Second Order SQLi – Do Not Trust Your Own Escaped Queries
Master of Puppets
What happens when you have a web application using EXT4 to store files, correctly escapes queries and does not accept direct user controlled parameters?
You need to take your SQLi to the next level!
Follow me on October 21st in a webinar where you are going to see how to exploit second order SQLi.
You will see how to use sqlmap beyond its common behavior with a simple but effective custom script.
I will demonstrate a method which can help you to not only carry out the exploitation, but to also allow you to do your injections in a fast and efficient way!
Reserve your seats here.
Author: GiRa
Davide Girardi (GiRa) is a security researcher and instructor. He has 9+ years of experience in system hardening and security consultancy on Linux, Windows, OSX and mixed enterprise environments.
Hi Gira,
Kindly share me the Links of your tutorials.
If possible please share the documentation/checklist to vulnerability assessment.
All the Best
Hi you can find all the eLearnSecurity webinars here.