Sqli-Labs专业SQL注入测试平台

SQLI-LABS 是一个专业的SQL注入练习平台

下面的测试场景都支持GET和POST两种注入方式:

  1. Error Based Injections (Union Select)
    1. String
    2. Intiger
  2. Error Based Injections (Double Injection Based)
  3. BLIND Injections: 1.Boolian Based 2.Time Based
  4. Update Query Injection.
  5. Insert Query Injections.
  6. Header Injections. 1.Referer based. 2.UserAgent based. 3.Cookie based.
  7. Second Order Injections
  8. Bypassing WAF
    1. Bypassing Blacklist filters Stripping comments Stripping OR & AND Stripping SPACES and COMMENTS Stripping UNION & SELECT
    2. Impidence mismatch
  9. Bypass addslashes()
  10. Bypassing mysql_real_escape_string. (under special conditions)
  11. Stacked SQL injections.
  12. Secondary channel extraction

https://github.com/Audi-1/sqli-labs

相关的视频及文字教程




评论 (1)

  1. 沙发
    封蓝 2012-12-21 09:30

    收到您的邮件,谢谢哦,支持~~