sqli-labs闯关笔记-mysql基础知识

 参考B站视频https://www.bilibili.com/video/BV1e441127Rd?p=3

1.0 基础语句

1.1 基础

show databases;

use security;

show tables;

select * from users;

1.2 

1.2.1 查库

select schema_name from information_schema.schemata;

1.2.2 查表

select table_name from information_schema.tables where table_schema='security';

1.2.3 查列

 select column_name from information_schema.columns where table_name='users';

1.2.4 查字段

select id,username,password from security.users;

2.0 示例

2.1 基础

查看mysql数据库所有数据库

mysql> show databases;
+--------------------+
| Database |
+--------------------+
| information_schema |
| challenges |
| mysql |
| performance_schema |
| security |
| sys |
+--------------------+
6 rows in set (0.00 sec)

使用security数据库

mysql> use security;
Database changed

查看security数据库中的所有表
mysql> show tables;
+--------------------+
| Tables_in_security |
+--------------------+
| emails |
| referers |
| uagents |
| users |
+--------------------+
4 rows in set (0.00 sec)

 查看users所有内容

mysql> select * from users;
+----+----------+------------+
| id | username | password |
+----+----------+------------+
| 1 | Dumb | Dumb |
| 2 | Angelina | I-kill-you |
| 3 | Dummy | p@ssword |
| 4 | secure | crappy |
| 5 | stupid | stupidity |
| 6 | superman | genious |
| 7 | batman | mob!le |
| 8 | admin | admin |
| 9 | admin1 | admin1 |
| 10 | admin2 | admin2 |
| 11 | admin3 | admin3 |
| 12 | dhakkan | dumbo |
| 14 | admin4 | admin4 |
+----+----------+------------+
13 rows in set (0.00 sec)

2.2 基础用法

2.2.1查库

mysql> select schema_name from information_schema.schemata;
+--------------------+
| schema_name |
+--------------------+
| information_schema |
| challenges |
| mysql |
| performance_schema |
| security |
| sys |
+--------------------+
6 rows in set (0.00 sec)

2.2.2查表

mysql> select table_name from information_schema.tables where table_schema='security';
+------------+
| table_name |
+------------+
| emails |
| referers |
| uagents |
| users |
+------------+
4 rows in set (0.00 sec)

2.2.3查列

mysql> select column_name from information_schema.columns where table_name='users';
+---------------------+
| column_name |
+---------------------+
| USER |
| CURRENT_CONNECTIONS |
| TOTAL_CONNECTIONS |
| id |
| username |
| password |
+---------------------+
6 rows in set (0.00 sec)

mysql>

2.2.4查字段

mysql> select id,username,password from security.users;
+----+----------+------------+
| id | username | password |
+----+----------+------------+
| 1 | Dumb | Dumb |
| 2 | Angelina | I-kill-you |
| 3 | Dummy | p@ssword |
| 4 | secure | crappy |
| 5 | stupid | stupidity |
| 6 | superman | genious |
| 7 | batman | mob!le |
| 8 | admin | admin |
| 9 | admin1 | admin1 |
| 10 | admin2 | admin2 |
| 11 | admin3 | admin3 |
| 12 | dhakkan | dumbo |
| 14 | admin4 | admin4 |
+----+----------+------------+
13 rows in set (0.00 sec)

参考:

https://www.bilibili.com/video/BV1e441127Rd?p=3

https://zerokeeper.com/web-security/sqlilibs-learning-notes-1-10-off.html

https://blog.csdn.net/m0_55563900/article/details/115373515

https://www.cnblogs.com/-qing-/p/11610385.html

https://cloud.tencent.com/developer/article/1480556

漏洞环境搭建

相关

标签