SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder.

README
Issues

SQLi Query Tampering

Advantages and Benefits

Sqlmap is a great automated tool for SQL vulnerabilities but it can be a little noisy when you perform penetesting or bug hunting! One of the cool part of Sqlmap is Tampering. Tampering gives us some functions/techniques to evade filters and WAF's.

SQLi Query Tampering gives you the flexibility of manual testing with many powerful evasion techniques. This extension has two part:

Generator:
- You are able to add your customized payloads
- All evasion techniques grouped by DBMS type
- Tampered payloads can be used as a Generator in Intruder or saved to clipboard/file

Processor:
- You have the ability to choose on of the tamper techniques as your processor
- The processor can be added as a Payload Processor
- You can add your payloads and tamper them based on the selected technique. Write one payload per line.

The list of Evasion Techniques:

apostrophemask, apostrophenullencode, appendnullbyte, between, bluecoat, chardoubleencode, charencode, charunicodeencode, charunicodeescape, commalesslimit, commalessmid, commentbeforeparentheses, concat2concatws, equaltolike, escapequotes, greatest, halfversionedmorekeywords, hex2char, htmlencode, ifnull2casewhenisnull, ifnull2ifisnull, informationschemacomment, least, lowercase, modsecurityversioned, modsecurityzeroversioned, multiplespaces, overlongutf8, overlongutf8more, percentage, plus2concat, plus2fnconcat, randomcase, randomcomments, sp_password, space2comment, space2dash, space2hash, space2morecomment, space2morehash, space2mssqlblank, space2mssqlhash, space2mysqlblank, space2mysqldash, space2plus, space2randomblank, symboliclogical, unionalltounion, unmagicquotes, uppercase, versionedkeywords, versionedmorekeywords

Requirements:

Burp Suite Professional
Jython 2.7 standalone: http://www.jython.org/downloads.html

Manual installation:

Extender -> Options
Click Select file under Python environment
Choose jython-standalone-2.5.jar
Extender -> Extensions
Click Add
Change Extension Type to Python
Choose sqli_query_tampering.py
Done!

Usage notes:

All Tampered Queries (in Generator/Processor) returned in URL-Encoded
You can add a decode rule in Payload Processing section if you need URL-decoded payloads

Bugs

Please make a Github issue.

Changelog:

1.0:

Release

1 Open More issues

Open

fixed small error

opened Aug 10, 2020 by 0xflotus 0

Pythonize Intruder Payload

ZIP File Raider - Burp Extension for ZIP File Payload Testing

Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.

A Burp Pro extension that adds log4shell checks to Burp Scanner.

Damn Small SQLi Scanner

CVE-2021-32099 SQLi allow attacker bypass login. From HTB with love

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Burp extension to create target specific and tailored wordlist from burp history.

HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

Burp-Automator: A Burp Suite Automation Tool with Slack Integration

About Hive Burp Suite Extension

Burp Extension that copies a request and builds a FFUF skeleton

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices.

This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.

Payload for teensy like a rubber ducky but the syntax is different.

Simple node module to query MySQL databases

Rule Processor Y is a next-gen Rule processor with complex multibyte character support

Terminator metasploit payload generator

RCE 0-day for GhostScript 9.50 - Payload generator

Burp Suite 2020.12 replaced the old Look and Feel classes with FlatLaf, an open source Look and Feel

A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques

Share this repo

Related Repos

Database Drivers

Apache Cassandra Live Metrics Monitoring Dashboard.

Apache Cassandra Live Metrics Monitoring Dashboard. Features: An application built in Electron that offers performance metrics and visual graphs for c

Database Drivers

Migrate data from SQL to NoSQL easily

Database Drivers

PartyBid is a collector DAO that lets individuals pool capital, bid on Mirror's reserve au...

PartyBid is a collector DAO that lets individuals pool capital, bid on Mirror's reserve auctions, and resell NFTs.

Database Drivers

4.3k

A SQL linter and auto-formatter for Humans

Bored of not having a good SQL linter that works with whichever dialect you're working with? SQLFluff is an extensible and modular linter designed to help you write good SQL and catch errors before it hits your database. SQLFluff can auto-fix most linting errors too.

Database Drivers

A very simple asynchronous wrapper that makes you can access to Oracle in asyncio programs...

A very simple asynchronous wrapper that makes you can access to Oracle in asyncio programs.

Database Drivers

A Python client for accessing OpenNeuro datasets.

Database Drivers

Simple SQL in Python

SQL is code, you should be able to write it, version control it, comment it, and run it using files. Writing your SQL code in Python programs as strings doesn't allow you to easily reuse your SQL in database GUI tools or CLI tools like psql

Database Drivers

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's I...

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Database Drivers

992

walrus - Lightweight Python utilities for working with Redis

Database Drivers

A one-of-a-kind, stupid fast, Python API using Redis Protocol and MsgPack

Tino is a framework to remotely call functions. It builds both clients and servers.

Database Drivers

[WIP] Empowering you to use complex SQL, but without writing them directly.

Zugh [WIP] Access to database in pythonic way Zugh Status Required Licence Install Usage Connection Config Pool Database Table Query Object Insert

Database Drivers

MySQL Backup and Point-in-time Recovery service

MyHoard MyHoard is a daemon for creating, managing and restoring MySQL backups. The backup data can be stored in any of the supported cloud object storages. It is functionally similar to pghoard backup daemon for PostgreSQL.

Database Drivers

Another free MongoDB schema analyser based on PyMongo and wxPython.

PyMonSchema Another free MongoDB schema analyser based on PyMongo and wxPython. Fast and Effective by using MongoDB MapReduce to analyse collection schema, simple yet powerful. Author: HanseyLee Screeshot

Popular

Database Drivers

5.5k

The Database Toolkit for Python

SQLAlchemy The Python SQL Toolkit and Object Relational Mapper Introduction SQLAlchemy is the Python SQL toolkit and Object Relational Mapper that gives application developers the full power and flexibility of SQL.

Database Drivers

A pandas.DataFrame-based ORM.

jardin jardin (noun, french) – garden, yard, grove. Jardin is a pandas.DataFrame-based ORM for Python applications. Installation $ pip install jardin or $ echo 'jardin' >> requirements.txt $ pip in

Category: Python / Database Drivers
Watchers: 2
Star: 41
Fork: 7
Last update: Aug 10, 2020