# Automated SQL Injection Scanners > Search results for `test web apps for SQL injection automatically` on awesome-repositories.com. 104 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/test-web-apps-for-sql-injection-automatically **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/test-web-apps-for-sql-injection-automatically).** ## Results - [golang/go](https://awesome-repositories.com/repository/golang-go.md) (134,756 ⭐) — Go is a statically typed, compiled programming language designed for building scalable, concurrent software. It provides a memory-safe execution environment that combines a high-performance runtime with a self-hosting compiler toolchain, enabling the creation of statically linked machine code binaries without external dependencies. The language is built around a structural type system that uses interfaces for polymorphism and a concurrency model based on lightweight, stack-based coroutines that communicate through channels. The language distinguishes itself through a runtime that features a concurrent, low-latency garbage collector and a compiler that performs escape analysis to optimize memory allocation. It includes a comprehensive, integrated toolchain that supports the entire software lifecycle, from dependency management and versioning to profiling, testing, and diagnostic analysis. These tools are designed to maintain consistent, reproducible builds and high code quality across complex, distributed systems. Beyond its core runtime and language features, Go provides standardized interfaces for database-driven application development, including support for connection pooling and secure query execution. The ecosystem is supported by a unified command-line interface that simplifies project organization, module distribution, and performance tuning. The project maintains extensive documentation, including formal language specifications, memory models, and installation guides for various platforms. - [jaykali/maskphish](https://awesome-repositories.com/repository/jaykali-maskphish.md) (3,020 ⭐) — Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific executables and mobile application packages to establish remote command sessions. The framework covers a broad surface of capabilities, including web application penetration testing, OSINT reconnaissance, memory and disk forensics, and wireless network auditing. It provides tools for payload generation, credential theft, and the automation of information gathering from public data sources. This project is implemented primarily as a shell-based application. - [trietptm/sql-injection-payloads](https://awesome-repositories.com/repository/trietptm-sql-injection-payloads.md) (0 ⭐) — SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,... - [ariga/atlas](https://awesome-repositories.com/repository/ariga-atlas.md) (8,096 ⭐) — Atlas is a SQL database schema management tool and database infrastructure as code framework. It provides a declarative database migration engine that computes the difference between a desired schema state and the current database state to automatically generate the necessary SQL for transitions. The project distinguishes itself through a comprehensive suite of analysis and visualization tools, including a database schema linter that detects destructive changes and data loss risks. It also features a SQL schema visualization tool capable of generating entity-relationship diagrams from extracted database structures. The platform covers a broad surface of database operations, including versioned migration management, schema drift detection, and declarative seed data synchronization. It extends into security and governance by treating database access control, roles, and permissions as version-controlled code. The tool integrates with CI/CD pipelines, GitOps workflows, and infrastructure orchestration tools to automate the linting, testing, and deployment of database changes. - [weiyezhimeng/sql-injection-jailbreak](https://awesome-repositories.com/repository/weiyezhimeng-sql-injection-jailbreak.md) (0 ⭐) — This is the official code repository for [[Findings of ACL 2025] SQL Injection Jailbreak: A Structural Disaster of Large Language Models](https://arxiv.org/abs/2411.01565). - [gin-gonic/gin](https://awesome-repositories.com/repository/gin-gonic-gin.md) (88,694 ⭐) — Gin is a web framework designed for building high-performance web services and APIs. It functions as a middleware-oriented engine that processes incoming HTTP requests through a sequential chain of handlers, allowing for the modular management of cross-cutting concerns such as authentication and logging. The framework utilizes a radix tree data structure to perform request routing, ensuring high-speed path matching with minimal memory overhead. It distinguishes itself by employing a zero-reflection dispatch mechanism that invokes handler functions through static type assertions, avoiding the performance costs typically associated with runtime type inspection. Furthermore, it provides a type-safe data binding layer that maps incoming request payloads directly into structured objects using declarative metadata tags, which simultaneously enforces validation rules to maintain data integrity. Developers can organize complex API surfaces by grouping related endpoints into logical segments that share common path prefixes and middleware configurations. The framework manages the request lifecycle by passing a single mutable context object through the handler chain, which helps minimize memory allocations during request processing. - [clickhouse/clickhouse](https://awesome-repositories.com/repository/clickhouse-clickhouse.md) (48,229 ⭐) — ClickHouse is a high-performance, columnar analytical database designed for real-time query execution and large-scale data aggregation. It functions as a distributed data warehouse capable of processing petabytes of information, while also providing an embedded engine that integrates directly into applications for native query capabilities without external dependencies. The system is built to handle high-throughput ingestion and complex analytical workloads, delivering millisecond-level latency for interactive dashboards and operational monitoring. The platform distinguishes itself through advanced storage and execution techniques, including vectorized query processing and a merge tree storage engine that maintains performance