What is the correct syntax?

Here is the ASCII Sheet.

You want to guess the DBO username juggyboy (8 characters) using Blind SQL Injection technique.
What is the correct syntax?

Here is the ASCII Sheet.

You want to guess the DBO username juggyboy (8 characters) using Blind SQL Injection technique.
What is the correct syntax?

A.
Option A

B.
Option B

C.
Option C

D.
Option D

Show Hint

Leave a Reply 5

Your email address will not be published. Required fields are marked *

rednael

rednael

unreadable 🙁

Reply

rednael

rednael

Oh wait… click on the image 🙂

Reply

rednael

rednael

Actually… ALL ARE WRONG!

Though A has the correct ASCII values, all have broken SQL statements. In all cases only the first character of the username is checked. The substring’s 2nd parameter should increment for each following char.

Reply

Unethica

Unethica

Talk about useless esoteric knowledge…

Reply

niki

niki

i feel that the answer is A

Reply