Skills
.Work. You
Rest

hunt-sqli

Community

Find SQL injections and prove impact fast

Software Engineering#sql injection#bug bounty#sqlmap#burp suite#vulnerability validation#nosql injection#time-based blind
AuthorAKasem1
Version1.0.0
Installs0

System Documentation

What problem does it solve?

It helps you identify, validate, and document SQL injection vulnerabilities that can expose or alter backend data, often earning high payouts in real bug bounty programs.

Core Features & Use Cases

  • Targeted SQLi hunting guidance: Focuses on high-yield endpoints and parameter patterns like search, filter, sort, reporting ranges, and id-based API routes.
  • Validation methodology: Guides you through error-based, boolean-blind, and time-based blind confirmation (including database-specific sleep/delay payloads).
  • MongoDB/NoSQL injection support: Includes object-operator testing patterns for JSON-based parameter handlers to catch NoSQLi when apps mistakenly assume “MongoDB means safe”.

Example use case: you are testing a public “/search?q=” feature and want to quickly determine whether input reaches a database query, then write a reproducible proof for a triage engineer.

Quick Start

Use hunt-sqli to run systematic SQLi probes against a candidate parameter on a target URL and generate a reproducible, report-ready validation path.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: hunt-sqli
Download link: https://github.com/AKasem1/claude-bug-bounty/archive/main.zip#hunt-sqli

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.