SQL injection
22 views
Skip to first unread message
Divya Shivakumar
Jun 30, 2020, 5:12:19 PM6/30/20
to sqlalchemy
Hey how do i generate new sql injections from sqlalchemy . Any links or information is much appreciated
Simon King
Jul 1, 2020, 5:34:10 AM7/1/20
to sqlal...@googlegroups.com
Hi,
What do you mean by "SQL injection"?
Thanks,
Simon
On Tue, Jun 30, 2020 at 10:12 PM Divya Shivakumar
<divyashi...@gmail.com> wrote:
>
> Hey how do i generate new sql injections from sqlalchemy . Any links or information is much appreciated
>
> --
> SQLAlchemy -
> The Python SQL Toolkit and Object Relational Mapper
>
> http://www.sqlalchemy.org/
>
> To post example code, please provide an MCVE: Minimal, Complete, and Verifiable Example. See http://stackoverflow.com/help/mcve for a full description.
> ---
> You received this message because you are subscribed to the Google Groups "sqlalchemy" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to sqlalchemy+...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/sqlalchemy/fa4bac85-0fc2-42b5-b47b-11a35bfd7aa1o%40googlegroups.com.
What do you mean by "SQL injection"?
Thanks,
Simon
On Tue, Jun 30, 2020 at 10:12 PM Divya Shivakumar
<divyashi...@gmail.com> wrote:
>
> Hey how do i generate new sql injections from sqlalchemy . Any links or information is much appreciated
>
> SQLAlchemy -
> The Python SQL Toolkit and Object Relational Mapper
>
> http://www.sqlalchemy.org/
>
> To post example code, please provide an MCVE: Minimal, Complete, and Verifiable Example. See http://stackoverflow.com/help/mcve for a full description.
> ---
> You received this message because you are subscribed to the Google Groups "sqlalchemy" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to sqlalchemy+...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/sqlalchemy/fa4bac85-0fc2-42b5-b47b-11a35bfd7aa1o%40googlegroups.com.
Message has been deleted
Message has been deleted
divyashi...@gmail.com
Jul 1, 2020, 11:04:47 AM7/1/20
to sqlalchemy
Hi Simon , I am m trying to generate sql injections(in band SQLi and outband sqli) for data analysis using sql code genrator Is there any sql query generator library in python that will help me in generating sql injections? or can I use SQLAlchemy for that purpose
I have tried to use the SQL penetration testing tools , but I am not happy with the results . Is there any way that I can generate SQL injections besides manual testing and pen testing .
Any information is appreciated
divyashi...@gmail.com
Jul 1, 2020, 11:21:02 AM7/1/20
to sqlalchemy
SQL injections in the sense , malacious sql statements. or paylaod .
Simon King
Jul 2, 2020, 5:54:13 AM7/2/20
to sqlal...@googlegroups.com
I don't understand. SQLAlchemy will not help you "generate SQL
injections". It's just a library for talking to databases.
Applications that *use* SQLAlchemy might be vulnerable to SQL
injections if they are careless, but if you use it in the recommended
way, SQL statements are parameterized and the parameters are sent
separately, so attackers can't change the syntactic form of the
statement.
Simon
> To view this discussion on the web visit https://groups.google.com/d/msgid/sqlalchemy/1dab490f-564b-4fc1-8a56-8becd3f13fd8n%40googlegroups.com.
injections". It's just a library for talking to databases.
Applications that *use* SQLAlchemy might be vulnerable to SQL
injections if they are careless, but if you use it in the recommended
way, SQL statements are parameterized and the parameters are sent
separately, so attackers can't change the syntactic form of the
statement.
Simon
Reply all
Reply to author
Forward
0 new messages