during massive insertions. It features adaptive subcolumn mapping for semi-structured data and supports native vector search for machine learning and generative AI applications. To facilitate efficient data movement, the engine utilizes zero-copy shared memory buffers, minimizing overhead when interacting with external analytical tools or processing diverse file formats like Parquet, JSON, and Arrow. Beyond its core storage and processing capabilities, the project provides a comprehensive suite of tools for observability, security, and data integration. It includes built-in support for natural language querying, automated workflow orchestration for AI agents, and extensive diagnostic features for query plan inspection. The platform also offers robust cloud infrastructure management, including support for private networking, compliant deployment strategies, and integrated billing consolidation. - [awslabs/aws-device-farm-calabash-tests-for-sample-app](https://awesome-repositories.com/repository/awslabs-aws-device-farm-calabash-tests-for-sample-app.md) (8 ⭐) — This is a collection of example Calabash test suites written for the AWS Device Farm Android sample app. Please use these tests as a reference for your own AWS Device Farm Calabash tests. - [analysis-tools-dev/static-analysis](https://awesome-repositories.com/repository/analysis-tools-dev-static-analysis.md) (14,389 ⭐) — This project is a comprehensive, curated directory of static analysis, linting, and security scanning utilities. It serves as a central resource for developers to discover, compare, and select tools based on specific programming languages, licensing models, and integration requirements. The directory distinguishes itself by providing deep metadata for each listed utility, including community-driven popularity rankings, maintenance status, and deployment methods. By aggregating these tools into a single searchable index, it enables teams to identify solutions for enforcing coding standards, managing technical debt, and auditing software supply chain security. The collection covers a broad spectrum of analysis capabilities, ranging from automated code refactoring and structural transformation to formal verification and database schema analysis. It also includes resources for orchestrating multiple linters within development workflows, visualizing code metrics, and performing security compliance audits across diverse repositories. - [graphiteeditor/graphite](https://awesome-repositories.com/repository/graphiteeditor-graphite.md) (24,258 ⭐) — Graphite is a node-based visual design environment that integrates vector illustration, raster image processing, and motion graphics generation into a single platform. It utilizes a functional reactive pipeline and a data-flow execution model to propagate state changes through a graph of interconnected nodes, allowing users to construct complex, automated design workflows. The platform distinguishes itself through a context-aware evaluation engine that injects runtime metadata—such as coordinate data and loop indices—directly into the node graph. This enables the creation of procedural geometry and dynamic, position-dependent design logic that responds to real-time inputs. By combining these mathematical operations with time-based animation primitives, the system allows for the creation of interactive visual effects and motion graphics that synchronize with system clocks or pointer movement. The software provides a comprehensive suite of tools for both vector and raster manipulation, including layer-based composition, procedural texture generation, and advanced color management. Users can perform non-destructive image adjustments, apply clipping masks, and generate complex patterns through algorithmic definitions. The environment also supports external integration by fetching remote data and serializing graphical properties into standardized formats. - [ztellman/automat](https://awesome-repositories.com/repository/ztellman-automat.md) (0 ⭐) — Automat is a library for defining and using finite-state automata, inspired by Ragel. However, instead of defining a DSL, it allows them to be built using simple composition of functions. - [voorivex/pentest-guide](https://awesome-repositories.com/repository/voorivex-pentest-guide.md) (2,761 ⭐) — This project is a comprehensive web application penetration testing guide and vulnerability research framework. It provides a structured methodology for identifying and exploiting security flaws through a phased approach involving reconnaissance, analysis, and exploitation. The resource is distinguished by its use of a curated methodology framework that links theoretical vulnerability patterns to real-world bug bounty reports and historical exploit examples. It includes a payload-based testing library and a reference system that maps specific vulnerability categories to recommended third-party security tools. The guide covers a broad spectrum of security analysis, including attack surface mapping, authentication and session auditing, and infrastructure configuration reviews. It provides detailed procedures for identifying common vulnerabilities such as injection flaws, broken access control, business logic gaps, and token-based security issues. The project is organized as a collection of manuals and checklists, including a web security audit checklist and a dedicated API security testing manual. - [payloadbox/sql-injection-payload-list](https://awesome-repositories.com/repository/payloadbox-sql-injection-payload-list.md) (0 ⭐) - [caddyserver/caddy](https://awesome-repositories.com/repository/caddyserver-caddy.md) (73,492 ⭐) — Caddy is an extensible, modular web server platform designed for high-performance traffic management and automated security. At its core, it functions as a dynamic HTTP gateway that handles request routing, static asset delivery, and reverse proxying through a chain of configurable handler modules. The system is built on a modular architecture that allows developers to extend server functionality by registering custom components, all managed through a unified lifecycle and provisioning framework. What distinguishes Caddy is its focus on automated infrastructure and zero-downtime operations. It provides native, automated HTTPS management by handling the entire lifecycle of TLS certificates, including issuance and renewal via public or private certificate