SELECT * FROM users WHERE username = 'admin'' AND password = ''=''' Still messy. Actually, the correct classic payload is:

But that leaves an unclosed quote. The real working solution in Security Shepherd (version 3+) is:

Resulting query:

admin' Password: ' OR '1'='1'

admin'||'1'='1 Password: anything

admin' Password: '1'='1