Automate SQL-injection with mechanize and beautifulsoup in python

Python is a great tool to automate things and make things easier for you. Here I am going to show how to automate SQL-injection using Mechanize and BeautifulSoup Python packages. The target I am taking is Mutillidae II. The link in my case is http://192.168.178.25/mutillidae/index.php?page=user-info.php. You may have a different local IP address. ! /usr/bin/python …

Automate SQL-injection with mechanize and beautifulsoup in python Read More »

Exploiting Content-based Blind SQL-injection.

The topmost vulnerability in OWASP top 10 vulnerability list is SQL injection and there is a strong reason for that too. SQL-injection is the most common vulnerability that was discovered on websites till date. The most vulnerable database is MySQL database system, other database systems are vulnerable to injections too but they are used in very less …

Exploiting Content-based Blind SQL-injection. Read More »

Javascript for Pentester Task 16

Hello Internet people, today I am going to post another solution to the task provided at Javascript for Pentester at Pentester Academy. In this task, we learn how to use, find and play with CSRF token.CSRF tokens are used to mitigate Cross-site request forgery, but these tokens also would be bypass if not used properly. You can view solutions to …

Javascript for Pentester Task 16 Read More »

Javascript for Pentester Task 15

Hello pentesters, today I am going to post another solution to the task provided at Javascript for Pentester at Pentester Academy. In this task, we learn more about how to use XML XMLHttpRequest method to fetch data and post to the attacker on the go without users concern. You can view solutions to the other tasks here. Task 15: Data Exfiltration …

Javascript for Pentester Task 15 Read More »

This Festive Season Get Up To 30% OFF🎉🎉

X
Send us Query
close slider