sqlmap couldn't detect it because we tricked it

Posted on Sun 06 December 2015 in tools • Tagged with sqlmap, sql injection, spanking the monkey, talk, con, seckc, bsides, derbycon, grrcon

A short study on how sqlmap was not detecting an instance of SQL Injection we had coded into a demo app

Continue reading