Can this skill help bypass Web Application Firewalls (WAF)?

Yes, it provides advanced evasion techniques such as character encoding, whitespace substitution, and keyword variation to bypass security filters.

What types of SQL injection does it cover?

It covers in-band (UNION/Error), blind (Boolean/Time), and out-of-band (DNS/HTTP) injection vectors.

Is this skill safe for production databases?

The skill includes specific guardrails advising against destructive queries (DROP/DELETE) and recommends stopping immediately upon detecting production data.

Does this skill support multiple database types?

Yes, it includes specialized techniques and payloads for MySQL, MSSQL, PostgreSQL, and Oracle database systems.

Does it provide remediation advice?

Yes, the skill generates detailed reports with severity ratings and specific code examples for fixing identified vulnerabilities using parameterized queries.

SQL Injection Security Testing

Name: SQL Injection Security Testing
Author: claudiodearaujo

byclaudiodearaujo

0•

Security & Testing

Performs comprehensive SQL injection vulnerability assessments to identify, exploit, and remediate database security flaws.

This skill equips Claude with specialized knowledge to conduct rigorous security audits for SQL injection vulnerabilities across multiple database systems like MySQL, MSSQL, and PostgreSQL. It guides users through systematic detection phases, advanced exploitation techniques including blind and out-of-band methods, and provides actionable remediation strategies. Ideal for security professionals and developers, it helps identify authentication bypasses and sensitive data leaks while adhering to strict ethical guidelines and penetration testing protocols.

Key Features

01Multi-vector vulnerability detection (Boolean, Time, Error, UNION)

02Filter and WAF evasion techniques using encoding and comments

03Advanced database fingerprinting for MySQL, MSSQL, PostgreSQL, and Oracle

040 GitHub stars

05Authentication bypass payload generation and testing

06Detailed remediation guidance with secure coding examples

Use Cases

01Automated penetration testing of web application input parameters

02Validating database input sanitization and parameterized query implementation

03Identifying sensitive information leaks through out-of-band exfiltration

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front sql-injection-testing

For use in Claude.ai and ChatGPT

Download Skill

Key Features

01Multi-vector vulnerability detection (Boolean, Time, Error, UNION)

02Filter and WAF evasion techniques using encoding and comments

03Advanced database fingerprinting for MySQL, MSSQL, PostgreSQL, and Oracle

040 GitHub stars

05Authentication bypass payload generation and testing

06Detailed remediation guidance with secure coding examples

Use Cases

01Automated penetration testing of web application input parameters

02Validating database input sanitization and parameterized query implementation

03Identifying sensitive information leaks through out-of-band exfiltration

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front sql-injection-testing

For use in Claude.ai and ChatGPT

Download Skill