SQL Injection

8 h 15 min

SQL injection is likely the cause of the majority of serious data breaches, mainly because vulnerability is very likely in a large application if the technology choices are poor, and the consequence is usually the leakage of the entire database to the attacker.

Recommended before this course:

Fundamentals

Intro

0x0 WHAT ARE SQL INJECTIONS?

Easy

Injection Techniques

0x0 (MYSQL) CHANGING WHERE CLAUSES TO BYPASS AUTHENTICATION (SPECIFIC USER)

Easy

0x1 (MYSQL) MODIFYING WHERE CLAUSES TO BYPASS AUTHORIZATION

Easy

0x2 (MYSQL) USING THE UNION TECHNIQUE TO STEAL DATA

Easy

0x3 (MYSQL) DETERMINING THE STRUCTURE OF THE SCHEMA

Easy

0x4 (MYSQL) INJECTING INSERT STATEMENTS

Easy

0x5 (MYSQL) INJECTING UPDATE STATEMENTS

Easy

0x6 (MYSQL) UNION AND BREAKING PASSWORD HASHES

Medium

0x7 (MYSQL) ORDER BY AND ERROR-BASED TECHNIQUE

Medium

0x8 (MYSQL) ADDING ORDER BY CLAUSES TO (ASC/DESC)

Medium

0x9 (MYSQL) BYPASSING FILTERS

Hard

0xA (MYSQL) TRUTH-BASED BLIND SQL INJECTION TECHNIQUE

Hard

0xB (MYSQL) TIME-BASED BLIND SQL INJECTION TECHNIQUE

Hard

Defense

0x0 AVOIDING SQL INJECTIONS

Easy

Ready to become an ethical hacker?
Start today.

As a member of Hakatemia you get unlimited access to Hakatemia modules, exercises and tools, and you get access to the Hakatemia Discord channel where you can ask for help from both instructors and other Hakatemia members.

SQL Injection

Ready to become an ethical hacker?Start today.

Ready to become an ethical hacker?
Start today.