pentest-sqli
CommunityMaster SQL Injection attacks.
Software Engineering#sql injection#penetration testing#web security#hackerone#database exploitation#orm injection
Authoryhy0
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides comprehensive guidance and real-world examples for identifying, exploiting, and assessing SQL injection vulnerabilities during penetration testing.
Core Features & Use Cases
- Attack Surface Discovery: Identifies common web application endpoints and parameters vulnerable to SQLi.
- Exploitation Techniques: Details manual testing methods, payload construction, and bypass techniques for various SQLi types (error-based, blind, time-based, second-order).
- ORM Specifics: Covers injection vectors unique to Object-Relational Mapping frameworks.
- Real-World Cases: Analyzes actual vulnerabilities from HackerOne reports to illustrate practical attack scenarios.
Quick Start
Use the pentest-sqli skill to identify potential SQL injection vulnerabilities in the provided web application URL.
Dependency Matrix
Required Modules
None requiredComponents
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: pentest-sqli Download link: https://github.com/yhy0/ghsa-skill-builder/archive/main.zip#pentest-sqli Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.