Lista de Payloads para SQL INJECTION

Lista de Payloads para SQL INJECTION

Link de la lista de payloads y fuente de información 

Link[ https://github.com/payloadbox/sql-injection-payload-list ]

SQL iNJECTION | WAF ByPass

Algunas referencias sobre la vulnerabilidad SQL INJECTION de OWASP y otros recursos los cuales recomendamos revisar.

SQL Injection ( OWASP )
https://www.owasp.org/index.php/SQL_Injection

Blind SQL Injection
https://www.owasp.org/index.php/Blind_SQL_Injection

Testing for SQL Injection (OTG-INPVAL-005)
https://www.owasp.org/index.php/Testing_for_SQL_Injection_(OTG-INPVAL-005)

SQL Injection Bypassing WAF
https://www.owasp.org/index.php/SQL_Injection_Bypassing_WAF

Reviewing Code for SQL Injection
https://www.owasp.org/index.php/Reviewing_Code_for_SQL_Injection

PL/SQL:SQL Injection
https://www.owasp.org/index.php/PL/SQL:SQL_Injection

Testing for NoSQL injection
https://www.owasp.org/index.php/Testing_for_NoSQL_injection

SQL Injection Injection Prevention Cheat Sheet
https://cheatsheetseries.owasp.org/cheatsheets/Injection_Prevention_Cheat_Sheet.html

SQL Injection Query Parameterization Cheat Sheet
https://cheatsheetseries.owasp.org/cheatsheets/Query_Parameterization_Cheat_Sheet.html

SQL Injection en SQL Server y funcion convert() | PDF ESPAÑOL

Herramientas/Scanner de vulnerabilidades SQL INJECTION (KitPloit)

• SQLMap – Automatic SQL Injection And Database Takeover Tool
• jSQL Injection – Java Tool For Automatic SQL Database Injection
• BBQSQL – A Blind SQL-Injection Exploitation Tool
• NoSQLMap – Automated NoSQL Database Pwnage
• Whitewidow – SQL Vulnerability Scanner
• DSSS – Damn Small SQLi Scanner
• explo – Human And Machine Readable Web Vulnerability Testing Format
• Blind-Sql-Bitshifting – Blind SQL-Injection via Bitshifting
• Leviathan – Wide Range Mass Audit Toolkit
• Blisqy – Exploit Time-based blind-SQL-injection in HTTP-Headers (MySQL/MariaDB)

Gran recopilación de Dorks [+20 mil ]