Inj3ction Time
100 points Hard

I stumbled upon this website: http://web.ctflearn.com/web8/ and I think they have the flag in their somewhere. UNION might be a helpful command

Flag
Rating 4.71
5
4
3
2
1

Discussion

as a hint try finding number of columns, try union and then try finding table name, then column name and then find column name from table name

0

try not to use any tool do it manually for better learning

0

Good Challenge i used splmap in Linux

0

Hackbar

0

sqlmap is a blessing from jeebus

0
Protected
0

Thanks

0
Protected
1

Nice Challenge , it took almost 1h to refresh my skills and solve it , but i need more complex Examples rather than redtiger , if someone have more complex examples please leave the link ....

0

BBBBBBBBOOOOOOOOOOOTTTTTTTTTTTTTAAAAAAAAAAKKKKKKKKKK!!!!!!!!!!!!

-7

If you're struggling, the concepts on this blog are explained very nicely-

Exploiting SQL Injection: a Hands-on Example

26

You're the best!

0

hmmm I just started doing all the techniques in the article but it's not working for me nearly in the same way

-1