| # Ghidra script for re-populating (naively) stripped function names from | |
| # Go >1.2 binaries using the pclntab. Should work with both the initial | |
| # 1.2 format pclntab as well as the 1.16 format. | |
| # | |
| # Author: roland@golang.org | |
| from ghidra.program.model.symbol.SourceType import * | |
| start = None | |
| for section in getMemoryBlocks(): |
I exploited a SQLi vulnerability to enumerate the columns in a database by doing something like this:
/comment.php?id=738 order by 1;#
Column enumeration can be achieved in a manner indistinguishable from magic by using sqlmap.
It can also be achieved with Burp Suite's Intruder function.
