Search Results for "jsql-injection"
Sort By:
Showing 52 open source projects for "jsql-injection"
View related business solutions-
Fully Managed MySQL, PostgreSQL, and SQL ServerCloud SQL handles your database ops end to end, so you can focus on your app.
-
Build Securely on Azure with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
1
Jepsen
A framework for distributed systems verification, with fault injection
Jepsen is a framework for testing the correctness of distributed systems, especially under network partitions, concurrency, and failures. It is widely used to verify the consistency and availability guarantees of databases, consensus systems, and other distributed architectures. Jepsen simulates real-world failure conditions and analyzes the system’s behavior using linearizability and other formal models. -
2
HackRF
Low cost software radio platform
...Designed to enable test and development of modern and next-generation radio technologies, HackRF One is an open-source hardware platform that can be used as a USB peripheral or programmed for stand-alone operation. HackRF One has an injection-molded plastic enclosure and ships with a micro USB cable. An antenna is not included. ANT500 is recommended as a starter antenna for HackRF One. HackRF One is test equipment for RF systems. It has not been tested for compliance with regulations governing the transmission of radio signals. You are responsible for using your HackRF One legally. -
3
WCDB
Cross-platform database framework developed by WeChat
WCDB is an efficient, complete, easy-to-use mobile database framework used in the WeChat application. It's currently available on iOS, macOS and Android. Easy-to-use. Through WCDB, you can get objects from database in one line code. WINQ (WCDB language integrated query), WINQ is a native data querying capability which frees developers from writing glue code to concatenate SQL query strings. ORM (Object Relational Mapping), WCDB provides a flexible, easy-to-use ORM for creating tables,... -
4
ByteHook
ByteHook is an Android PLT hook library
ByteHook is a ByteDance-hosted project whose name suggests a hooking or instrumentation library, likely used for hooking system calls or API calls for monitoring, sandboxing or instrumentation. The repository appears to aim at low-level hooking/injection capabilities, perhaps to support runtime introspection, behavioral monitoring, or hooking-based instrumentation (e.g. for security, tracing, sandboxing, or debugging). Because hooking is a common technique for intercepting library or system calls, Bhook likely provides abstractions to inject hooks into processes or libraries, enabling custom behavior monitoring or modification — which can be useful for building security tools, monitoring frameworks, or dynamic instrumentation. ... -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
5
Dopamine
Dopamine is a semi-untethered jailbreak for iOS 15 and 16
...The project supports specific arm64e and arm64 firmware ranges, so compatibility depends strongly on device type and iOS version. Dopamine uses a modern rootless jailbreak architecture, which aligns with how newer iOS jailbreak ecosystems handle file paths, tweak injection, and package compatibility. It includes an app-based workflow for enabling, disabling, and managing the jailbreak state after installation. Dopamine is a specialized iOS modification tool and should only be used by users who understand the security, stability, warranty, and update risks involved. -
6
OBS Linux Vulkan/OpenGL game capture
OBS Linux Vulkan/OpenGL game capture
obs-vkcapture is a Vulkan layer and OBS Studio plugin that enables capturing of Vulkan-rendered content in real time, solving a long-standing limitation in game recording and streaming. It works by injecting a Vulkan layer into applications, intercepting rendering calls, and redirecting frame data to OBS Studio without requiring special in-game support. This is particularly useful for modern Vulkan-based games or tools that lack native screen capture hooks. It’s lightweight, efficient, and... -
7
Watchy
An open source E-ink smartwatch
Watchy, an open-source E-Ink smartwatch. Watchy is an E-Paper watch with open-source hardware and software. It has a barebones design utilizing the PCB as the watch body, allowing it to be worn as-is, or further customized with different 3D printed cases and watch straps. It is a unique timepiece that is also a wearable development platform, allowing users to create their own experience. Ultra-low-power e-paper 1.54″ display with 200 x 200 resolution and wide viewing angle. Wi-Fi & Bluetooth... -
8
tls SNI injector UDP OpenVPN Server
Value Added OpenVPN over SNI via SNI injection SSL/TLS Tunnel
