Search
Collection
Category
Tag
Blog
Pricing
Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

AISecKit

Curated AI security tools & LLM safety resources for cybersecurity professionals

Product

Search
Collection
Category
Tag

Resources

Blog
Pricing
Submit

Tools

🔥Marathons Tools

Company

About Us
Privacy Policy
Terms of Service
Sitemap

Copyright © 2026 All Rights Reserved.

Home
Category
DetSql

DetSql

A Burp plugin for quickly detecting potential SQL injection requests and marking them to enhance testing efficiency.

Introduction

Information

Publisher
AISecKit
Websitegithub.com
Published date2025/04/28

Categories

Penetration Testing
Vulnerability Scanners
Web Security

Tags

Incident Response
Input Validation
Security Testing

More Products

image of Phantom

DevSecOps ToolsPenetration TestingVulnerability Scanners

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security Auditing Open Source Incident Response Vulnerability Scanning API Security+1

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt Injection Generative AI Red Team Testing Data Poisoning

Folly

Open-source LLM Prompt-Injection and Jailbreaking Playground for testing LLM security vulnerabilities.

Prompt Injection Open Source API Security Security Testing LLM Security+1

DetSql Overview

DetSql is a Burp Suite plugin designed for quickly detecting potential SQL injection requests from HTTP traffic. It minimizes the interception needed while improving the efficiency of SQL injection testing.

Key Features:

Detection Methods: Utilizes various methods to determine potential SQL injection vulnerabilities including error types, numeric checks, order injection, character-based injection, and boolean injection.
User-Friendly Interface: The main dashboard presents clearly organized data for improved navigation and decision-making.
Customizable Settings: Users can configure whitelists, blacklists, and set error payloads to refine their testing processes.
Efficient Request Handling: Supports lightweight threading for manual testing while maintaining performance even under large loads.
Log Management: Provides functionalities to delete logs for effective management and analysis of test results.

Benefits:

Improved Testing Efficiency: By automating the detection of vulnerabilities, DetSql significantly enhances the speed and thoroughness of security testing.
Flexibility in Testing: Support for a variety of SQL database types (MySQL, SQL Server, Oracle, PostgreSQL) allows for flexible testing based on user needs.

Highlights:

Developed using the Burp Suite Java Plugin API, requiring Burp Suite version >=2023.12.1.
Includes mechanisms to handle specific scenarios like JSON data encoding issues and the ability to perform binary matches to identify injection patterns.

DetSql aims to assist manual testers by reducing overhead and improving the accuracy of SQL injection vulnerability assessment.