authorities. The server state is managed through a JSON-driven configuration schema that supports atomic, background validation and swapping, enabling real-time updates to routing rules and server settings without interrupting active connections. The platform offers a comprehensive suite of tools for observability and control, including a dedicated administrative API for managing server state and inspecting metrics. It supports complex traffic filtering through flexible request matching, allowing for granular control over how incoming traffic is processed. Developers can define server behavior using a declarative configuration syntax, which the system validates and converts into its native JSON format for deployment. - [crowdsecurity/crowdsec](https://awesome-repositories.com/repository/crowdsecurity-crowdsec.md) (12,574 ⭐) — CrowdSec is a collaborative, distributed security engine designed for threat detection and infrastructure protection. It functions as an intrusion detection system that parses logs and network traffic to identify malicious patterns, utilizing a bucket-based threshold detection model to aggregate events and trigger alerts. The platform is built on a modular architecture that includes a centralized local API server for managing security signals and a relational database for persistent storage of remediation decisions. What distinguishes the project is its decoupled enforcement model, which offloads active blocking to lightweight external components known as bouncers. These bouncers query the central API to synchronize threat intelligence and apply real-time remediation across distributed environments. The system also features a hub-based configuration management framework, allowing users to download and deploy community-curated security scenarios, parsers, and collections to ensure consistent protection against evolving threats. The platform provides a comprehensive suite of tools for security operations, including automated log parsing pipelines, event-driven plugin systems for notification workflows, and extensive command-line utilities for infrastructure management. It supports flexible deployment patterns across standalone, containerized, and cloud-native environments, enabling centralized orchestration of security agents and fleet-wide monitoring of threat activity. The project includes a robust documentation and command-line interface that facilitates the lifecycle management of security components, from initial service discovery and configuration to the validation of detection logic and the auditing of active security policies. - [swisskyrepo/payloadsallthethings](https://awesome-repositories.com/repository/swisskyrepo-payloadsallthethings.md) (78,434 ⭐) — This project is a comprehensive, community-sourced knowledge base designed for security professionals and researchers. It functions as a centralized repository of offensive security techniques, providing a structured collection of exploit payloads, attack vectors, and methodologies for conducting vulnerability assessments and penetration testing. The repository distinguishes itself through a cross-platform payload taxonomy that categorizes exploitation methods by vulnerability type and target environment, enabling rapid lookup during security assessments. It maintains high standards of data integrity and collaborative growth by utilizing version-controlled knowledge management and template-driven content generation, ensuring that the research remains current and consistent across a wide range of technical domains. The project covers a broad capability surface, including detailed references for web application security, database injection, insecure deserialization, and AI model security testing. It also aggregates external resources, such as research papers and third-party tools, to provide a holistic view of modern threat analysis and defensive research. The documentation is organized as a hierarchical tree of markdown files, designed for easy navigation and reference during active security engagements. - [expo/expo](https://awesome-repositories.com/repository/expo-expo.md) (50,111 ⭐) — Expo is a universal mobile framework designed to build native iOS and Android applications from a single codebase using web-standard technologies. It provides a comprehensive development environment that includes a unified runtime for testing, cloud-based infrastructure for compiling and signing native binaries, and automated tools for managing the entire mobile release lifecycle, including app store submission. The framework distinguishes itself through a plugin-based native configuration engine that programmatically modifies project files, allowing developers to integrate native modules without manual intervention. It also features a file-based routing system that maps directory structures directly to navigation paths, and an over-the-air update service that enables the deployment of JavaScript and asset changes directly to user devices, bypassing traditional app store review cycles. Beyond these core capabilities, the platform offers a wide range of integrated services for managing project metadata, environment variables, and persistent data storage. It includes a robust set of UI components and utilities for handling hardware-level features such as camera access, geolocation, audio and video playback, and push notifications. Developers can also leverage managed cloud services to orchestrate custom build profiles and automate CI/CD workflows. The project is managed via a command-line interface that facilitates project setup, native module integration, and the generation of custom development builds. Documentation and tooling are provided to support both standalone applications and the integration of Expo into existing native projects. - [grafana/xk6-sql](https://awesome-repositories.com/repository/grafana-xk6-sql.md) (0 ⭐) — Use SQL databases from k6 tests. - [jdorn/sql-formatter](https://awesome-repositories.com/repository/jdorn-sql-formatter.md) (3,857 ⭐) — A lightweight php class for formatting sql statements. Handles automatic indentation and syntax highlighting. - [angular/angular](https://awesome-repositories.com/repository/angular-angular.md) (100,360 ⭐) — Angular is a platform for building web applications using a component-based architecture. It provides a comprehensive suite of tools for managing encapsulated UI units, including