SQL INJECTION
Sql Injection is a technique to explore the web application using data from the client supplies the SQL syntax. SQL Injection is a type of hack or attack that only requires port 80 and does not require any other port. SQL Injection is a programmer error when coding web.
SQL injection to attack web-based application-server-side scripting such as ASP, JSP, PHP, CGI, and similar to it. With SQL Injection is very possible for us to send the user name and password and are considered true by the web because of errors on the web.
Web Server facilities are used to display an error message and the stored procedure default Microsoft SQL Server can be used to explore the web page with SQL Injection.
BLIND SQL INJECTION
Blind SQL Injection is one of a different database exploitation techniques with regular sql injection, sql injection in which the normal value will be issued but a blind sql injection techniques will not issue any value. But we will know the value by trial and error and testing will value the true and false.
Blind sql injection method requires patience and precision attacker to get the nail on the head .. value (true) but until now this method is quite effective for the web that has menfilter crack sql injection
Tidak ada komentar:
Posting Komentar