SQLi UNION attack โ retrieved data from another table and logged in as administrator. โ
The payload:
' UNION SELECT NULL,'yB7TTZ',NULL--
First find the column that accepts strings. Then pull whatever you want from any table.
Databases talk too much when you know how to ask.๐
๐จ That green "Verified" badge on a #GitHub commit? The hash under it isn't unique.
New research: anyone can rewrite a signed commit into many valid "Verified" hashes, no signing key needed.
Same files. Same author. Valid signature.
Learn how 'hash chain malleability' breaks commit trust - https://t.co/PhTFGJCtTQ
Burp Suite taught me this better than any explanation could.
Intercepted a request, modified a value the browser was "controlling" โ
Server accepted it without question.
The browser is in the user's hands. Never the developer's.
Backend validates. Frontend decorates.
One thing I learned recently:
Front-end security is not real security.
Users control the browser, meaning JavaScript and validations can be modified or bypassed easily. Real trust enforcement must happen on the back-end.
@_DeejustDee#cybersecurity
OSINT (Open Source Intelligence) is the most underrated skill in cybersecurity.
Before any real penetration test, professionals gather publicly available information first.
You'd be shocked what's just sitting there on the internet about any company or person.
@Gamingtronium โข localhost โ a hostname, resolved via DNS or /etc/hosts. Can point anywhere.
โข 127.0.0.1 โ the actual loopback IP. Always points to your machine.
Why it matters in security: SSRF filters that block "127.0.0.1" can sometimes be bypassed using "localhost" instead.
Solved my first SQLi lab on @pwncollege ๐
Bypassed a login by injecting into the username field.
The server literally printed the query it was running in debug mode
WHERE username = 'admin' 1=1--
Always TRUE. Authentication dead.
#Cybersecurity
13/51 โ SQLi UNION attack. โ
UNION lets you attach a second query to the first โ pulling data from tables it was never meant to expose.
One injection. Database spilling secrets.
@PortSwiggerAcademy ๐ฅ #Cybersecurity#sqlinjection
Started learning SQL injection on @PortSwiggerAcademy today.
First thing that broke my brain a little:
Adding '-- to a URL can comment out the rest of a SQL query.
category=Gifts'--
One vulnerable input. The entire query logic rewritten.
This is just the beginning. ๐