hacking:sql_injection:mysql:string_operations
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| hacking:sql_injection:mysql:string_operations [2020/04/16 22:04] – peter | hacking:sql_injection:mysql:string_operations [2020/07/15 09:30] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 27: | Line 27: | ||
| ---- | ---- | ||
| + | |||
| + | ===== Strings without Quotes ===== | ||
| + | |||
| + | These are some direct ways to using strings but it's always possible to use **CHAR()** to generate string without quotes. | ||
| + | |||
| + | <code sql> | ||
| + | 0x457578 /* Hex Representation of string. */ | ||
| + | |||
| + | SELECT 0x457578 /* This will be selected as string in MySQL.*/ | ||
| + | </ | ||
| + | |||
| + | In MySQL easy way to generate hex representations of strings use this; | ||
| + | |||
| + | <code sql> | ||
| + | SELECT CONCAT(' | ||
| + | |||
| + | SELECT CONCAT(CHAR(75), | ||
| + | </ | ||
| + | |||
| + | Hex based SQL Injection Samples | ||
| + | |||
| + | <code sql> | ||
| + | SELECT LOAD_FILE(0x633A5C626F6F742E696E69) /* This will show the content of c:\boot.ini */ | ||
| + | </ | ||
| + | |||
| + | ---- | ||
| + | |||
| + | ===== String Modification & Related ===== | ||
| + | |||
| + | Return ASCII character value of leftmost character. | ||
| + | |||
| + | <code sql> | ||
| + | ASCII() | ||
| + | |||
| + | SELECT ASCII(' | ||
| + | </ | ||
| + | |||
| + | A must have function for Blind SQL Injections. | ||
| + | |||
| + | ---- | ||
| + | |||
| + | Convert an integer of ASCII. | ||
| + | |||
| + | <code sql> | ||
| + | CHAR() | ||
| + | |||
| + | SELECT CHAR(64) | ||
| + | </ | ||
| + | |||
| + | |||
hacking/sql_injection/mysql/string_operations.1587074651.txt.gz · Last modified: 2020/07/15 09:30 (external edit)