Top 10 web hacking techniques of 2018: The Final Verdict

Not to my knowledge. How else are you gonna detect it automatically. Obviously, it’s a timing attack. Or rather diff the output between /id=1′ and id=1. There’s a possibility there’s a bSQL if we’re seeing different output unless it’s “Page not found” or such. Shit doesn’t translate well into automatic detection. Unless we compare the 404. Shit often doesn’t even do 404, rather 302.

Acunetix generates lots of false positives. Haven’t had much experience with automated scanners that actually claim bSQLi detection.

Leave a Reply