渗透测试
文章平均质量分 93
闲鱼翻身的闲鱼
这个作者很懒,什么都没留下…
展开
-
sqli-labs靶场练习笔记13-18
sqli-labs13-18Less-13:POST-Double Injection-Single quotes-String-with twist(基于POST的变形单引号字符型双注入)Less-14:POST-Double Injection-Single quotes-String-with twist(基于POST的变形单引号(双引号)字符型注入)Less-15:POST-Blind-Boolian/time Based-Single quotes(基于POST的单引号布尔/时间盲注)Less-1原创 2021-05-24 17:15:44 · 137 阅读 · 0 评论 -
sqli-labs靶场练习笔记7-12
sqli-labs靶场练习笔记7一级目录Less-8:GET-Blind-Boolian based-Single Quotes(基于GET单引号布尔盲注)一级目录Less-8:GET-Blind-Boolian based-Single Quotes(基于GET单引号布尔盲注) 所谓Bool盲注,顾名思义,就是在服务器不会回显错误信息的情况下完成的注入,攻击者只能通过Bool的True or False来进行判断注入的成功与否。具体步骤:千篇一律般的开头:判断注入类型,输入一个id加单引号加%原创 2021-05-21 20:40:01 · 118 阅读 · 0 评论 -
sqli-labs靶场练习笔记1-6
sqli-labs靶场练习笔记1-6目录Less-1:GET-Error based-Single quotes-String(GET基于报错的单引号字符型注入)Less-2:GET-Error based-Intiger based(GET基于报错的整形注入)Less-3:GET-Error based-Single quote with twist-String(GET基于报错的变形单引号字符型注入)Less-4:GET-Error based-Double Quotes-String(GET基于报错原创 2021-04-27 19:43:18 · 230 阅读 · 0 评论