filtered SQL Injections - kimeras - Electronik-Pro, Informatica, Noticas,Wordpress,Facebook,Hacking,Programas,Hosting,Dominios

hola otra vez aca posteando aver para mi pata panita -carlos_bre aca le va esto creo le va servir y esta muy bonito como casi no hay mucho en la red sobre este tema pero bonito espero q les guste amigos:
https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEivZdfSP6Vf7bixt5laBOFGF7q_sMRbufp61WSMoLtUrmh8MY4rJIIqe2FWh8GEoGdw4A_igbBRe76vHyji3ZexIJ1ijn1wPMg0i3OfeU0KDrlPKuIaZIIFbNxRtEw2nxIYnRCWvzAgNCoT/s400/toolza-sql-injection.jpg

While participating at some CTF challenges like Codegate10 or OWASPEU10 recently I noticed that it is extremely trendy to build SQL injection challenges with very tough filters which can be circumvented based on the flexible MySQL syntax. In this post I will show some [COLOR="red"]example [/COLOR]filters and how to exploit them which may also be interesting when exploiting real life SQL injections which seem unexploitable at first glance.  For the following examples I’ll use this basic vulnerable PHP script:

0 comentarios:

Publicar un comentario

 
Top