Manual and automated injection by a software outsourcing company

Recently I am going to work as an intern, and my friend sent me a java engineer recruitment company to test the security to check the company's strength. I will not destroy the following notes about the intrusion process. To protect the website, handle the keyword a little: The injection vulnerability is found, but it cannot be thrown into the tool and can only be manually injected. Construct statements using burpsuite to automate attacks. The statement is as follows: = 2 + and + 1 = 2 + union + all + select + (select + top + 1 + name + from + sysobjects + where + name + not + in + (select + top + 7 + name + from + sysobjects + )) -- run the result: we can see the data table that stores the Administrator account and password, and then construct a field-breaking statement. Because the website filters single quotes, the cast () function is used to convert the representation to binary and then return it: -- convert table name to binary select CAST ('dcms _ admin' AS varbinary) -- convert binary to show select cast (0x74657374 as varCHAR (1000 )) -- enter the table id (select top 1 object_id (CAST (0x74657374 as varchar (4000) from sysobjects), but the following error is displayed on the website: varchar is filtered, replace it with char (1000) and build a local mssql environment for testing. If the id is null, check the function declaration object_id (nvarchar) and change it to char. I don't know what other methods you can use. Here I will change my mind. Now that I know that it is better to run fields directly in the dictionary. Directly check the name and passwd: the password is thrown to the Terminal 5 and ran for 5 days ...... the common tool cannot scan the website background. Therefore, before getting the account password through injection, you must first scan the background. I found a large dictionary on the Internet. I ran out with Yu Jian ~~~~ The subsequent process will not be explained. Look at the background. It is a secondary development website based on designCMS. I thought that as a software company, I should design a website by myself. Although it is easy to use the existing open-source framework, 0-day is easy to fall. In this way, if you go to their company for an internship, there are also various secondary development projects,