During a web application test, the tester uses sqlmap and identifies a time-based blind SQL injection. Which technique is sqlmap using to extract data?
Time-based uses SLEEP or WAITFOR DELAY to extract data.
Why this answer
Time-based blind SQL injection uses conditional delays to infer the truth of queries based on response time.