https://hexpysya.github.io/tags/sql-injection/Recent content in SQL Injection on bubka hacks stuffHugo -- gohugo.ioen-usWed, 08 Apr 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/elk-perfect-survey/Wed, 08 Apr 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/elk-perfect-survey/An attacker conducted reconnaissance with Nmap and WPScan against a WordPress site, exploited CVE-2021-24762 in the Perfect Survey plugin via SQLi to extract wp_users password hashes, then pivoted into Active Directory by Kerberoasting alonso.x, creating a rogue computer account, abusing RBCD, and escalating to domain administrator via AD CS certificate abuse.https://hexpysya.github.io/blue_team/ld-possible-sql-injection-payload-detected/Sun, 22 Mar 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/ld-possible-sql-injection-payload-detected/An external IP hosted on DigitalOcean performed a manual SQL injection reconnaissance against an internal web server, cycling through classic SQLi payloads. All requests returned HTTP 500, confirming the attack did not succeed.https://hexpysya.github.io/blue_team/wazuh-injection/Mon, 09 Mar 2026 00:00:00 +0000https://hexpysya.github.io/blue_team/wazuh-injection/Detected a SQL Injection attack, observed 85 alerts across 6 rule IDs, and configured automated IP blocking via active response.