SQLi Collected Cheat Sheets & write-ups

Cheat Sheets

• https://github.com/AdmiralGaust/SQL-Injection-cheat-sheet

• https://www.netsparker.com/blog/web-security/sql-injection-cheat-sheet/

• https://portswigger.net/web-security/sql-injection/cheat-sheet

• https://portswigger.net/web-security/sql-injection/union-attacks

• https://portswigger.net/web-security/sql-injection/examining-the-database

• https://portswigger.net/web-security/sql-injection/blind

• https://sqlzoo.net/

• https://www.exploit-db.com/docs/english/41397-injecting-sqlite-database-based-applications.pdf => Amazing resource for exploiting sqlite based web app

Write Ups

• https://medium.com/pentesternepal/sql-injection-in-harvards-subdomain-c3148f8be156

• https://medium.com/@vamshivaran110/my-first-blind-sql-injection-7db4b5e5c66d

• https://eslam3kl.medium.com/sql-injection-at-spotify-d19e0861ddf0

• https://goktugkaya.medium.com/how-i-hacked-the-dutch-government-and-won-the-famous-t-shirt-b45cdf5dfaa1

• https://7odamo.medium.com/sql-injection-reflected-xss-and-information-disclosure-in-one-subdomain-in-just-10-minutes-f2ce877b43d4

• https://medium.com/@mrempy/how-i-found-a-critical-p1-bug-in-5-minutes-using-a-cellphone-bug-bounty-303ebec3edd6

• https://coffeejunkie.me//120-Days-Of-Frequent-Hacking/ [ Amazing Experience ]

• https://hector0x.medium.com/easy-sqli-in-amazon-subsidiary-using-sqlmap-ff469013671b

• https://cyberguy0xd1.medium.com/how-i-was-able-to-bypass-cloudflare-waf-for-sqli-payload-b9e7a4260026

• https://cyberguy0xd1.medium.com/my-write-up-in-hacking-ibms-administration-panel-and-getting-sqli-on-it-51404c7bee27

• https://0xmahmoudjo0.medium.com/how-i-found-multiple-sql-injection-with-ffuf-and-sqlmap-in-a-few-minutes-9c3bb3780e8f

• https://xdev05.github.io/how-i-got-3-sqli-in-just-10-minutes

• https://infosecwriteups.com/how-i-escalated-a-time-based-sql-injection-to-rce-bbf0d68cb398

• https://medium.com/@jawadmahdi/how-i-found-blind-sql-injection-just-by-browsing-and-getting-a-unique-url-ed87fa1f35ed

Finally this site has a ton of write ups which you can check : https://pentester.land/list-of-bug-bounty-writeups.html