Monthly Archive: May 2016

Webgoat attack blind SQL injection

This example using webgoat lab. You can download from: https://sourceforge.net/projects/owaspbwa/ Download tool  Jhijack from: http://yehg.net/lab/pr0js/files.php/jhijackv0.2beta.zip Blind Numberic SQL injection Response analysis If( true) return : Account number …