Jump to content

Tutoriale in engleza

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Romanian Security Team Security research

Forums
RST Con #3
Browse
- Staff
- Leaderboard
- Online Users
- More
Activity
Pages
More

Search In

Find results that contain...

All of my search term words
Any of my search term words

Find results in...

Content titles and body
Content titles only

[PDF] Blind Sql Injection with Regular Expressions Attack

By M2G, December 30, 2012 in Tutoriale in engleza

Recommended Posts

Apprentice

M2G

Posted December 30, 2012

- Report
- Share

Posted December 30, 2012

Index

Why blind sql injection?
How blind sql injection can be used?
Testing vulnerability (MySQL - MSSQL):
Time attack (MySQL)
Time attack (MSSQL)
Regexp attack's methodology
Finding table name with Regexp attack (MySQL)
Finding table name with Regexp attack (MSSQL)
Exporting a value with Regexp attack (MySQL)
Exporting a value with Regexp attack (MSSQL)
Time considerations
Bypassing filters
Real life example
Conclusions

http://www.ihteam.net/papers/blind-sqli-regexp-attack.pdf

You can download an example of PHP code from

http://www.ihteam.net/papers/regexp_bsqli.php.tar.gz

1

Quote

Link to comment

Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

×

Go to topic listing

×

Forums
RST Con #3
Browse
- Back
- Browse
- Staff
- Leaderboard
- Online Users
Activity
Pages

×

Create New...