Search Results for "command injection" - Page 3

Showing 88 open source projects for "command injection"

View related business solutions
  • Train ML Models With SQL You Already Know Icon
    Train ML Models With SQL You Already Know

    BigQuery automates data prep, analysis, and predictions with built-in AI assistance.

    Build and deploy ML models using familiar SQL. Automate data prep with built-in Gemini. Query 1 TB and store 10 GB free monthly.
    Try Free
  • Our Free Plans just got better! | Auth0 Icon
    Our Free Plans just got better! | Auth0

    With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

    You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
    Try free now
  • 1
    Web Application Protection

    Web Application Protection

    Tool to detect and correct vulnerabilities in PHP web applications

    WAP automatic detects and corrects input validation vulnerabilities in web applications written in PHP Language (version 4.0 or higher) and with a low rate of false positives. WAP detects the following vulnerabilities: - SQL injection using MySQL, PostgreSQL and DB2 DBMS - Reflected cross-site scripting (XSS) - Stored XSS - Remote file inclusion - Local file inclusion - Directory traversal - Source code disclosure - OS command injection - PHP code injection WAP is a static analysis tool that performs taint analysis to detect vulnerabilities, tracking malicious users inputs and checking if they reach calls of sensitive functions. ...
    Downloads: 2 This Week
    Last Update:
    See Project
  • 2
    MR.SE SQL Injection Tool

    MR.SE SQL Injection Tool

    Auto SQL Injection Tool Coded by MR.SE

    SQLInjection is one of the basics of hacking. It is also one of the most tedious and most time consuming steps. MR.SE SQL Injection Tool programmed under Perl and hackers can quickly and easily penetrate their desired website databases with this.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 3
    Flow
    This page is abandoned. Head over to https://flow.neos.io/ or https://neos.io/ for further details!
    Downloads: 0 This Week
    Last Update:
    See Project
  • 4
    PAVS

    PAVS

    PHP Application Vulnerability Scanner

    PAVS scans the PHP based web application source code and identifies the potential security problems in that application. PAVS also identifies the loop holes in PHP configuration file settings. Attacks addressed by PAVS are Cross-site Scripting SQL Injection File Manipulation File Inclusion Command Execution Code Evaluation
    Downloads: 0 This Week
    Last Update:
    See Project
  • Compliant and Reliable File Transfers Backed by Top Security Certifications Icon
    Compliant and Reliable File Transfers Backed by Top Security Certifications

    Cerberus FTP Server delivers SOC 2 Type II certified security and FIPS 140-2 validated encryption.

    Stop relying on non-certified, legacy file transfer tools that creak under the weight of modern security demands. Get full audit trails, advanced access controls and more supported by an award-winning team of experts. Start your free 25-day trial today.
    Start Free Trial
  • 5
    IPv6 CARE
    IPv6 CARE, "IPv6 Compliant Automatic Runtime Environment", provides an environment where applications instantly become IPv6-compliant ('patch' mode, see RFC6535). It can also generate a diagnosis about the IPv6 compliance of an application ('check' mode). It uses an LD_PRELOAD-based library injection technique.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 6

    bWAPP

    an extremely buggy web app !

    bWAPP, or a buggy web application, is a free and open source deliberately insecure web application. bWAPP helps security enthusiasts, developers and students to discover and to prevent web vulnerabilities. bWAPP prepares one to conduct successful penetration testing and ethical hacking projects. What makes bWAPP so unique? Well, it has over 100 web bugs! It covers all major known web vulnerabilities, including all risks from the OWASP Top 10 project. The focus is not just on one specific...
    Leader badge
    Downloads: 721 This Week
    Last Update:
    See Project
  • 7
    Command-Injection-ISO

    Command-Injection-ISO

    Real World Command Injection Vulnerable Apps

    We've packaged 10 real world applications into an Ubuntu Desktop based ISO. These applications are vulnerable to command injection attacks which you will need to find and exploit. Please note that not all applications are on port 80 :) All the best!
    Downloads: 0 This Week
    Last Update:
    See Project
  • 8

    sitecheck

    Modular web site spider for web developers.