hierarchical dependency injection, a declarative template system, and fine-grained reactivity through signals. The framework supports complex application requirements such as client-side routing, form management, and internationalization. The project includes a command-line interface for scaffolding and build automation, alongside a testing ecosystem for unit and integration verification. It offers multiple rendering strategies, including server-side rendering and static site generation, with support for hydration processes to optimize application delivery. Additionally, the framework features a built-in animation suite and security mechanisms to handle common web vulnerabilities. - [z4nzu/hackingtool](https://awesome-repositories.com/repository/z4nzu-hackingtool.md) (77,515 ⭐) — This project is a comprehensive cybersecurity tool collection designed to support security research, penetration testing, and vulnerability assessment. It functions as a unified penetration testing suite, providing a centralized environment where professionals can access a wide range of offensive security utilities to identify system weaknesses and study attack vectors. The platform distinguishes itself through a modular architecture that aggregates disparate security scripts into a single, hierarchical command-line interface. It simplifies the management of these utilities by integrating external repositories, allowing users to fetch and organize third-party tools directly into a structured local directory. By utilizing a categorized menu system and shell-based process execution, the suite enables efficient navigation and direct invocation of specialized tools for tasks ranging from forensic analysis and reverse engineering to exploit development. The toolkit covers a broad spectrum of security domains, including web and wireless attack vectors, cloud security, payload creation, and social media analysis. It also incorporates automated environment setup to handle the installation of necessary system packages and language runtimes, ensuring compatibility across its diverse collection of utilities. - [k8gege/k8tools](https://awesome-repositories.com/repository/k8gege-k8tools.md) (6,167 ⭐) — K8tools is a multi-stage attack framework that combines memory-only payload execution, credential testing, port forwarding, privilege escalation, and physical USB-based keystroke injection for comprehensive system compromise. At its core, the Ladon PowerShell module loads a multi-function scanner directly into memory, enabling command execution without writing files to disk, while supporting memory-only payload delivery that downloads and runs obfuscated shellcode or PowerShell commands to evade antivirus detection. The framework distinguishes itself through its breadth of integrated capabilities, including a multi-protocol credential tester that checks username and password combinations across SSH, FTP, MySQL, and SMB services, along with port forwarding through compromised hosts to access internal services behind firewalls. It also provides UAC bypass via registry manipulation, a Windows privilege escalation toolkit that elevates processes from limited user to SYSTEM or Administrator, and USB keystroke injection attacks that program Teensy devices to simulate keyboard input on locked machines. Beyond these core differentiators, the toolkit encompasses credential theft and cracking, internal network penetration testing, payload generation and obfuscation, remote code execution via exploits, and web application exploitation. It includes utilities for data encoding and decoding, live host discovery, subdomain enumeration, persistent backdoor deployment, web shell command execution, and password hash cracking, all accessible through local, command-line, or remote PowerShell execution methods. - [avelino/awesome-go](https://awesome-repositories.com/repository/avelino-awesome-go.md) (175,576 ⭐) — This project serves as a comprehensive language ecosystem index, functioning as a centralized, community-curated directory for the Go programming language. It organizes a vast landscape of software components, libraries, and development tools into a structured, navigable hierarchy, enabling developers to efficiently discover resources tailored to specific functional domains. The repository distinguishes itself through a decentralized contribution model, where community-driven updates ensure the index remains current with the rapidly evolving software landscape. Beyond simple resource listing, it acts as a technical knowledge repository, aggregating professional literature, style guides, and best practices to support developer onboarding and professional growth across the entire software development lifecycle. The directory covers a broad capability surface, including essential utilities for distributed systems engineering, application security, data processing, and development productivity. It provides access to specialized tools for database management, web framework integration, testing, and build automation, alongside educational materials that help developers master language-specific architectural patterns. The project is maintained as a static resource aggregation, providing a holistic view of external links and documentation to orient developers within the Go ecosystem. - [mgechev/injection-js](https://awesome-repositories.com/repository/mgechev-injection-js.md) (0 ⭐) — Dependency injection library for JavaScript and TypeScript in 5.1K. It is an extraction of the Angular's dependency injection which means that it's feature complete, fast, reliable and well tested. - [michaelstott/crlf-injection-scanner](https://awesome-repositories.com/repository/michaelstott-crlf-injection-scanner.md) (163 ⭐) — Command line tool for testing CRLF injection on a list of domains. - [ionic-team/capacitor](https://awesome-repositories.com/repository/ionic-team-capacitor.md) (15,054 ⭐) — Capacitor is a cross-platform mobile framework that enables developers to build native applications using web technologies. It functions as a hybrid app container, wrapping web assets within a native runtime that provides a standardized bridge to device hardware and system-level services. By exposing native functionality through a plugin-based architecture, it allows web applications to access platform-specific features while maintaining a consistent interface across mobile and desktop