HackerFrogs AfterSchool - Web App Hacking Workshop 4 - TryHackMe - SQL Injection - Tutorial
A step-by-step guide for this workshop can be found here:
https://github.com/theshyhat/hackerfr...
This workshop teaches the concept of SQL injection vulnerabilities and some examples of the different types of SQL injection vulnerabilities, including the following:
In-band SQLi, blind SQLi, boolean-based SQLi, time-based SQLi, and out-of-band SQLi
TIMESTAMPS
00:00 Intro
00:14 Previous Workshop Review
00:42 TryHackMe
01:18 What is SQL Injection?
01:50 TryHackMe Room Setup
02:06 Task 1
02:31 Task 2
03:36 Task 3
04:07 Union Select Statements
05:04 Task 4
06:02 Task 5
12:19 Task 6
13:44 SQL Login Bypass String
15:02 Task 7
20:13 Shameless Self Promotion
20:48 Task 8
25:12 Task 9
26:35 Task 10
28:18 Summary
31:29 Outro
This HackerFrogs workshop makes use of the SQL Injection educational module hosted on the tryhackme.com website.
https://tryhackme.com/room/sqlinjecti...
This channel is not associated with the tryhackme.com website.
-----------------------
Extra Credit Exercises
-----------------------
Here are a couple of other URLs we can check out to learn more about SQL injection:
Rana Khalil's Web Security Academy SQLi Playlist:
• SQL Injection | Complete Guide
TryHackMe - SQL Injection Lab Room:
https://tryhackme.com/room/sqlilab
------------------
Extra Research
------------------
Portswigger Academy's section on SQL Injection:
https://portswigger.net/web-security/...
----------------------
Post-Course Materials
----------------------
This is the last workshop for this course, but we don't stop learning. Here are some web platforms we can use to continue our education. We'll need to register user accounts to access them, of course.
Portswigger Academy:
https://portswigger.net/web-security
TryHackMe has a lot of different modules that feature web app hacking. After logging into the site, navigate to the following link:
https://tryhackme.com/hacktivities?ta...
------------------
HackerFrogs Links
------------------
Livestream Channel:
twitch.tv/theshyhat
Twitter:
twitter.com/theshyhat
Reddit (Request Access to Join):
/ hackerfrogs
