7.1 SQL injection
SQL injection first appeared in the "Phrack" phase 54 in 98.
Injection attacks have two key conditions, the first is that the user can control the input, the second is the original program to execute the code stitching the user input data.
If the web site turns on false echo, it will provide great convenience to the attackers.
7.1.1 Blind Note
A "blind" is an attack done when the server does not have an error echo.
The most common blind method is to construct a simple conditional statement that determines whether the SQL statement is executed, depending on whether the returned page has changed.
For example, compare the execution results of "id=2", "id=2 and 1=2" and "id=2 and 1=1"
7.1.2 Timing Attack
It was published by Timkode on full disclosure in 2011.
"White hat Talk Web Security" chapter seventh inject attack reading notes