sqlilabs目录

目录
Page-1(Basic Challenges)

GET 

基于错误

　　Less-1 GET - Error based - Single quotes - String(基于错误的GET单引号字符型注入)

　　Less-2 GET - Error based - Intiger based (基于错误的GET整型注入)

　　Less-3 GET - Error based - Single quotes with twist string (基于错误的GET单引号变形字符型注入)

　　Less-4 GET - Error based - Double Quotes - String （基于错误的GET双引号字符型注入）

报错注入

　　Less-5 GET - Double Injection - Single Quotes - String (双注入GET单引号字符型注入)

　　Less-6 GET - Double Injection - Double Quotes - String (双注入GET双引号字符型注入)

特殊查询

　　Less-7 GET - Dump into outfile - String （导出文件GET字符型注入）

布尔注入

　　Less-8 GET - Blind - Boolian Based - Single Quotes (布尔型单引号GET盲注)

基于时间

　　Less-9 GET - Blind - Time based. - Single Quotes (基于时间的GET单引号盲注)

　　Less-10 GET - Blind - Time based - double quotes (基于时间的双引号盲注)

 POST 

基于错误

Less-11 POST - Error Based - Single quotes- String (基于错误的POST型单引号字符型注入)

Less-12 POST - Error Based - Double quotes- String-with twist (基于错误的双引号POST型字符型变形的注入)

报错注入

Less-13 POST - Double Injection - Single quotes- String -twist (POST单引号变形双注入)

Less-14 POST - Double Injection - Single quotes- String -twist (POST单引号变形双注入)

布尔注入、时间盲注

less-15 POST - Blind- Boolian/time Based - Single quotes (基于bool型/时间延迟单引号POST型盲注)

Less-16 POST - Blind- Boolian/Time Based - Double quotes (基于bool型/时间延迟的双引号POST型盲注)

特殊查询

Less-17 POST - Update Query- Error Based - String (基于错误的更新查询POST注入)

基于头部

Less-18 POST - Header Injection - Uagent field - Error based (基于错误的用户代理，头部POST注入)

Less-19 POST - Header Injection - Referer field - Error based (基于头部的Referer POST报错注入)

 

Page-2 (Advanced Injections)

Less-20 POST - Cookie injections - Uagent field - Error based (基于错误的cookie头部POST注入)

Less-21 Cookie Injection- Error Based- complex - string ( 基于错误的复杂的字符型Cookie注入)

Less-22 Cookie Injection- Error Based- Double Quotes - string (基于错误的双引号字符型Cookie注入)

Less-23 GET - Error based - strip comments (基于错误的，过滤注释的GET型)

Less - 24 Second Degree Injections *Real treat* -Store Injections (二次注入)

Less-25 Trick with OR & AND (过滤了or和and)

Less-25a Trick with OR & AND Blind （过滤了or和and的盲注）

Less-26(failed) Trick with comments and space (过滤了注释和空格的注入)

/*26-28转https://blog.csdn.net/nzjdsds/article/details/77430073#t9*/

less 26 Trick with comments and space (过滤了注释和空格的注入)

less 26a GET - Blind Based - All your SPACES and COMMENTS belong to us(过滤了空格和注释的盲注)

less 27 GET - Error Based- All your UNION & SELECT belong to us （过滤了union和select的）

less 27a GET - Blind Based- All your UNION & SELECT belong to us

less 28 GET - Error Based- All your UNION & SELECT belong to us String-Single quote with parenthesis基于错误的，有括号的单引号字符型，过滤了union和select等的注入

less 28a GET - Bind Based- All your UNION & SELECT belong to us String-Single quote with parenthesis基于盲注的，有括号的单引号字符型，过滤了union和select等的注入

Less-29 基于WAF的一个错误

Less-30 Get-Blind Havaing with WAF

Less-31 Protection with WAF

Less-32 Bypass addslashes()

Less-33 Bypass addslashes()

Less-34 Bypass Add SLASHES

Less-35 why care for addslashes()