Cheat Sheets

SQL Injection Cheat Sheet

This practical one-page SQL Injection Cheat Sheet includes the attack strings and commands as well as default usernames and passwords for the five most common databases (Oracle, MySQL, PostgreSQL, MS-SQL and DB2) so that you can easily discover both SQL Injection & Blind SQL Injection vulnerabilities.

Injection Cheat Sheet

This practical cheat sheet includes the syntax and commands required to identify and exploit the following vulnerabilities:

  • XPATH Injection
  • LDAP Injection
  • Remote Code Injection
  • XML Injection
  • OS Command Injection
  • XQuery Injection
  • SSI Injection