Inferential sql injection

Inferential SQL Injection, also known as Blind SQL Injection, is a sophisticated form of SQL Injection where no data is transferred between the web application and the attacker.

Instead, the attacker infers information about the database by observing changes in the application's behavior in response to carefully crafted SQL queries. This method is slower compared to in-band.

Types of Inferential SQL Injection -

Blind-boolean-based
Blind-time-based

Blind-boolean-based -

The attacker sends SQL queries that prompt the application to return different results based on whether the condition in the query is true or false. By analyzing these responses, the attacker can deduce information about the database.

Blind-time-based -

The attacker sends SQL queries that cause the database to pause for a specific duration if the condition is true. By measuring the delay in the response, the attacker can determine whether their query was successful.

Example

Prev Next

CAPA: The Basics01/02/25 ctf → thm → capa-the-basics

SQLMap: The Basics31/01/25 ctf → thm → sqlmap-the-basics

SQL Fundamentals31/01/25 ctf → thm → sql-fundamentals

Powershell30/01/25 programming → powershell