原理
- 关键字的绕过比如or,大写绕过
- base16base32base64的编码格式
- union select的效果
- 伪造sql查询结果来绕过密码
参考文章:https://blog.51cto.com/u_15127558/4074236?u_atoken=e6f6427a-697d-4296-9dde-f56b0690cee3&u_asession=019m2VmbZj9Yj9fRSp9o17PhMBVBVKtLSD49pyEU4polysSHcQ48AId4nnFP-3b8msfsT7VDSobTM3G-s3DTsc8tsq8AL43dpOnCClYrgFm6o&u_asig=05FUa9PccxevrEVu1QzwZNJ5We1aWG3Lt8GQfTO4NWdls3FYz1CPlakEF979gHC8Ww3FdME7TMRXjxbsAoC-emt66TAGTE5PXDl2JDiwgDhHcaJnzCOubOYd2I9xKnakTfn2HhzPQs76AbZqk091QfSBSjjVpFVXL6bspA7o-SHSqqv0MEL9emW7oMQjqu_OhcksmHjM0JOodanL5-M1Qs1cCUMxI7pc5IprzqM-NOs5PqCBtZWZUGkmdVk33swlcH_yCCkka-TTuYhqay5qztTPHetyEl5cyb7fJeiCDQK3PY94r_LXIIil3Y3aVPRGAe&u_aref=B3PY0y9PrMw1mYdmLECty%2BeDiuo%3D
https://blog.csdn.net/m0_46246804/article/details/109128549