Welcome to HBH! If you had an account on hellboundhacker.org you will need to reset your password using the Lost Password system before you will be able to login.

Basic 18

  1. Home
  2. Forum
  3. Basic
  4. Basic 18

ghost's Avatar

ghost

0 0

I have been looking around for clues on random forum posts and articles, and here is what I have right now.

http://hellboundhackers.org/challenges/basic18/index.php?id=1 U**** L L*CT "5" FM Articles

I think I am doing something wrong by beginning it with ?id=1 and nothing else instead of something to do with a null or Null or NULL or whatever. Also I might be missing something at the end, like a null. just a few places that i have looked: http://www.hellboundhackers.org/forum/viewthread.php?forum_id=7&thread_id=12869#150392 http://www.hellboundhackers.org/articles/345-blind-sql-injection.html P.S. I don't need quotes around Articles, do I?


ghost's Avatar

ghost

0 0

You are very close. Remember to try ORDER BY to see how many columns are in the table. Once you know that try getting them all on one page with UNION.


ghost's Avatar

ghost

0 0

I know the no. of columns, the table name and the use of n*** keyword but still I am not able to enter the right query.Really frustrated. Need help!!!


Arabian's Avatar

Arabian

Member
0 0

The answer was pretty much given away with UNION above. Remember to start simple, gather your info, and then move up in complication accordingly. None of the SQL challenges on this site will require you to do complicated SQL injections.

Keep it simple.


spyware's Avatar

spyware

Banned
0 0

Arabian wrote: Keep it simple.

Stupid.


Arabian's Avatar

Arabian

Member
0 0

spyware wrote: [quote]Arabian wrote: Keep it simple.

Stupid.[/quote]

Keep it stupid.