Loading...

Back to Details

injection

Compare original and translation side by side

🇺🇸

Original

English

🇨🇳

Translation

Chinese

Injection

注入

Test for injection vulnerabilities across all input vectors. Covers SQL, NoSQL, Command, SSTI, XXE, and LDAP injection.

针对所有输入向量测试注入漏洞。涵盖SQL、NoSQL、命令、SSTI、XXE和LDAP注入。

Techniques

技术手段

Type	Key Vectors
SQL Injection	In-band (union, error), Blind (boolean, time), Out-of-band
NoSQL Injection	Operator injection, JavaScript injection, aggregation pipeline
Command Injection	OS command separators, blind techniques, out-of-band
SSTI	Template engine detection, sandbox escape, RCE chains
XXE	Entity expansion, SSRF via XXE, blind XXE, parameter entities
LDAP/XPath	Filter manipulation, authentication bypass

类型	关键向量
SQL注入	带内（联合查询、报错）、盲注（布尔型、时间型）、带外
NoSQL注入	操作符注入、JavaScript注入、聚合管道注入
命令注入	操作系统命令分隔符、盲注技术、带外
SSTI	模板引擎检测、沙箱逃逸、RCE链
XXE	实体扩展、通过XXE实现SSRF、盲注XXE、参数实体
LDAP/XPath	过滤器篡改、身份认证绕过

Workflow

工作流程

Identify injection points (parameters, headers, cookies, JSON fields)
Detect injection type with minimal probes
Exploit with context-appropriate payloads
Escalate (data extraction, RCE, file read)
Capture evidence and write PoC

识别注入点（参数、请求头、Cookie、JSON字段）
通过最小化探测检测注入类型
使用符合上下文的载荷进行利用
提权（数据提取、RCE、文件读取）
捕获证据并编写PoC

Reference

参考资料

```
reference/sql-injection*.md
```
- SQL injection techniques
```
reference/nosql-injection*.md
```
- NoSQL injection techniques
```
reference/os-command-injection*.md
```
- OS command injection
```
reference/ssti*.md
```
- Server-side template injection
```
reference/xxe*.md
```
- XML external entity injection

```
reference/sql-injection*.md
```
- SQL注入技术文档
```
reference/nosql-injection*.md
```
- NoSQL注入技术文档
```
reference/os-command-injection*.md
```
- 操作系统命令注入文档
```
reference/ssti*.md
```
- 服务器端模板注入文档
```
reference/xxe*.md
```
- XML外部实体注入文档