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇲🇪 Montenegro

🇶🇦 Qatar

🇬🇷 Greece

🇧🇷 Brazil

🇰🇬 Kyrgyzstan

🇱🇨 Saint Lucia

🇲🇴 Macao

🇮🇳 India

All Countries Compare Countries

sysdream/pysqli

Stars
130
Rank 277,575 (Top 6 %)
Language
Python
License
Other
Created about 12 years ago
Updated almost 3 years ago

sysdream/pysqli

sysdream

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Python SQL injection framework

PySQLi - Python SQL injection framework

Overview

PySQLi is a python framework designed to exploit complex SQL injection vulnerabilities. It provides dedicated bricks that can be used to build advanced exploits or easily extended/improved to fit the case.

Why another SQLi framework ?

Simple answer: because there are other ways than HTTP requests to exploit SQLi vulnerabilities ! Most of the available tools only rely on HTTP GET/POST methods, and sometimes provide other methods.

PySQLi is thought to be easily modified and extended through derivated classes and to be able to inject into various ways such as command line, custom network protocols and even in anti-CSRF HTTP forms.

PySQLi is still in an early stage of development, whereas it has been developed since more than three years. Many features lack but the actual version but this will be improved in the next months/years.

Documentation

Look at our demos or dig deeper into PySQLi's code to get more information on how to use it. We will add many other info in the wiki if we find some time.

ligolo

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

chashell

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

hershell

Hershell is a simple TCP reverse shell written in Go.

Protod

Protobuf metadata extraction tool

fino

Android small footprint inspection tool

sf2-profiler-exploit

Symfony2 < 2.5.4 profiler exploit

sockjmp

Lightweight TCP socket bridge

gadget-client

Gadget TCP client library and shell

gadget

WriteUps

Challenge Write-ups

bluefruit-scapy

Scapy support of Adafruit's Bluefruit LE Sniffer (based on Nordic chips).

dtmf-fuzzer

Fino compatible DTMF fuzzer for Android

fino-bundle

Fino Bundle installation