Cybersecurity Contributions
  • CyberSec
  • Zixem Challenges
  • TryHackMe write-ups
  • TryHackMe SQL Injection Lab
  • SQLi Collected Cheat Sheets & write-ups
  • Portswigger - SQLi Labs
  • Riddler CTF Challenges
  • Cyber Apocalypse CTF 2022 Web Challenges
  • CyberStarters CTF Challenges
  • SQLi Filter Bypass 101
  • Order By SQL Injection
  • Black Hat CTF Web Challenges (2022)
  • TJCTF 2023 writeup (Code Review)
  • CAT CTF 2023 Web Challenges
  • Arab Regional CTF 2023 (Cyber Talents)
  • BugHunting
    • Google dorking to SQL injection
Powered by GitBook
On this page
  • Cheat Sheets
  • Write Ups

SQLi Collected Cheat Sheets & write-ups

PreviousTryHackMe SQL Injection LabNextPortswigger - SQLi Labs

Last updated 2 years ago

Cheat Sheets

  • => Amazing resource for exploiting sqlite based web app

Write Ups

  • [ Amazing Experience ]

Finally this site has a ton of write ups which you can check :

https://github.com/AdmiralGaust/SQL-Injection-cheat-sheet
https://www.netsparker.com/blog/web-security/sql-injection-cheat-sheet/
https://portswigger.net/web-security/sql-injection/cheat-sheet
https://portswigger.net/web-security/sql-injection/union-attacks
https://portswigger.net/web-security/sql-injection/examining-the-database
https://portswigger.net/web-security/sql-injection/blind
https://sqlzoo.net/
https://www.exploit-db.com/docs/english/41397-injecting-sqlite-database-based-applications.pdf
https://medium.com/pentesternepal/sql-injection-in-harvards-subdomain-c3148f8be156
https://medium.com/@vamshivaran110/my-first-blind-sql-injection-7db4b5e5c66d
https://eslam3kl.medium.com/sql-injection-at-spotify-d19e0861ddf0
https://goktugkaya.medium.com/how-i-hacked-the-dutch-government-and-won-the-famous-t-shirt-b45cdf5dfaa1
https://7odamo.medium.com/sql-injection-reflected-xss-and-information-disclosure-in-one-subdomain-in-just-10-minutes-f2ce877b43d4
https://medium.com/@mrempy/how-i-found-a-critical-p1-bug-in-5-minutes-using-a-cellphone-bug-bounty-303ebec3edd6
https://coffeejunkie.me//120-Days-Of-Frequent-Hacking/
https://hector0x.medium.com/easy-sqli-in-amazon-subsidiary-using-sqlmap-ff469013671b
https://cyberguy0xd1.medium.com/how-i-was-able-to-bypass-cloudflare-waf-for-sqli-payload-b9e7a4260026
https://cyberguy0xd1.medium.com/my-write-up-in-hacking-ibms-administration-panel-and-getting-sqli-on-it-51404c7bee27
https://0xmahmoudjo0.medium.com/how-i-found-multiple-sql-injection-with-ffuf-and-sqlmap-in-a-few-minutes-9c3bb3780e8f
https://xdev05.github.io/how-i-got-3-sqli-in-just-10-minutes
https://infosecwriteups.com/how-i-escalated-a-time-based-sql-injection-to-rce-bbf0d68cb398
https://medium.com/@jawadmahdi/how-i-found-blind-sql-injection-just-by-browsing-and-getting-a-unique-url-ed87fa1f35ed
https://pentester.land/list-of-bug-bounty-writeups.html