environments. The project distinguishes itself by maintaining native project files as source assets, allowing developers to integrate directly with native development environments and build tools. This approach provides full control over the native project lifecycle, enabling custom code integration and advanced configuration within platform-specific IDEs. The system uses a manifest-driven configuration to manage application identity, permissions, and build settings, ensuring that web-based projects can be compiled into native binaries for distribution. Beyond its core runtime, the framework includes a comprehensive command-line interface for automating mobile build pipelines, managing native dependencies, and synchronizing web assets. It supports a wide range of capabilities, including secure authentication, push notifications, deep link routing, and local data storage. The system also facilitates real-time updates to web content, allowing developers to push changes to installed applications without requiring new app store submissions. The project is documented through a command-line interface that supports scaffolding, building, and deploying applications, with configuration managed via TypeScript to improve developer experience. - [sqlmapproject/sqlmap](https://awesome-repositories.com/repository/sqlmapproject-sqlmap.md) (37,676 ⭐) — This project is an automated security testing suite designed to detect and exploit database vulnerabilities. It functions as a command-line utility that streamlines the identification, verification, and exploitation of web application flaws by automating the injection of malicious payloads into input parameters. The tool provides a comprehensive framework for database enumeration, allowing users to extract schema information, user data, and system configurations from identified injection points. What distinguishes this tool is its sophisticated engine for dynamic payload adaptation and heuristic fingerprinting, which adjusts injection techniques in real-time based on server responses. It supports advanced post-exploitation capabilities, including remote command execution on the underlying host operating system and file system access through database-level vulnerabilities. To navigate restricted environments, the software incorporates out-of-band data exfiltration channels and a middleware pipeline for applying user-defined transformations to bypass security filters and web application firewalls. The suite covers a broad range of operational requirements, including stateful session management, anti-CSRF token handling, and extensive request customization. It supports various target specification methods, such as proxy log analysis and remote API management, while offering granular control over scan performance and detection thresholds. The software is distributed as a command-line application, with configuration management supported through external file loading and command-line arguments. - [mishakorzik/allhackingtools](https://awesome-repositories.com/repository/mishakorzik-allhackingtools.md) (5,186 ⭐) — AllHackingTools is a security tool orchestrator and suite designed to install, update, and manage a wide array of third-party hacking and security utilities from a single command interface. It functions as a centralized hub for network analysis, open source intelligence, penetration testing, and social engineering tools. The project provides specialized frameworks for gathering open source intelligence and searching for user profiles across social platforms. It includes toolkits for network reconnaissance, vulnerability scanning, and the execution of security exploits, as well as a social engineering suite for simulating phishing attacks and credential recovery. The system covers a broad range of operational capabilities, including network packet sniffing, wireless network attacks, and denial-of-service execution. It also incorporates web security testing for identifying SQL injection and cross-site scripting vulnerabilities, alongside utilities for password hash cracking and custom wordlist generation. The environment is managed through a shell-scripted interface that handles system package dependencies and provides options for terminal appearance customization and theme application. - [sql-js/sql.js](https://awesome-repositories.com/repository/sql-js-sql-js.md) (0 ⭐) — sql.js is a javascript SQL database. It allows you to create a relational database and query it entirely in the browser. You can try it in this online demo. It uses a virtual database file stored in memory, and thus doesn't persist the changes made to the database. However, it allows you to… - [deepspeedai/deepspeed](https://awesome-repositories.com/repository/deepspeedai-deepspeed.md) (42,528 ⭐) — DeepSpeed is a high-performance library designed to scale deep learning model training and inference across massive clusters of GPUs and compute nodes. It provides a comprehensive suite of tools for distributed training, enabling the execution of models that exceed the memory capacity of single devices through advanced parameter partitioning, pipeline-based model parallelism, and memory-efficient state offloading. The framework distinguishes itself through specialized communication-efficient optimizers and hardware-aware acceleration techniques. By utilizing gradient compression, quantization, and custom-compiled kernels, it minimizes network bandwidth bottlenecks and maximizes computational throughput. It further supports complex architectures like mixture-of-experts and long-context models by integrating sequence parallelism and sparse attention mechanisms, ensuring efficient resource utilization across heterogeneous hardware topologies. Beyond its core training capabilities, the project includes a robust set of utilities for automated performance tuning, model profiling, and universal checkpointing. It provides infrastructure support for diverse processor architectures and cloud-based cluster deployment, allowing users to optimize execution environments through targeted kernel compilation and diagnostic monitoring. - [appwrite/playground-for-web](https://awesome-repositories.com/repository/appwrite-playground-for-web.md) (0 ⭐) — Appwrite playground is a simple way to explore the Appwrite API & Web SDK. Use the source code of this page to learn how to use the different Appwrite Web SDK