{"id":15719,"date":"2015-11-22T23:52:22","date_gmt":"2015-11-23T05:52:22","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=15719"},"modified":"2015-11-22T23:53:22","modified_gmt":"2015-11-23T05:53:22","slug":"the-history-of-sql-injection-the-hack-that-will-never-go-away","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=15719","title":{"rendered":"The History of SQL Injection, the Hack That Will Never Go Away"},"content":{"rendered":"<blockquote><p>\u201cWhen you go to a webpage, and you make a request, that parses part of the data in the request back to a server,\u201d Hunt said. \u201cFor example, you read a news article, and the news article, in the address bar it has, \u201cid=1\u201d, and that gives you news article number 1, and then you get another one with ID 2.\u201d<\/p><\/blockquote>\n<blockquote><p>But, \u201cwith a SQLi attack, an attacker changes that ID in the address bar to something that forces the database to do something it&#8217;s not meant to do,\u201d Hunt said, such as returning a piece of private data.<\/p><\/blockquote>\n<p>Source: <em><a href=\"http:\/\/motherboard.vice.com\/read\/the-history-of-sql-injection-the-hack-that-will-never-go-away\">The History of SQL Injection, the Hack That Will Never Go Away | Motherboard<\/a><\/em><\/p>\n<blockquote><p>Another <a href=\"http:\/\/sqlmap.org\/\">commonly used<\/a> piece of software is sqlmap. \u201cIt crawls the pages on the website, similar to how a search engine crawler might, looks for input forms on the website, and submits the forms with inputs that might cause a MySQL syntax error,\u201d Al-Bassam added.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>\u201cWhen you go to a webpage, and you make a request, that parses part of the data in the request back to a server,\u201d Hunt said. \u201cFor example, you read a news article, and the news article, in the address &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=15719\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[54],"tags":[102,1084,87,172],"class_list":["post-15719","post","type-post","status-publish","format-standard","hentry","category-programming","tag-hacking","tag-sql-injection","tag-tools","tag-web-crawlers"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=15719"}],"version-history":[{"count":1,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15719\/revisions"}],"predecessor-version":[{"id":15720,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/15719\/revisions\/15720"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=15719"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=15719"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=15719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}