    More than just a link checker, sitecheck is a website spider (also known as a crawler) which can assist with SEO by testing an entire site plus both inbound links from search engines and outbound links to other sites for the following issues: looping redirects (HTTP 301/302), broken links (HTTP 404), server errors (HTTP 500), spelling mistakes, low readability scores (using the Flesch Reading Ease test), missing/empty/duplicate meta tags, duplicate content, slow page speed, W3C validation...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 9
    markdown-toc

    markdown-toc

    API and CLI for generating a markdown TOC (table of contents)

    markdown-toc is a JavaScript API and CLI for generating tables of contents from Markdown files. It uses Remarkable to parse Markdown headings and turn them into linked TOC entries. Developers can run it from the command line, inject a TOC directly into a file, or use it programmatically from Node.js. The tool can also output JSON so applications can render their own TOC templates. It includes options for heading depth, bullet style, filtering, slug generation, indentation, and first-heading...
    Downloads: 0 This Week
    Last Update:
    See Project
  • Fully Managed MySQL, PostgreSQL, and SQL Server Icon
    Fully Managed MySQL, PostgreSQL, and SQL Server

    Automatic backups, patching, replication, and failover. Focus on your app, not your database.

    Cloud SQL handles your database ops end to end, so you can focus on your app.
    Try Free
  • 10

    Parameterized Unit Test Framework

    PUT extension for JUnit 4

    Parameterized Unit Test Framework is an open-sourced PUT library for JUnit 4. This project is developed in my spare time and currently updated actively. Core features: 1. Separation of test data from test code 2. Annotation support 3. Automated test parameter injection 4. Dedicated test runner
    Downloads: 0 This Week
    Last Update:
    See Project
  • 11
    Robotlegs Framework

    Robotlegs Framework

    An ActionScript 3 application framework for Flash and Flex

    An ActionScript 3 application framework designed for building modular and maintainable applications in Flash and Flex, offering features like dependency injection, command/view management, and plug-and-play extensions. The fluent API makes your code more readable. An extension mechanism makes the framework highly customizable. Bundles allow you to get applications started quickly. Lightweight, built-in logging shows you what the framework is doing. Mediators can be mapped to abstract types and interfaces. ...
    Downloads: 0 This Week
    Last Update:
    See Project
  • 12
    Sqlninja is an exploitation tool to be used against web apps based on MS SQL Server that are vulnerable to SQL Injection attacks, in order to get a shell or extract data also in very hostile conditions. For more information please check http://sqlninja.sf.net
    Downloads: 8 This Week
    Last Update:
    See Project
  • 13
    Mole

    Mole

    Automatic SQL Injection Exploitation Tool

    Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique. The Mole uses a command based interface, allowing the user to indicate the action he wants to perform easily. The CLI also provides auto-completion on both commands and command arguments, making the user type as less as possible.
    Downloads: 1 This Week
    Last Update:
    See Project
  • 14
    hwk

    hwk

    hwk is a tool used for wireless lan pentests

    hwk is an easy-to-use application used to attack and discover wireless networks. It's providing various modes such as authentication/deauthentication flood, beacon and probe response fuzzing.
    Downloads: 1 This Week
    Last Update:
    See Project
  • 15
    A C++ based lightweight, non-invasive SCA (Service Component Architecture) runtime. Optimized for the use in the embedded domain. We are proud to announce release 0.8 of Trentino Release 0.8 adds a major feature to Trentino. With Service discovery, configuration, deployment and operation of Services on devices is made simple and cost efficient.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 16
    this script makes it easy tasks such as DoS attacks, WebApp Scanners, Exploiters , Admin Page Finder, FCKeditor Finder , Mail Bomber ,... This Script Was Made to Work On Windows && Linux .
    Downloads: 0 This Week
    Last Update:
    See Project
  • 17
    w3af
    w3af, is a Web Application Attack and Audit Framework. The w3af core and it's plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much more. This project has been migrated to github! See details in our project site: http://w3af.org/
    Downloads: 1 This Week
    Last Update:
    See Project
  • 18

