Damn Vulnerable Web Application (DVWA)

A Web application firewall to monitor, analyze and block traffic, built with Python

jSQL Injection is a Java application for automatic SQL database injection.

Docker Compose para desplegar la aplicación web DVWA (Damn Vulnerable Web Application) para realizar prácticas de SQL Injection.

🛡️ Aikido Runtime protects your Node.js application against attacks with one line of code

一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术，作为反向代理接入，保护你的网站不受黑客攻击。 A free WAF that is sufficiently simple, effective, and powerful. Utilizing industry-leading semantic engine detection technology, it operates as a reverse proxy to protect your website from hacker attacks.

Automatic SQL injection and database takeover tool

A premium OSINT tool that allows you to scan dorks on Search Engines WITHOUT LIMITS

My Demo for Secure Coding CSEC 302. It deals with an SQL-Injection vulnerability in certain versions of Python Django (Using latest version, but modified it to remove changes to demonstrate vuln).).

Basic PHP app for user registration and user login fully protected against XSS and with multipage authentication based on session (phpapp) and on cookies (phpappc)

Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:

Source code for Hacker101.com - a free online web and mobile security class.

An application linked to a database built for a Cinema Management use-case. It handles customer bookings in different showtimes of movies across multiple screens in different branches. This project used SQL as its data structure and Python as its base

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Installation script for Codename SCNR.

SQL optimizer and rewriter. - SQL 优化器、重写器(辅助 SQL 调优)。

Simple API for SQL Injection study

Top disclosed reports from HackerOne

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.