Revision as of 19:14, 13 January 2007

1 Database objects
- 1.1 Tables
- 1.2 Stored Procedures
2 System data
3 Queries
- 3.1 Data type casting
- 3.2 String-based queries with no quote characters
4 Attacks
- 4.1 SQL tautology attacks
5 Creating content

Database objects

Tables

List of table names

Create a table

List of columns for a specific table

Information about the indexes of a specific table

Create a index

Stored Procedures

List of stored procedures or functions

Parameters for a stored procedure or function

Source code of a stored procedure or function

Create a stored procedure or function

System data

Users

List of database users

Database user permissions

Create a new user

Change a user password

Database server settings

Host Operating System

Operating System version

OS environment variables

Execute OS shell commands

Queries

Data type casting

String-based queries with no quote characters

Attacks

SQL tautology attacks

Creating content

Create a new table

Create an index

Create a new user

@@ Line 1: / Line 1: @@
 __TOC__
-=Reconnaissance=
+=Database objects=
 ==Tables==
 ===List of table names===
+===Create a table===
 ===List of columns for a specific table===
 ===Information about the indexes of a specific table===
+===Create a index===
 ==Stored Procedures==
-===List of stored procedures===
+===List of stored procedures or functions===
-===Parameters for stored procedures===
+===Parameters for a stored procedure or function===
-===Source code of stored procedures===
+===Source code of a stored procedure or function===
-==System data==
+===Create a stored procedure or function===
+=System data=
+==Users==
 ===List of database users===
 ===Database user permissions===
-===Database server settings===
+===Create a new user===
+===Change a user password===
+==Database server settings==
+==Host Operating System==
 ===Operating System version===
 ===OS environment variables===
+====Execute OS shell commands====
-=Query attacks & tricks=
+=Queries=
 ==Data type casting==
 ==String-based queries with no quote characters==
+=Attacks=
 ==SQL tautology attacks==
+=Creating content=
+==Create a new table==
+==Create an index==
+==Create a new user==

Difference between revisions of "SQL Injection Cookbook template"

Revision as of 19:14, 13 January 2007

Database objects

Tables

List of table names

Create a table

List of columns for a specific table

Information about the indexes of a specific table

Create a index

Stored Procedures

List of stored procedures or functions

Parameters for a stored procedure or function

Source code of a stored procedure or function

Create a stored procedure or function

System data

Users

List of database users

Database user permissions

Create a new user

Change a user password

Database server settings

Host Operating System

Operating System version

OS environment variables

Execute OS shell commands

Queries

Data type casting

String-based queries with no quote characters

Attacks

SQL tautology attacks

Creating content

Create a new table

Create an index

Create a new user

Navigation menu

Search