features. - [ethicalhack3r/dvwa](https://awesome-repositories.com/repository/ethicalhack3r-dvwa.md) (13,236 ⭐) — DVWA is a vulnerable web application sandbox and PHP security training environment. It serves as a deployable penetration testing target and an OWASP Top 10 lab designed for practicing exploits and simulating common web security vulnerabilities. The application allows users to adjust security difficulty levels to match their skill level and toggle between different SQL database engines to test how various systems handle injection attacks. It includes a mechanism to disable authentication, enabling automated security tools to interact directly with the environment. The project provides capabilities for vulnerability simulation, SQL injection testing, and general web security training. It includes tools for database initialization and configuration via environment variables. - [flutter-team-archive/plugins](https://awesome-repositories.com/repository/flutter-team-archive-plugins.md) (17,710 ⭐) — This project is a collection of official plugin packages and a native integration library designed to provide a consistent interface for accessing hardware and software functionality across different mobile and desktop platforms. It serves as a native platform bridge, enabling cross-platform applications to invoke native code and manage operating system dependencies. The project utilizes a federated plugin architecture, splitting plugins into common interfaces and separate platform implementations to allow for independent development and extension. It further supports native integration through a foreign function interface for synchronous and asynchronous execution between isolates and host operating systems. The codebase covers a broad range of capabilities including state management, declarative app navigation, and local data persistence using SQL and key-value stores. It also encompasses networking primitives for authenticated HTTP and WebSocket communication, as well as comprehensive testing frameworks for unit, widget, and integration verification. Additional surface areas include AI integration for model-agnostic APIs and text-to-UI conversion, alongside a suite of UI components, physics-based animations, and monitoring tools for application performance profiling and crash reporting. - [danielmiessler/seclists](https://awesome-repositories.com/repository/danielmiessler-seclists.md) (71,596 ⭐) — SecLists is a centralized library of security assessment data designed to support vulnerability discovery and penetration testing. It functions as a comprehensive repository of wordlists, payloads, and testing methodologies used to audit software, firmware, and internet-connected hardware for technical vulnerabilities. The project distinguishes itself through a standardized taxonomy and a language-agnostic data format, which allows security tools to predictably ingest and utilize its assets regardless of the underlying programming environment. By decoupling raw testing data from execution logic, the repository ensures that its collections of usernames, passwords, and injection patterns remain portable and compatible with a wide range of custom auditing frameworks and automated security tools. The collection covers a broad spectrum of security testing domains, including brute-force credential testing, web application fuzzing, and automated vulnerability scanning. It also provides structured guidance for firmware analysis and internet-connected device hardening, enabling researchers to apply consistent methodologies when identifying insecure configurations or potential system flaws. The repository is organized as a collection of flat-file assets within a hierarchical directory structure, facilitating integration into automated security workflows. - [awslabs/aws-device-farm-appium-tests-for-sample-app](https://awesome-repositories.com/repository/awslabs-aws-device-farm-appium-tests-for-sample-app.md) (91 ⭐) — AWS Device Farm Appium tests - [istio/istio](https://awesome-repositories.com/repository/istio-istio.md) (38,226 ⭐) — Istio is a service mesh infrastructure that provides a centralized control plane to manage, secure, and observe communication between distributed microservices. It functions as a policy-driven network traffic controller, enabling developers to route, balance, and secure service-to-service traffic without requiring modifications to application code. The system enforces zero-trust security by utilizing mutual transport layer authentication to verify cryptographic identities for every network request. The project distinguishes itself through a sidecar-less proxy architecture, which offloads networking tasks to shared infrastructure proxies rather than requiring individual proxies for every container. This approach is complemented by waypoint proxies, which perform deep packet inspection and enforce granular access policies at the application layer. Furthermore, the platform provides a unified connectivity fabric that synchronizes service registry data across multiple clusters, allowing for consistent traffic management and security policy enforcement across disparate network boundaries. The system operates on a declarative model where a centralized management component continuously reconciles the desired state with the underlying network infrastructure. It supports both transport-layer and application-layer authorization, allowing for precise control over service access based on service accounts and specific request methods. The architecture is designed to simplify operational management and reduce resource overhead while maintaining consistent network behavior across complex, multi-cluster environments. - [thekingofduck/fuzzdicts](https://awesome-repositories.com/repository/thekingofduck-fuzzdicts.md) (8,355 ⭐) — fuzzDicts is a repository of curated wordlists and dictionaries designed for web application fuzzing. It provides collections of strings and payloads used to discover hidden files, subdomains, and security vulnerabilities. The project includes specialized libraries for different security testing vectors, such as dictionaries for common request and cookie parameters, lists of common subdomain prefixes, and collections of passwords and default vendor credentials for brute-force testing. It also maintains a security payload library containing character sequences used to identify flaws like SQL injection and cross-site