05.1 Klassifizierung SQL-Injections

0.0(0)
studied byStudied by 0 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/3

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

4 Terms

1
New cards

Typen

  • UNION Query based

  • Stacked Query

  • Error based

  • Boolean-based blind

  • Time-based blind

2
New cards

Risiko

  • Level 1: Harmlos für Mehrheit

  • Level 2: Verwendet hohe Ausführungszeit

  • Level 3: Verwenden OR- basierte SQL injection

3
New cards

Level/Ziele/Payloads

  • Level 1: ca. 50 Abfragen

  • Level 5: kann über 1000 Abfragen umfassen

  • Standardmäßig immer POST/GET-Parameter testen

  • ab Level 2: Berücksichtigen Cookies

  • ab Level 3: Testen User Agent und Referrer

4
New cards

free

Explore top notes

Explore top flashcards