MaruNote
  • Study Notes
    • Nmap + Nessus Cheat Sheet
    • SQL Injection Fundamentals
      • SQL Argument
      • Introduction
      • Subverting Query Logic
      • Using Comments
      • Union Clause
      • Union Injection
      • Database Enumeration
      • Reading Files
      • Writing Files
      • Mitigation
      • Skill Assessment
    • Stack-Based Buffer Overflows on Linux x86
      • Introduction
    • Stack-Based Buffer Overflows on Windows x86
      • Introduction
  • Tech Notes
    • Linux Cookbook
      • [Ubuntu] Limiting Lenovo Laptop Battery Charging to 80% in Ubuntu
      • [Debian] Firefox User Exprience
    • Windows Cookbook
    • MacOS Cookbook
    • NGFW
    • Rclone
    • Jellyfin
    • Docker
    • Wireguard
    • Powerlevel10k
  • Troubleshooting
    • [Python] error: Microsoft Visual C++ 14.0 or greater is required.
  • Code Draft
    • Python Network Reconnaissance
    • Java File Management
    • Synology Schedule Task
Powered by GitBook
On this page
  1. Study Notes
  2. SQL Injection Fundamentals

Introduction

PreviousSQL ArgumentNextSubverting Query Logic

Last updated 1 year ago

Types of SQL Injections

In-band

In simple cases, the output of both the intended and the new query may be printed directly on the front end, and we can directly read it.

Union Based: used when can specify the exact location, i.e., column Error Based: used when can get the PHP or SQL errors in the front-end

Blind

In more complicated cases, we may not get the output printed, so we may utilize SQL logic to retrieve the output character by character.

Out-of-band

In some cases, we may not have direct access to the output whatsoever, so we may have to direct the output to a remote location, 'i.e., DNS record,' and then attempt to retrieve it from there.