scripting. The available datasets cover several capability areas, including hidden asset discovery, subdomain enumeration, and security vulnerability scanning. - [actix/actix-web](https://awesome-repositories.com/repository/actix-actix-web.md) (24,421 ⭐) — Actix Web is an asynchronous web framework designed for building high-performance network services. It provides a foundation for processing concurrent requests through a non-blocking execution model, utilizing an actor-based concurrency system to manage lightweight processes and message passing. The framework includes a low-level networking layer that handles the parsing and serialization of HTTP traffic according to standard specifications. The framework distinguishes itself through a type-safe routing engine that enforces strict data types at compile time, ensuring that request parameters align with handler signatures. It employs a middleware-based pipeline for modular request processing and utilizes zero-copy buffer management to minimize memory overhead by passing references to data rather than duplicating payloads. Additionally, it supports real-time bidirectional communication through persistent connections and provides a standardized approach to error management, allowing developers to map internal failures to specific HTTP responses. The project covers a broad range of capabilities, including modular route orchestration for scaling complex applications and comprehensive tools for logging and defining custom error responses. Documentation and learning resources are available to assist with server initialization, request handling, and the implementation of persistent network connections. - [automatic-ripping-machine/automatic-ripping-machine](https://awesome-repositories.com/repository/automatic-ripping-machine-automatic-ripping-machine.md) (4,595 ⭐) — Automatic Optical Disc Ripping Server is a headless system that detects inserted CDs, DVDs, and Blu-rays to automatically extract media, transcode video, and eject discs. It functions as a multi-drive media digitizer using a concurrent processing pipeline to rip and transcode media from several optical drives simultaneously without queuing. The system includes an asynchronous video transcoding pipeline that batches conversion tasks to run during scheduled off-peak hours. It also serves as a media server automation tool, fetching metadata from online APIs to name folders and trigger library rescans. Broad capabilities cover optical media digitization, including audio CD ripping and video disc extraction, as well as the creation of full ISO image backups for data discs. The system provides a headless disc management interface via a RESTful web control surface for monitoring active jobs and logs, alongside a notification system that broadcasts job completions through a message bus to push notification adapters. - [componently-com/awesome-building-blocks-for-web-apps](https://awesome-repositories.com/repository/componently-com-awesome-building-blocks-for-web-apps.md) (195 ⭐) — Standalone features to be integrated into web applications - [cockroachdb/cockroach](https://awesome-repositories.com/repository/cockroachdb-cockroach.md) (32,207 ⭐) — Cockroach is a distributed SQL database designed to scale horizontally across multiple nodes while maintaining strict ACID compliance and global data consistency. It functions as a relational database engine that automatically partitions data into ranges, rebalancing them across a cluster to accommodate growing storage and throughput requirements. By utilizing a distributed consensus protocol, the system ensures that all nodes agree on the order of operations, providing fault tolerance and continuous availability even in the event of hardware failures. The system distinguishes itself through a layered architecture that separates the relational SQL abstraction from a distributed key-value store. It achieves global consistency without requiring perfectly synchronized hardware clocks by employing a hybrid logical clock synchronization mechanism. To support high-concurrency environments, it utilizes multi-version concurrency control and lock-free transaction execution, which allow for consistent snapshots and efficient conflict resolution. Furthermore, the engine is built for compatibility, implementing the standard wire protocol to support existing relational database drivers and tools. Beyond its core transactional capabilities, the platform includes comprehensive tooling for cluster orchestration, security, and performance diagnostics. It supports a variety of deployment models, ranging from self-hosted on-premises configurations to fully managed cloud services. The system provides a command-line interface for session management and query execution, ensuring that administrators can monitor cluster health and manage workloads through standard relational interfaces. - [fuzzdb-project/fuzzdb](https://awesome-repositories.com/repository/fuzzdb-project-fuzzdb.md) (8,819 ⭐) — fuzzdb is a collection of datasets designed for web application penetration testing and dynamic fuzzing. It provides a fuzzing payload dictionary, a resource discovery wordlist, and a fault injection dataset containing corrupted Unicode, null bytes, and escape codes to trigger application crashes and logic errors. The project includes a security filter bypass list featuring polyglots and encoded strings to evade web application firewalls and input validation filters. It also provides a comprehensive web application penetration testing dataset specifically for identifying flaws such as cross-site scripting, path traversal, and other common security vulnerabilities. The library covers a broad range of capabilities, including server configuration auditing, sensitive data discovery, and security filter evasion. It provides patterns to identify predictable resources, writable directories, and source disclosure vulnerabilities, as well as payloads for injecting OS commands, XPath, and remote file includes. - [google/inject.dart](https://awesome-repositories.com/repository/google-inject-dart.md) (861 ⭐) — Compile-time dependency injection for Dart and Flutter - [duckdb/duckdb](https://awesome-repositories.com/repository/duckdb-duckdb.md) (38,805 ⭐) — DuckDB is an in-process analytical database engine designed to run directly within an application process. As a zero-dependency, embedded system, it provides