blocks|key|1479421|text|我发现了一些不错的firefox插件可以做到这一点。|type|unstyled|depth|inlineStyleRanges|entityRanges|data|1479422|XSS+Me|offset|length|1479423|SQL+Inject+Me|1479424|entityMap|0|LINK|mutability|MUTABLE|url|https://addons.mozilla.org/en-US/firefox/addon/7598|1|https://addons.mozilla.org/en-US/firefox/addon/7597^0|0|0|6|0|0|0|D|1|0^^$0|@$1|2|3|4|5|6|7|R|8|@]|9|@]|A|$]]|$1|B|3|C|5|6|7|S|8|@]|9|@$D|T|E|U|1|V]]|A|$]]|$1|F|3|G|5|6|7|W|8|@]|9|@$D|X|E|Y|1|Z]]|A|$]]|$1|H|3|-4|5|6|7|10|8|@]|9|@]|A|$]]]|I|$J|$5|K|L|M|A|$N|O]]|P|$5|K|L|M|A|$N|Q]]]]

I've found some nice firefox addons that do the trick.

<a href="https://addons.mozilla.org/en-US/firefox/addon/7598" rel="noreferrer">XSS Me</a>

<a href="https://addons.mozilla.org/en-US/firefox/addon/7597" rel="noreferrer">SQL Inject Me</a>

blocks|key|1694691|text|http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/|type|unstyled|depth|inlineStyleRanges|entityRanges|offset|length|data|1694692|包括大多数数据库的版本，包括绕过标准转义的十六进制技巧。|1694693|entityMap|0|LINK|mutability|MUTABLE|url^0|0|1K|0|0|0^^$0|@$1|2|3|4|5|6|7|M|8|@]|9|@$A|N|B|O|1|P]]|C|$]]|$1|D|3|E|5|6|7|Q|8|@]|9|@]|C|$]]|$1|F|3|-4|5|6|7|R|8|@]|9|@]|C|$]]]|G|$H|$5|I|J|K|C|$L|4]]]]

<a href="http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/" rel="nofollow noreferrer">http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/</a>

Includes versions for most DBs, including Hex tricks that bypass standard escaping.

blocks|key|1479464|text|有关示例，请参阅OWASP站点。|type|unstyled|depth|inlineStyleRanges|entityRanges|offset|length|data|1479465|entityMap|0|LINK|mutability|MUTABLE|url|http://www.owasp.org/index.php/Main_Page^0|8|5|0|0^^$0|@$1|2|3|4|5|6|7|L|8|@]|9|@$A|M|B|N|1|O]]|C|$]]|$1|D|3|-4|5|6|7|P|8|@]|9|@]|C|$]]]|E|$F|$5|G|H|I|C|$J|K]]]]

See the <a href="http://www.owasp.org/index.php/Main_Page" rel="nofollow noreferrer">OWASP</a> site for examples.

blocks|key|1694747|text|https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet有很多用于测试SQL注入的示例。|type|unstyled|depth|inlineStyleRanges|entityRanges|offset|length|data|1694748|entityMap|0|LINK|mutability|MUTABLE|url|https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet^0|0|1Q|0|0^^$0|@$1|2|3|4|5|6|7|L|8|@]|9|@$A|M|B|N|1|O]]|C|$]]|$1|D|3|-4|5|6|7|P|8|@]|9|@]|C|$]]]|E|$F|$5|G|H|I|C|$J|K]]]]

<a href="https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet" rel="nofollow noreferrer">https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet</a> has lots of examples for testing SQL injection.

