Comment by whstl
2 months ago
WAFs help with this, but at the HTTP level. By putting “information_schema”, “sys.tables” in the filters.
Not the real solution, IMO, but WAFs are useful for more than SQLi, and is the kind of tech you can ask money for.
No comments yet
Contribute on Hacker News ↗