How It Works [Android Device] │ │ OpenVPN TCP/UDP ▼ [SNI Tunnel Client] ← Wraps traffic in SSL + injects fake SNI │ │ Looks like: HTTPS → microsoft.com ✓ ▼ [ISP Firewall] ← Passes through — sees only valid HTTPS │ ▼ [VPS Server] ← Decrypts TLS, recovers OpenVPN traffic │ ▼ [OpenVPN Server] ← Receives native OpenVPN traffic │ ▼ Internet The core trick is SNI injection: the tunnel client inserts a trusted domain name (e.g. microsoft.com) into the TLS handshake. The ISP sees what appears to be a standard HTTPS connection and allows it through. The VPS server on the other end strips the SSL wrapper and forwards the real OpenVPN packets to the OpenVPN server. -
9
tls SNI injector UDP Warp+ Free Server
Value Added Warp over SNI via SNI injection SSL/TLS Tunnel
How It Works [Android Device] │ │ WireGuard UDP ▼ [SNI Tunnel Client] ← Wraps UDP in TLS/ssl + injects fake SNI │ │ Looks like: HTTPS → microsoft.com ✓ ▼ [ISP Firewall] ← Passes through — sees only valid HTTPS │ ▼ [VPS Server] ← Decrypts TLS, recovers WireGuard UDP │ ▼ [Cloudflare Warp] ← Receives native WireGuard traffic │ ▼ Internet The core trick is SNI injection: the tunnel client inserts a trusted domain name (e.g. microsoft.com) into the TLS handshake. The ISP sees what appears to be a standard HTTPS connection and allows it through. The VPS server on the other end strips the TLS wrapper and forwards the real WireGuard packets to Cloudflare. -
Build Agents and Models on One PlatformGemini Enterprise Agent Platform is Google Cloud's comprehensive platform for developers to build, scale, govern, and optimize agents and models. Choose from Google's most advanced models and third-party models like Anthropic's Claude Model Family.
-
10
Ventoy
A New Bootable USB Solution
Ventoy is an open source tool to create bootable USB drive for ISO/WIM/IMG/VHD(x)/EFI files. With Ventoy, you don't need to format the disk over and over, you just need to copy the ISO/WIM/IMG/VHD(x)/EFI files to the USB drive and boot them directly. You can copy many files at a time and Ventoy will give you a boot menu to select them. You can also browse ISO/WIM/IMG/VHD(x)/EFI files in local disks and boot them. x86 Legacy BIOS, IA32 UEFI, x86_64 UEFI, ARM64 UEFI and MIPS64EL... -
11
AcousticSoundboard
Free, easy to use, lightweight soundboard for Windows
Acoustic Soundboard is a free, open source program for Windows which strives to be easy to use and lightweight. The main purpose is to conveniently play audio files to others while allowing the user to hear what is playing and still use their microphone normally. There is no installation required, simply unzip the contents wherever you like. On closing, the soundboard will automatically save the user's last devices, sounds, and hotkeys to a database file. View a demo video here... -
12
Cetus
Cetus is a high performance middleware that provides routing
...Support data sub-database. Support distributed transaction processing. Support insert batch operations. Support for conditional distinct operations. Enhanced SQL route parsing and injection. -
13
EdiZon
Homebrew save management, editing tool and memory trainer for Horizon
...Please note if you are using Atmosphere 0.10.0+, you must use the snapshot version of EdiZon. Older versions of EdiZon do not work on the latest Atmosphere. Extraction of game saves. Injection of extracted game saves (Your own and your friends save files). Uploading of savefiles directly. Batch extraction of all save files of all games on the system. Save file editing. Easy to use, scriptable and easily expandable on-console save editing. Lua and Python script support. Built-in save editor updater. On-the-fly memory editing. ... -
14
OpenWAF
Web security protection system based on openresty
...Rule engine inspired by modsecurity and freewaf(lua-resty-waf), the ModSecurity rules will be implemented using lua. The rule engine can be based on the protocol specification, automatic tools, injection attacks, cross site attacks, information leaks and other security exception request, adding support for dynamic rules, timely repair vulnerabilities. -
15
Naxsi
Open-source, high performance, low rules maintenance WAF for NGINX
Technically, it is a third-party Nginx module, available as a package for many UNIX-like platforms. This module, by default, reads a small subset of simple (and readable) rules containing 99% of known patterns involved in website vulnerabilities. For example, <, | or drop are not supposed to be part of a URI. Being very simple, those patterns may match legitimate queries, it is Naxsi's administrator duty to add specific rules that will whitelist legitimate behaviors. The administrator can... -
16
SHAD0W
A post exploitation framework designed to operate covertly
It uses a range of methods to evade EDR and AV while allowing the operator to continue using tooling and tradecraft they are familiar with. Its powered by Python 3.8 and C, and uses Donut for payload generation. By using Donut along with the process injection capabilities of SHAD0W, it provides the operator the ability to execute .NET assemblies, DLLs, EXEs, JS, VBS or XSLs fully inside the memory. Dynamically resolved syscalls are heavily used to avoid userland API hooking, anti-DLL injection to make it harder for EDR to load code into the beacons, and official Microsoft mitigation methods to protect spawn processes. ... -
