SQL Injections (SQLi) Lab

Infosec Learning
Virtual Lab

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College. An SQL injection (SQLi) is the process of injecting unauthorized characters into SQL query statement in order to alter a response. In this lab, we will demonstrate three phases ...

Time
1 hour 30 minutes
Difficulty
Intermediate
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Sign up with Google
Sign up with Apple
Sign up with Microsoft
View all SSO options

Already have an account? Sign In »

Overview

The development of this document is funded by the Boston Area Advanced Technological Education Connections (BATEC) Grant No. NSF-0703097 thru Bunker Hill Community College.

An SQL injection (SQLi) is the process of injecting unauthorized characters into SQL query statement in order to alter a response. In this lab, we will demonstrate three phases of security (exploitation, analysis, and mitigation) in order to get a better understanding of why SQLi occur and how they can potentially be stopped.

Learning Partner
Infosec Learning

Infosec Learning provides businesses, colleges, governments, and K-12 school districts a feature rich information technology training and skill assessment service via an advanced, cloud based, virtual machine powered platform, capable of significant customization with unlimited scale and growth potential.

Similar Content
Identifying Web Attacks Through Logs
Identifying Web Attacks Through Logs

Log analysis involves reviewing and evaluating system activities to help mitigate risks. If you’re training ...

Cybrary
Course
Beginner
3 CEU/CPE Hours Available
Certificate of Completion Offered
Introduction To OWASP Top Ten: A1 - Injection - Scored
Introduction To OWASP Top Ten: A1 - Injection - Scored

This module for the Introduction to OWASP Top Ten Module covers A1: Injection.

CYBRScore
Virtual Lab
Intermediate
SQL Injection
SQL Injection

SQL injections are one of the most common types of attacks an adversary will use ...

Cybrary
Course
Intermediate
2 CEU/CPE Hours Available
Certificate of Completion Offered