🔍 Detect and exploit SQL injection vulnerabilities with SQLiGo, a fast and reliable tool built for security professionals and penetration testers.

Boolean & Time-based Blind SQL Injection — DVWA, SQLMap, Burp Suite | ESMT Dakar

Wrapper in Python to exploit CVE-2024-51428 in ZoneMinder using Blind SQL Injection using sqlmap, automating enumeration of DBs, tables, and data extraction with clean output.

Automation scripts for PortSwigger Web Security Academy labs — SQL Injection, XSS, IDOR and more.

Proof-of-concept exploit for CVE-2024-22120 that leverages time-based SQL injection and gopher-based SSRF to achieve remote code execution on vulnerable Zabbix servers for educational security research.

Hands-on boolean-based blind SQL injection lab: an intentionally vulnerable Go/MySQL app and a PoC exploit comparing three extraction techniques — substring (linear), bisection, and SQL-Anding (bitwise). Fully containerized with Docker Compose.