MaDLeeTs • Cyber Security & Professional Webmasters Forum
Bypassing Casting in SQL Injection (MySQL) - Printable Version

+- MaDLeeTs • Cyber Security & Professional Webmasters Forum (http://www.madleets.com)
+-- Forum: Security & Penetration (http://www.madleets.com/Forum-Security-Penetration)
+--- Forum: SQL Injections Attacks (http://www.madleets.com/Forum-SQL-Injections-Attacks)
+--- Thread: Bypassing Casting in SQL Injection (MySQL) (/Thread-Bypassing-Casting-in-SQL-Injection-MySQL)

Pages: 1 2


Bypassing Casting in SQL Injection (MySQL) - b0x - 03-18-2017

Hello Buddies Clapping

Today I made a Video Tut for Bypassing Casting in Injection

Sometimes you inject website but the column is Integer

in this video you'll bypass that problem using ASCII and some blind technique

Download from here Thumbsupsmileyanim

1. http://s000.tinyupload.com/index.php?file_id=97000626618435640956
2. https://dailyuploads.net/a0zj0esswv9p
3. http://www.mediafire.com/file/ut3jtca0hsyv6p8/SQL-Casting_2.rar

./b0x



RE: Bypassing Casting in SQL Injection (MySQL) - H4x0rl1f3 - 03-18-2017

Bravo wink


RE: Bypassing Casting in SQL Injection (MySQL) - Faisal 1337 - 03-18-2017

GooD Work L33T Tonguesmiley


RE: Bypassing Casting in SQL Injection (MySQL) - b0x - 03-18-2017

Thank you all brothers

The file in lab "s.php"

Code:
<?php

# Coded by TurkisH-RuleZ aka b0x
mysql_connect("localhost","root","");
mysql_select_db("kl");
$ID = $_GET['ID'];
$r = mysql_fetch_array(mysql_query("SELECT * from klj_users where id='$ID'"));
echo (int)$r['last_visit'];

?>



RE: Bypassing Casting in SQL Injection (MySQL) - ehacker - 03-18-2017

nice tut bro


RE: Bypassing Casting in SQL Injection (MySQL) - AhmadRaza.1337 - 03-18-2017

Thanks Bro...


RE: Bypassing Casting in SQL Injection (MySQL) - Impulsive - 03-18-2017

nice share bro! Smiley1


RE: Bypassing Casting in SQL Injection (MySQL) - Hunter PCA - 03-18-2017

Nice Trick b0x Smiley1


RE: Bypassing Casting in SQL Injection (MySQL) - wiin - 03-18-2017

bro intresting and usefull tut Smiley1 Smiley1 thanks dear <3


RE: Bypassing Casting in SQL Injection (MySQL) - Curse - 04-05-2017

This is a good one.