Re-Playing with (Blind) SQL Injection

<p>SQL Injections is getting old. The 25th of December 2008 it was ten years since the first word about it, but... ten years after it still works. This session is about how to use SQL Injection techniques in some special scenarios. SQL Injeciton in mathematical functions, SQL Injectios to download quickly the whole database, Time-Based blind sql injection without delay functions and how to use Blind SQL Injections to download files from server. This session have a lot of demos and several tools. It's cool, is'n't?</p>

Presented by

Links