17
mod_spamhaus_new
Apache 2.4.x security, block known bad IP
mod_spamhaus_new is an Apache module that uses DNSBL in order to block spam relay via web forms, preventing URL injection, block HTTP DDoS attacks from bots and generally protecting your web service denying access to a known bad IP address. This module is based on mod_spamhaus but has been updated for actual web server configurations and to support a list of domains, which are NOT spam blocked so customers can reach you even if they got a dynamic IP which is on a spam list. ... -
18
libinstrument (ex libcsdbg)
C/C++ function instrumentation (AOP, exception/stack tracing, GC)
Libinstrument is a complete and easy way to do custom function instrumentation for C/C++. The project comes ready with classic applications of instrumentation, such as AOP (Aspect Oriented Programming), Concern and Side Effect injection, stack tracing, exception tracing, basic time profiling, callgraph profiling and other. A GC (Garbage Collector) module is also under development. Libinstrument is highly portable and decoupled. The project comes with a CMake build system, integration with IDEs (CLion, Eclipse e.t.c) is straightforward. Using lazy algorithms there is virtually zero overhead in benchmarks and minimum overhead in execution time. ... -
19
ansvif
An advanced cross platform fuzzing framework suited to find code bugs.
ansvif, or A Not So Very Intelligent Fuzzer, suited to find bugs in code by throwing garbage arguments, files, and environment variables at the target program, that you may or may not have the source code to. It supports many features, such as buffer size, randomization of the buffer size, random data injection, templates, and much more. The purpose of this project is to identify bugs in software, specifically bugs that can induce a segmentation fault under various conditions. This aids security researchers in writing buffer overflows, input validation vulnerabilities, as well as helping one audit code for general logic mistakes. -
20
nexmon
The C-based Firmware Patching Framework for Broadcom/Cypress WiFi Chip
The C-based Firmware Patching Framework for Broadcom/Cypress WiFi Chips enables Monitor Mode, Frame Injection, and much more. Nexmon is our C-based firmware patching framework for Broadcom/Cypress WiFi chips that enables you to write your own firmware patches, for example, to enable monitor mode with radiotap headers and frame injection. This repository mainly focuses on enabling monitor mode and frame injection on many chips. A real Wi-Fi jammer that allows to overlay ongoing frame transmissions with an arbitrary jamming signal. ... -
21
Wi-Fi Ducky
Upload, save and run keystroke injection payloads with an ESP8266
Upload, save and run keystroke injections remotely with an ESP8266 + ATmega32u4. Using a USB device that act as a keyboard to inject keystrokes is well known these days. The USB Rubber Ducky by Hak5 is THE hacker gadget for this kind of attack. It introduced a simple script language called Ducky Script, which this project uses too. The ESP8266 is a popular Wi-Fi chip used in a lot of projects. Because it's cheap, small, and has its own file system (SPIFFS), it's perfect for enabling an easy... -
22
payloadmask
Payload list editor to use techniques to bypass WAF
...A web application firewall (WAF) is an appliance, server plugin, or filter that applies a set of rules to an HTTP conversation. Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection. By customizing the rules to your application, many attacks can be identified and blocked. -
23
MVProc
MVC web platform for Apache and MySQL Stored Procedures
MVProc is a Model-View-Controller module for Apache2 that facilitates using MySQL stored procedures as the controller element. NOTE: Version 2.1 is STABLE and currently in production use. NOTE: Versions 1.4+ are for Apache2.4 - in order to run on Apache2.2, replace request_rec->useragent_ip references with request_rec->connection->remote_ip (there are 3 in the source code) -
24
USB Rubber Ducky
A human interface device programmable
...If only you had a few minutes, photographic memory and perfect typing accuracy. The USB Rubber Ducky injects keystrokes at superhuman speeds, violating the inherent trust computers have in humans by posing as a keyboard. Inventing keystroke injection in 2010, the USB Rubber Ducky became the must-have pentest tool. With a covert design and simple "Ducky Script" language, this bad USB infiltrates systems and imaginations the world over. -
25
hexinject
Hexadecimal and raw packet injector and sniffer.
Hexadecimal and raw packet injector and sniffer. Can be easily combined with other tools to provide a powerful cmdline framework for raw network access.