SQL Injection Attacks by Example

A customer asked that we check out his intranet site, which was used by the company's employees and customers. This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration.

Table of Contents

• The Target Intranet

• Schema field mapping

• Finding the table name

• Finding some users

• Brute-force password guessing

• The database isn't readonly

• Adding a new member

• Mail me a password

• Other approaches

• Mitigations

• Other resources
  
  [Read more..]

Courtesy : http://www.unixwiz.net