This site allows you to test your understanding of blind SQL injections on an SQLite3 database.
You can find the code for the site at /index.txt.
Use the form below to attack the database and extract the flag from the colum flag of the table flags.
As we expect you to show your understanding you should NOT use existing automated tools like sqlmap.