How to do it...

Log into DVWA and go to SQL Injection (Blind):

  1. The form looks exactly the same as the SQLi form we saw in the previous recipes. Type 1 in the textbox and click Submit to see the information about the user with the ID 1.
  1. Now, let's perform our first test with 1' and see whether we get an error as in previous recipes:

We get no error message, but no result either. Something interesting could be happening here.

  1. We perform our second test with 1'':

The result for ID 1 is shown. This means that the previous test (1') was an ...

Get Kali Linux Web Penetration Testing Cookbook - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.