← LibraryTechnique entry
W-SQLI-OOBCollection
SQL Injection — Out-of-Band
DNS / HTTP exfil via xp_dirtree, LOAD_FILE(\\\\attacker), UTL_HTTP — useful when responses are filtered.
§ Where this technique fits
W-SQLI-OOB is catalogued under the Collection tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.