Can I use this skill for automated exploitation?

The skill provides the logic and payloads for exploitation and can guide the use of automated tools like SQLMap, though it focuses on high-precision manual and semi-automated testing.

Does this skill help with fixing SQL injection vulnerabilities?

Yes, in addition to detection and exploitation, the skill provides remediation recommendations and code examples to help developers implement secure coding practices like parameterized queries.

What database systems are supported by this skill?

The skill provides specific payloads and techniques for all major relational database management systems, including MySQL, Microsoft SQL Server (MSSQL), PostgreSQL, and Oracle.

What are the legal requirements for using this skill?

Users must have explicit written authorization for penetration testing and a defined scope. The skill includes strict ethical guardrails to prevent unauthorized or destructive testing.

SQL Injection Security Testing

Name: SQL Injection Security Testing
Author: sickn33

bysickn33

•

2,290

•

Seguridad y Pruebas

Performs comprehensive SQL injection vulnerability assessments to identify, demonstrate, and validate database security flaws in web applications.

This skill provides a structured framework for conducting systematic SQL injection (SQLi) testing, ranging from initial reconnaissance to advanced exploitation. It enables Claude to assist security professionals in identifying various attack vectors including UNION-based, error-based, boolean blind, and time-based injections across major database systems like MySQL, MSSQL, PostgreSQL, and Oracle. With built-in guidance for WAF evasion, authentication bypass, and data exfiltration, it helps teams validate input sanitization mechanisms and strengthen application security posture within authorized testing boundaries.

Características Principales

01Comprehensive payload library for MySQL, MSSQL, PostgreSQL, and Oracle systems

02Sophisticated filter bypass techniques including encoding and comment injection

03Structured authentication bypass strategies for login form testing

04Automated database fingerprinting and schema extraction methodology

052,290 GitHub stars

06Advanced exploitation workflows for blind, time-based, and out-of-band injection

Casos de Uso

01Validating the effectiveness of Web Application Firewalls (WAF) and input filters

02Generating proof-of-concept evidence for security audits and remediation reports

03Executing authorized penetration tests to identify critical database vulnerabilities

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add sickn33/antigravity-awesome-skills sql-injection-testing

For use in Claude.ai and ChatGPT

Download Skill