blocks|key|1694790|text|老实说，有一些工具可以很好地测试SQL注入，但老实说，理想情况下，它们不能完全取代手动测试和代码审查。|type|unstyled|depth|inlineStyleRanges|entityRanges|data|1694791|为了使用您的示例，在某些情况下，"or+(1=1)“不起作用，但"or/**/+(1=1);--”起作用。|1694792|有时，调整某些字符串将提供不同的结果，这取决于字符编码和一般创造力。值得一提的是，有时你的web应用程序中的第三方工具也不安全。永远不要低估人们的创造力，特别是如果你有一个公共网站的话。|1694793|这是一个非常好的cheatsheet。|offset|length|1694794|为了做我的测试，我使用了Paros，它有一个有趣的网站扫描工具，你也可以运行它来发现一些问题。|1694795|这个问题需要重复这个SQL+Injection动画片。|1694796|entityMap|0|LINK|mutability|MUTABLE|url|http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/|1|http://www.parosproxy.org/index.shtml|2|http://xkcd.com/327/^0|0|0|0|8|A|0|0|C|5|1|0|A|D|2|0^^$0|@$1|2|3|4|5|6|7|Z|8|@]|9|@]|A|$]]|$1|B|3|C|5|6|7|10|8|@]|9|@]|A|$]]|$1|D|3|E|5|6|7|11|8|@]|9|@]|A|$]]|$1|F|3|G|5|6|7|12|8|@]|9|@$H|13|I|14|1|15]]|A|$]]|$1|J|3|K|5|6|7|16|8|@]|9|@$H|17|I|18|1|19]]|A|$]]|$1|L|3|M|5|6|7|1A|8|@]|9|@$H|1B|I|1C|1|1D]]|A|$]]|$1|N|3|-4|5|6|7|1E|8|@]|9|@]|A|$]]]|O|$P|$5|Q|R|S|A|$T|U]]|V|$5|Q|R|S|A|$T|W]]|X|$5|Q|R|S|A|$T|Y]]]]

Honestly there are some tools that are pretty good a testing for SQL Injection, but honestly they don't fully replace manual testing and code review ideally. 

To use your example there are situations where "or (1=1)" doesn't work but "or/**/ (1=1);--" does. 

Sometimes tweaking certain strings will provide different results, depending on things like character encoding and general creativity. It also bears mentioning that sometimes you aren't safe from 3rd party tools in your web application as well. Never underestimate the creativity of people, especially if you have a public website.

This is a pretty good <a href="http://ferruh.mavituna.com/sql-injection-cheatsheet-oku/" rel="nofollow noreferrer">cheatsheet</a>.

To do my testing I use <a href="http://www.parosproxy.org/index.shtml" rel="nofollow noreferrer">Paros</a>, it has an interesting website scanning tool that you can also run that finds some problems as well.

This question bears the repeating of this <a href="http://xkcd.com/327/" rel="nofollow noreferrer">SQL Injection</a> cartoon.

When reading about SQL Injection and XSS i was wondering if you guys have a single string that could be used to identify those vulnerabilities and others.

A string that could be thrown into a website database to black box check if that field is safe or not. (going to do a large test on a few inhouse tools)

Rough example, wondering if you guys know of more?

"a' or '1'='1"

"center'> &lt; script>alert('test')&lt; /script>"

EDIT: Found a nice <a href="https://stackoverflow.com/questions/255723/xss-torture-test-does-it-exist">XSS question</a> on SO

Do you have any SQL Injection Testing "Ammo"?

当我读到SQL注入和XSS时，我想知道你们是否有一个单独的字符串可以用来识别这些漏洞和其他漏洞。一个可以抛入网站数据库的字符串，用于检查该字段是否安全。(将在一些内部工具上进行大型测试)粗略的例子，想知道你们是否知道更多？"a‘或’1‘=’1‘““script>alert‘><测试(’test‘)< /script>”...

问你有没有SQL注入测试"Ammo"？
EN

社区

活动

资源

关于

腾讯云开发者

热门产品

热门推荐

更多推荐

问你有没有SQL注入测试"Ammo"？EN

社区

活动

资源

关于

腾讯云开发者

热门产品

热门推荐

更多推荐

问你有没有SQL注入测试"Ammo"？
EN