We covered a scenario of blind SQL Injection where the web application accepts user input without sanitization or filtering. We used a blind SQL query to guess the password by guessing the characters and their order. We finally wrapped this up with a simple python script that does the job.. This was part of OverTheWire War Games Natas Level 15

Get OSCP Certificate Notes

Natas Level 16 Password:


Video Walkthrough

About the Author

Cybersecurity Trainer MS in Cybersecurity Expertise in Healthcare and Finance Industries Penetration tester and compliance auditor

View Articles