jSQL Injection is a Java application for automatic SQL database injec
jSQL project has moved to https://github.com/ron190/jsql-injection jSQL Injection is a lightweight application used to find database information from a distant server. It is free, open source and cross-platform (Windows, Linux, Mac OS X). Kali Linux logo jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in distributions like Pentest Box, Parrot Security OS, ArchStrike or BlackArch Linux.
Wapiti is a web-application vulnerability scanner
Wapiti is a vulnerability scanner for web applications. It currently search vulnerabilities like XSS, SQL and XPath injections, file inclusions, command execution, XXE injections, CRLF injections, Server Side Request Forgery... It use the Python 3 programming language.
Professional Social Dating Web App Builder (pH7CMS, basic version)
pH7CMS is a Professional, Free & Open Source PHP Social Dating Builder Software (primarily designed for Webmasters and Developers ...). This Social Dating Web App is fully coded in object-oriented PHP (OOP) with the MVC pattern (Model-View-Controller). It is low resource intensive, extremely powerful and highly secure. pH7CMS is included with over 35 native modules and based on its homemade pH7 Framework which includes more than 52 packages To summarize, pH7CMS Social Dating Script gives...
Security Toolkit For Windows
This project was good for some time. But it's time for a new one.. Updates cannot save this project, a complete makeover will with a new name and better features. So for now, the project is abandoned. You are free to use it you do. Just stay tuned for the new tools ;) If you wish to join the development of new project or contribute your tools(in your license and name), feel free to get in touch! PLEASE, read the README txt file and turn off your AntiVirus softwares. Noobs have to be told...
A webapp hacking game, where players must locate and exploit vulnerabilities to progress through the story. Think WebGoat but with a plot and a focus on realism&difficulty. Contains XSS, CSRF, SQLi, ReDoS, DOR, command injection, etc
An sql injection scanner
Laudanum is a collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments.They provide functionality such as shell, DNS query, LDAP retrieval and others.
Website built for anti sql injection, that mean prevented your website from the hackers
An sql injection tools ..
Admin scanner is a perl script that can looking for any admin page in a server.
OR-Mapper for C# and VB.NET that is better than Entity Framework
The DbPipeline.NET OR-Mapper library was created out of frustration of the shortcomings of Entity Framework in handling stateless web applications and hiding of SQL from skilled developers. The DbPipeline.NET Database Interface Library shields you, the programmer, from having to learn and work with all the ADO.NET or Entity Framework database objects at a low level, and encapsulates all this power into objects with many additional capabilities and features that are not offered in the standard...
MVProc implemented as a FastCGI
... (outputting the same result) would be more than welcome if anyone is offering... It's fast and runs great on Lighttpd! Supports application/x-www-form-urlencoded and multipart/form-data! Highly configurable! Very fast templating! Designed to be secure, with SQL injection protection, XSS attack protection, and more! Responsive project admin!
A small library to prevent SQL injection in JAVA.
NamedParameterSQL is a small library to help you use SQL in Java. The library takes an SQL query and parses it, returning a query that is ready to be used with java.sql.PreparedStatement. It finds all the parameters and their corresponding indicies. Using java.sql.PreparedStatement we can prevent our program from SQL injection. Example: Suppose you have the following query stored in a string variable called "sql": SELECT user FROM users WHERE username = :username AND password = crypt...
Vulnerawa stands for vulnerable web application, though I think it should be renamed Vulnerable website. Unlike other vulnerable web apps, this application strives to be close to reality as possible. To know more about Vulnerawa, go here http://hackercool.com/2015/08/vulnerawa-vulnerable-web-app-for-practice/ See how to setup vulnerawa in Wamp server. http://hackercool.com/2015/09/how-to-setup-vulnerawa-in-wamp-server/ To see how to set up a web app pentest lab with...
An Application to security test RESTful web APIs.
.... The application is available as a Windows exe file.. In progress and planned features: -More test cases to attack target API. -Add APIs and define sequence. -Read APIs from doc link. -Business Logic test. TODO: Build for Linux (and may be OS X).
MVC web platform for Apache and MySQL Stored Procedures
MVProc is a Model-View-Controller module for Apache2 that facilitates using MySQL stored procedures as the controller element. NOTE: Version 2.1 is STABLE and currently in production use. NOTE: Versions 1.4+ are for Apache2.4 - in order to run on Apache2.2, replace request_rec->useragent_ip references with request_rec->connection->remote_ip (there are 3 in the source code)
System for storing, processing and transmitting information
Rapidly generate a DAO for SQLite
Complete source code, usage example, & a code-generated test case are included in the .jar file. ( See main.java for the usage / code generation example )
Small PHP MVC Framework
Webiness is lightweight PHP framework based on MVC design pattern. Webiness is free and open source project available under MIT licence. and, in some way, It's inspirated by Yii Framework but it has much less features then Yii. It try to keep good balance between number of features, usability, speed, security options and easy of development.
THIS - This HTML Is Simple
Raptor - Web application firewall [ Stable version ]
Web application firewall in C using DFA to block attacks. read Docs ! http://funguscodes.blogspot.com.br/2016/08/steps-to-create-your-wafweb-application.html
Payload list editor to use techniques to bypass WAF
Payload mask tool to edit web payload lists to try bypass web application firewall. A web application firewall (WAF) is an appliance, server plugin, or filter that applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. By customizing the rules to your application, many attacks can be identified and blocked.
An sql injection tools ..
This perl script is functionaly for search the admin page/s. Brute-force from a-z, for login admin corectly.
Lightweight PHP framework
... is integrated with jQuery, and it comes with a set of AJAX-enabled features and his own light CSS framework for frontend development. Trying to be secure, it has integrated authetification and authorization module, RBAC user interface, sessions expire feature, input validation, CSRF protection, SQL injection prevention and other security features.
A small, simple PHP MVC framework skeleton that encapsulates a lot of
miniPHP A small, simple PHP MVC framework skeleton that encapsulates a lot of features surrounded with powerful security layers. miniPHP is a very simple application, useful for small projects, helps to understand the PHP MVC skeleton, know how to authenticate and authorize, encrypt data and apply security concepts, sanitization and validation, make Ajax calls and more. It's not a full framework, nor a very basic one but it's not complicated. You can easily install, understand, and use it...