enterprise-grade SQL data processing capabilities without the overhead of managing a dedicated database server. It is built to handle complex analytical and aggregation tasks by storing and retrieving information in columns, allowing for high-performance relational data manipulation. The engine distinguishes itself through a columnar vectorized execution model that maximizes CPU cache efficiency during query operations. It employs adaptive query optimization to dynamically select execution plans at runtime and utilizes zero-copy ingestion to map external data formats directly into memory. To facilitate integration with analytical programming environments, the system supports high-performance data exchange through standardized memory formats and provides specialized connectors for Python, R, and Java. The project covers a broad capability surface, including advanced relational join operations, incremental result streaming for large datasets, and flexible data ingestion from various file formats. It supports complex data types and provides a comprehensive command-line interface for interactive session management and batch processing. The codebase is designed for portability, offering single-file amalgamation to simplify integration into external projects and build systems. - [digininja/dvwa](https://awesome-repositories.com/repository/digininja-dvwa.md) (13,229 ⭐) — DVWA is a vulnerable web application lab and penetration testing sandbox designed to simulate common security flaws. It serves as a training platform for the OWASP Top 10 security risks and functions as a PHP and MySQL security lab for practicing the identification and exploitation of web vulnerabilities. The project provides a graduated learning experience through configurable security levels that adjust the difficulty of the vulnerabilities. It also supports switching between different database engines to research how various storage systems respond to injection attacks. The application is used for cybersecurity education, security tool benchmarking, and vulnerability lab simulation. It allows users to test automated scanners and auditing tools against known weaknesses in a controlled environment. - [catherinedevlin/ipython-sql](https://awesome-repositories.com/repository/catherinedevlin-ipython-sql.md) (1,801 ⭐) — %%sql magic for IPython, hopefully evolving into full SQL client - [dotnet/corefx](https://awesome-repositories.com/repository/dotnet-corefx.md) (17,491 ⭐) — This project is the .NET Base Class Library, providing the foundational types and APIs required for .NET applications. It serves as a cross-platform runtime library and a standardized managed API framework, acting as the primary set of namespaces for memory management, collections, and asynchronous programming. The library enables the development of enterprise backend infrastructure and the execution of managed code consistently across different operating systems and hardware architectures. It includes capabilities for cross-platform application deployment using self-contained binaries, framework-dependent deployments, and container image packaging. The project covers broad capability areas including data serialization for JSON and XML, internationalization and localization for culture-aware formatting, and system resource management for file and stream I/O. It also provides infrastructure for dependency injection, unified configuration management, and the hosting of background services. The codebase includes implementation for performance optimizations such as ahead-of-time and native code compilation. - [bearer/bearer](https://awesome-repositories.com/repository/bearer-bearer.md) (2,566 ⭐) — Bearer is a static analysis security testing tool and privacy compliance auditor. It identifies security vulnerabilities, hard-coded secrets, and privacy risks in source code through static analysis and data flow tracing. The tool distinguishes itself by tracking the movement of sensitive data through code to identify leaks and by mapping personal and health-related information flows to generate evidence for privacy impact assessments. It also provides differential scanning for pull requests and uses fingerprint-based suppression to exclude known false positives from reports. The platform covers a broad range of security domains, including injection flaws, cross-site scripting, weak cryptography, and insecure network configurations. It further includes capabilities for secrets detection and the generation of structured security and privacy compliance reports. Integration is supported via a pipeline scanner that manages process exit codes for CI/CD automation. - [dotnet/core](https://awesome-repositories.com/repository/dotnet-core.md) (21,897 ⭐) — This project is a cross-platform development framework and managed runtime environment designed for building high-performance applications. It provides a comprehensive toolkit for constructing web services, cloud-native microservices, and desktop applications, utilizing a unified runtime that handles memory management and execution across diverse operating systems. The framework distinguishes itself through a native ahead-of-time compilation toolchain that transforms source code into optimized, self-contained machine code binaries. This capability enables fast startup times and reduced memory footprints, while the built-in dependency injection container and layered configuration system provide a structured approach to managing application lifecycles, service lifetimes, and complex configuration data. Beyond its core execution model, the project includes extensive support for observability, data persistence, and background task orchestration. It offers standardized libraries for networking, cryptography, and serialization, alongside tools for containerization and the modernization of legacy codebases. Developers can leverage these features to build intelligent, data-driven applications that integrate with modern AI services and distributed systems. The project provides command-line tools for managing development environments, SDK versions, and build workflows, with documentation and installation scripts available to support setup across various host environments. - [hautdefrance/web-gui-for-sqlite](https://awesome-repositories.com/repository/hautdefrance-web-gui-for-sqlite.md) (0 ⭐) — Web GUI for SQLite is a web-based SQLite browser written in JavaScript.