    AHT (Ashiyane Hack Tools Ver) 1.1

    Perl Hacking Tools (BackTrack)

    ...It is For BackTrack This Script Contains This tools : Local File Disclource (LFD) Checker Scanning the whole netmask and returning IP and MAC BackConnect Tools Proxy Checker Reverse IP Add a User With Admin Access (Windows) Add a User With r00t Access (Unix) Grab Cpanel Users Remote Port Scanning With NetCat SQL Injection Scanner MD5 Hash Cracker (Online) Admin Page Finder Make Uploader With Echo Method (Linux Servers) Service Scanning BruteForce Services With Medusa And Hydra (Backtrack) Test Lfi With php:// Bypass Method Cms Analyzer (Beta Version) Server Scanning With Nmap Remote Command Execution Console Fck Editor Scanner
    Downloads: 0 This Week
    Last Update:
    See Project
  • 19

    Nlatexdb

    SQL database reports using LaTeX

    ...You can define the database connection and the SQL queries within the document and loop over all retrieved database records. It was inspired by "Latexdb" by H.G.Esser, but includes a lot of useful improvements, e.g. regexp replacements, protection against SQL injection, command-line parameters etc. It is written in C#, so it needs either the .Net runtime (under Windows) or Mono (under any platform).
    Downloads: 0 This Week
    Last Update:
    See Project
  • 20
    sqlmap
    sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.
    Downloads: 2 This Week
    Last Update:
    See Project
  • 21

    GameOver

    Training and educating about the web security

    ...Section 1 consists of special web applications that are designed especially to teach the basics of Web Security. This seciton will cover XSS CSRF RFI & LFI BruteForce Authentication Directory/Path traversal Command execution SQL injection Section 2 is a collection of dileberately insecure Web applications. This section provides a legal platform to test your skills and to try and exploit the vulnerabilities and sharpen your skills before you pentest live sites. We would advice newbies to try and exploit these web applications. These applications provide real life environments and will boost their confidence.
    Downloads: 3 This Week
    Last Update:
    See Project
  • 22

    Java EE Two-Phase Commit Testkit

    A Portable Thin Client & Server Pair for XA / 2PC Testing

    ...The tool permits the stress-testing, performance characterization and correct transaction semantics of distributed transactions across Three XA resource managers by Exception Injection. The thin-client can be run from the command-line or inside the IDE. The server side component includes EJB packaging and some simple Web servlet support for retrieving diagnostic and performance data from the testbed.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 23

    Log Analysis Tool Kit - LATK

    A tool suite for Log File Analysis

    This is a collection of command line and web based tools for use in incident response and long term analysis use as part of ongoing situational awareness. Often when responding to a security incident the only files available are web server and proxy server logs. The tools here will aid you in detecting odd traffic such as botnet beaconing and SQL Injection attempts.
    Downloads: 0 This Week
    Last Update:
    See Project
  • 24
    OWASP Joomla! Security Scanner
    Note: WE ARE UNABLE TO UPDATE THE SCANNER AT THIS MOMENT! Note: WE APPRECIATE YOUR CONTRIBUTION. Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla! web site. We'll update it soon. The database update is currently maintained by web-center.si. Send your contributions, recommendations and bugs report to joomscan at yehg.net or creating a ticket at Trac here.
    Downloads: 4 This Week
    Last Update:
    See Project
  • 25
    sqlsus is an open source (My)SQL injection tool, written in perl. It focuses on speed and efficiency, optimising the available injection space. It provides an easy to use interface with lots of neat features. For more information, please visit http://sqlsus.sf.net
    Downloads: 0 This Week
    Last Update:
    See Project