This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Blind SQL Injection"
From OWASP
Dinis.cruz (talk | contribs) |
Dinis.cruz (talk | contribs) (→Description) |
||
| Line 5: | Line 5: | ||
'''Online Resources''' | '''Online Resources''' | ||
* [http://www.blackhat.com/presentations/bh-usa-04/bh-us-04-hotchkies/bh-us-04-hotchkies.pdf Blind SQL Injection Automation Techniques] - Black Hat Pdf | * [http://www.blackhat.com/presentations/bh-usa-04/bh-us-04-hotchkies/bh-us-04-hotchkies.pdf Blind SQL Injection Automation Techniques] - Black Hat Pdf | ||
| + | * [http://seclists.org/lists/bugtraq/2005/Feb/0288.html Blind Sql-Injection in MySQL Databases] | ||
* [http://www.cgisecurity.com/questions/blindsql.shtml Cgisecurity.com: What is Blind SQL Injection?] | * [http://www.cgisecurity.com/questions/blindsql.shtml Cgisecurity.com: What is Blind SQL Injection?] | ||
* [http://www.securitydocs.com/library/2651 Blind SQL Injection] | * [http://www.securitydocs.com/library/2651 Blind SQL Injection] | ||
| Line 11: | Line 12: | ||
'''Tools''' | '''Tools''' | ||
| + | * [http://www.sqlpowerinjector.com/ SQL Power Injector] | ||
* [http://www.0x90.org/releases/absinthe/ [Absinthe :: Automated Blind SQL Injection] // ver1.3.1 | * [http://www.0x90.org/releases/absinthe/ [Absinthe :: Automated Blind SQL Injection] // ver1.3.1 | ||
| + | * [http://www.securiteam.com/tools/5IP0L20I0E.html SQLBrute - Multi Threaded Blind SQL Injection Bruteforcer] in Python | ||
==Examples == | ==Examples == | ||
Revision as of 12:46, 25 July 2006
- This is an Attack. To view all attacks, please see the Attack Category page.
Description
Online Resources
- Blind SQL Injection Automation Techniques - Black Hat Pdf
- Blind Sql-Injection in MySQL Databases
- Cgisecurity.com: What is Blind SQL Injection?
- Blind SQL Injection
- http://www.spidynamics.com/whitepapers/Blind_SQLInjection.pdf
- http://www.imperva.com/application_defense_center/white_papers/blind_sql_server_injection.html
Tools
- SQL Power Injector
- [Absinthe :: Automated Blind SQL Injection // ver1.3.1
- SQLBrute - Multi Threaded Blind SQL Injection Bruteforcer in Python
Examples
Related Threats
Related Attacks
Related Vulnerabilities
Related Countermeasures
Categories
This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.
