SQL injection attack, listing the database contents on non-Oracle databases

Aim:

Tools:

  • Burp Suite Community Edition
  • Web Security Academy — SQL injection learning path
  1. Determine how many columns are in the database table for the product filter Accessories. --> ‘UNION+SELECT+NULL,+NULL- -

--

--

--

I'm here to write about my experiences and all that I am learning while exploring the fascinating world of tech and cybersecurity. Follow my blog.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Golff Weekly Project Progress

Incident Response during Christmas

The Shellshock Bug

ZT news (Dec.6 — Dec.12)

Security is not just the responsibility of the security manager

Facebook introduces new Privacy Basics for users to find tools controlling their information

Just what is Microsoft Edge? For your safety, you really need to know

How i passed my OSCP exam first try with no prior hacking experience

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Katjah Smith👩🏽‍💻

Katjah Smith👩🏽‍💻

I'm here to write about my experiences and all that I am learning while exploring the fascinating world of tech and cybersecurity. Follow my blog.

More from Medium

Lab: Blind SQL injection with time delays and information retrieval

Android Pentest Lab Setup: MobSF Installation on Windows+ [ERROR] Python3 is not installed solved

Write-up: CORS vulnerability with trusted null origin @ PortSwigger Academy

Analysis of Android malware faking Korean bank application