This tweet highlights that SQL injection (SQLi) vulnerabilities are still relevant and evolving with new methods of exploitation. It mentions advanced exploitation techniques, including bypassing Web Application Firewalls (WAFs) and chaining SQL injection attacks to achieve full system compromise. The message targets experienced red teamers who are beyond basic SQLi knowledge, encouraging them to learn sophisticated methods for offensive security testing. Although the tweet does not provide specific WAF bypass payloads or vendor details, it underscores the importance of mastering advanced SQLi techniques to overcome modern security defenses.
Check out the original tweet here: https://twitter.com/onlysecurityuk/status/2046159129631162432