[Knowledge accumulation] SQL injection exp writing ideas

Language 2023-04-09 22:41:03 views: null

0x00 writing ideas

Test SQL injection, obtain account number and password through injection, and be familiar with the principle and method of SQL injection; modules to be used: request module and re regular module
, disadvantage: only applicable to get request injection

lab environment

dvwa, account password: gordonb/abc123; admin/password 1337/charley
Enter the vulnerability environment and set the level of dvwa to low

Detect if there is sql injection

Add single quotes ' If an error is reported, it may exist

Come to the SQL Injection interface

Enter ' to report an error. There is an error injection

Any characters that appear after the first # will be interpreted by the browser as a location identifier. This means that none of these characters will be sent to the server, so encode # before submitting

Write an exp that detects whether there is an error injection

def pdzr

Guess you like

Origin blog.csdn.net/qq_53577336/article/details/124215904

[Knowledge accumulation] SQL injection exp writing ideas

Ideas for writing sql statements---personal ideas

sql injection file reading and writing

SQL injection of typical knowledge points

SQL injection basic knowledge review

Detailed SQL injection knowledge points

Knowledge accumulation

accumulation of knowledge

sql injection knowledge consolidation (Basic Edition)

Drupal 7.31SQL injection and EXP getshell exploit Detailed

Code audit -Thinkphp3 framework EXP expression SQL injection

Compilation of knowledge accumulation

Quantum computing accumulation of knowledge

Skin care knowledge accumulation

Oracle Database accumulation of knowledge

Small knowledge notes accumulation

Knowledge accumulation of MiniUI

Knowledge accumulation of solr

Planning network knowledge accumulation

Super hard core, time blind injection of SQL injection, principle + steps + practical ideas

CC6 utilization chain (the best CC utilization chain)--EXP writing ideas--source code analysis

Writing knowledge

PHP file injection ideas

Ideas for writing code

Sharing of writing ideas

Ideas for writing recursive questions

Daily accumulation of IT knowledge, broaden their horizons

Front-end knowledge accumulation

java knowledge point accumulation 2

Recommended

Ranking

ASP.NET Core storage session to get any value

Linux has disk space but shows insufficient inode usage in Linux

Oral English 433 Twenty English Words Every Day

The use of common transforms in Pytorch

It's Graduation Season II again

Introduction to OracleDB 6: Use DB LINK to clone non-CDB into CDB architecture

How the report generator FastReport .Net uses code to create reports

My Live Writer Plugin - insert monkey face

DCM's diagnostic services dispatcher (DSD) a Detailed

Java NullPointerException when using scanner.hasNext();

Daily

2024-05-23(35)

2024-05-22(9)

2024-05-21(35)

2024-05-20(5)

2024-05-19(0)

2024-05-18(31)

2024-05-17(6)

2024-05-16(23)

2024-05-15(5)

2024-05-14(9)