https://sqlmap.org
https://hackerone.com/reports/435066
https://medium.com/@ismailtasdelen/sql-injection-payload-list-b97656cfd66b
https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/SQL%20Injection
http://www.securityidiots.com/Web-Pentest/SQL-Injection/time-based-blind-injection.html
https://www.sqlinjection.net/time-based/
https://book.hacktricks.xyz/pentesting-web/sql-injection