Description
This plugin finds blind SQL injections using two techniques: time delays and true/false response comparison. Only one configurable parameters exists:
- eq_limit
Plugin type
Options
| Name | Type | Default Value | Description | Help |
| eq_limit | float | 0.9 | String equal ratio (0.0 to 1.0) | Two pages are considered equal if they match in more than eq_limit. |
Source
For more information about this plugin and the associated tests, there’s always the source code to understand exactly what’s under the hood:
Plugin source code
Unittest source code
Dependencies
This plugin has no dependencies.
