From 1e5acf1e753041951fa16fc2f52e501fe0fad004 Mon Sep 17 00:00:00 2001
From: xanhacks <xanhacks@protonmail.com>
Date: Sun, 19 Feb 2023 16:53:47 +0100
Subject: [PATCH] add SQLi in WS

---
 docs/web/sql-injection.md | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/docs/web/sql-injection.md b/docs/web/sql-injection.md
index b2e7727..08500d4 100644
--- a/docs/web/sql-injection.md
+++ b/docs/web/sql-injection.md
@@ -70,4 +70,14 @@ Use `--vertical` to enable the vertical format or ending query with `\G`, exampl
 	Info: {"Population": 1608144}
 ```
 
-> Source [dev.mysql.com](https://dev.mysql.com/doc/mysql-shell/8.0/en/mysql-shell-output-vertical.html).
\ No newline at end of file
+> Source [dev.mysql.com](https://dev.mysql.com/doc/mysql-shell/8.0/en/mysql-shell-output-vertical.html).
+
+### SQL Injection in Websockets
+
+Example of command using SQLmap :
+
+```
+$ sqlmap -u "ws://soc-player.soccer.htb:9091" --data='{"id":"57636*"}'
+```
+
+Another way would be to use an HTTP server as proxy: https://rayhan0x01.github.io/ctf/2021/04/02/blind-sqli-over-websocket-automation.html