Hello everyone, in this post we are going to use DNS for data ex-filtration to fasten (time based) blind sql injection attacks or make exploitation possible even on random delayed networks/applications. So let us start with basics of DNS. DNS DNS is the Domain Name System, which resolves given human readable and easy to understand addresses … Continue reading Data Exfiltration with DNS in SQLi attacks