Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
SQL static analyzer for performance, security, compliance and cost. 272 rules. Completely offline. Works in CI pipelines.
Step into my GitHub treasure trove—an immersive collection of comprehensive notes chronicling my Certified Ethical Hacker (CEH) lab escapades. Journey through the intricate art of hacking, traversing from covert reconnaissance to the boundless realms of cloud computing. Prepare to illuminate your path in the captivating cosmos of ethical hacking.
Safe access to production databases
Access management as code.
Automated CIS Benchmark Compliance Remediation for Postgresql-12.x with Ansible
Automated STIG Benchmark Compliance Remediation for Postgresql-9.x with Ansible
Intro to Information Security a course content from Udacity. Three parts: single computer security, network security and security managemnt.
Ask for data in plain English; get validated, parameterized SQL with guardrails.
A simple web application that illustrates how Virgil PureKit can be used with MariaDB to store and share data in the most secure way
is a PoC script designed to demonstrate a potential vulnerability within the UDF (Universal Disk Format) filesystem implementation on macOS systems
StealthNoSQL : The Ultimate NoSQL Injection Tool - Unleash the power of advanced NoSQL injection techniques with this comprehensive command-line tool! Whether you’re pentesting MongoDB, CouchDB, or any other NoSQL database, StealthNoSQL has you covered. 🚀💻
Database-enforced multitenancy for Django using PostgreSQL Row-Level Security. Every query - ORM, raw SQL, dbshell - is filtered by the database itself. Zero data leaks by design
Claude Skill that audits Supabase projects for RLS misconfigurations, exposed keys, auth bypasses, and storage vulnerabilities. 27 anti-patterns sourced from CVE-2025-48757 and 10 security studies. Safe for production.
........... The projects and homeworks are part of the course CSE-565 : Computer Security [Fall 2018 @ UB_SUNY]................ Course Instructor : Marina Blanton (http://www.acsu.buffalo.edu/~mblanton/)
A developer-first CLI tool to obfuscate sensitive Postgres data while maintaining relational integrity and schema awareness.
A Laravel package with an encryptable trait to manage encrypting database table fields
EasyRls is an open-source tool for managing Row Level Security (RLS) policies in PostgreSQL databases. It allows users to connect to PostgreSQL instances, list schemas and tables, manage RLS policies (create, edit, delete, copy, enable/disable)
An Android static analysis tool as an Android Studio plugin to check the status of the Firebase database access control that is in use by the app under development
Lightweight and extensible PostgreSQL DML audit solution - Automatic trigger management, per-schema control, structured JSONB logs for tracking INSERT, UPDATE, and DELETE operations.
Add a description, image, and links to the database-security topic page so that developers can more easily learn about it.
To associate your repository with the database-security topic, visit your repo's landing page and select "manage topics."