Burp Suite/SQL Injection: Difference between revisions

Revision as of 16:13, 21 May 2023

This page covers how to perform SQL Injection attacks with Burp Suite.

Lab: SQL injection vulnerability in WHERE clause allowing retrieval of hidden data

Lab: SQL injection vulnerability allowing login bypass

https://portswigger.net/web-security/sql-injection/lab-login-bypass
https://www.youtube.com/watch?v=ML3aGaloczI
lab doesn't require burp suite, just feeding SQL queries into login form
guessing SELECT firstname FROM users WHERE username='admin' AND password='admin'
single quotes raising internal errors are a sign of SQL Injection vulnerability
not taking failure as an option: admin, administrator, etc etc etc

@@ Line 7: / Line 7: @@
 * https://www.youtube.com/watch?v=alTceRdSxS0
 * lab doesn't require burp suite, just tinkering with URL parameters
+* single quotes raising internal errors are a sign of [[SQL Injection]] vulnerability
 Lab: SQL injection vulnerability allowing login bypass
@@ Line 13: / Line 15: @@
 * lab doesn't require burp suite, just feeding SQL queries into login form
 * guessing <code>SELECT firstname FROM users WHERE username='admin' AND password='admin'</code>
-*
+* single quotes raising internal errors are a sign of [[SQL Injection]] vulnerability
+* not taking failure as an option: admin, administrator, etc etc etc