Skip to content
master
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 

Hibernate injection study

Some tricks on how to exploit HQL injection as blind SQL injection for different DBMSs.

  • hqli_sql_server_demo.pl - PoC script for exploiting HQLi in MS SQL Server RDBMS.
  • hibernate.py - sqlmap tamper script for using UNICODE exploitation technique
  • queries.xml - modified queries.xml for using UNICODE exploitation technique

About

Study about HQL injection exploitation.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published