injection
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseInjection
注入
Test for injection vulnerabilities across all input vectors. Covers SQL, NoSQL, Command, SSTI, XXE, and LDAP injection.
针对所有输入向量测试注入漏洞。涵盖SQL、NoSQL、命令、SSTI、XXE和LDAP注入。
Techniques
技术手段
| Type | Key Vectors |
|---|---|
| SQL Injection | In-band (union, error), Blind (boolean, time), Out-of-band |
| NoSQL Injection | Operator injection, JavaScript injection, aggregation pipeline |
| Command Injection | OS command separators, blind techniques, out-of-band |
| SSTI | Template engine detection, sandbox escape, RCE chains |
| XXE | Entity expansion, SSRF via XXE, blind XXE, parameter entities |
| LDAP/XPath | Filter manipulation, authentication bypass |
| 类型 | 关键向量 |
|---|---|
| SQL注入 | 带内(联合查询、报错)、盲注(布尔型、时间型)、带外 |
| NoSQL注入 | 操作符注入、JavaScript注入、聚合管道注入 |
| 命令注入 | 操作系统命令分隔符、盲注技术、带外 |
| SSTI | 模板引擎检测、沙箱逃逸、RCE链 |
| XXE | 实体扩展、通过XXE实现SSRF、盲注XXE、参数实体 |
| LDAP/XPath | 过滤器篡改、身份认证绕过 |
Workflow
工作流程
- Identify injection points (parameters, headers, cookies, JSON fields)
- Detect injection type with minimal probes
- Exploit with context-appropriate payloads
- Escalate (data extraction, RCE, file read)
- Capture evidence and write PoC
- 识别注入点(参数、请求头、Cookie、JSON字段)
- 通过最小化探测检测注入类型
- 使用符合上下文的载荷进行利用
- 提权(数据提取、RCE、文件读取)
- 捕获证据并编写PoC
Reference
参考资料
- - SQL injection techniques
reference/sql-injection*.md - - NoSQL injection techniques
reference/nosql-injection*.md - - OS command injection
reference/os-command-injection*.md - - Server-side template injection
reference/ssti*.md - - XML external entity injection
reference/xxe*.md
- - SQL注入技术文档
reference/sql-injection*.md - - NoSQL注入技术文档
reference/nosql-injection*.md - - 操作系统命令注入文档
reference/os-command-injection*.md - - 服务器端模板注入文档
reference/ssti*.md - - XML外部实体注入文档
reference/xxe*.md