Courses
OffensiveIntermediate
SQL Injection Attacks
Learn to find and exploit SQL injection vulnerabilities.
6 modules
21 lessons
15 practical tasks
About This Course
Progress from basic injection detection to advanced blind and out-of-band techniques across multiple database platforms. Develop both manual testing skills and automation expertise while understanding comprehensive defense strategies.
What You'll Learn
- Master SQL fundamentals and injection vulnerability types
- Detect SQL injection through manual testing and error analysis
- Execute union-based and error-based data extraction
- Perform boolean-based and time-based blind injection
- Automate attacks with SQLMap and custom Python scripts
- Exploit MySQL, PostgreSQL, and MSSQL specific features
- Execute second-order and out-of-band injection attacks
- Implement parameterized queries and comprehensive defenses
Prerequisites
- Understanding of HTTP protocol
- Web Application Reconnaissance course
- Basic SQL knowledge
- Command-line proficiency