Portswigger Academy SQL injection Labs

Introduction

What?

SQL injection has been at the top of the OWASP vulnerability listings for many years, the reason being that, if identified and exploited to the full extent, they produce catastrophic outcomes.

Why?

SQL injection (SQLi) is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. It generally allows an attacker to view data that they are not normally able to retrieve.

How?

• SQL injection techniques

• SQL injection vulnerability in WHERE clause allowing retrieval of hidden data

• SQL injection vulnerability allowing login bypass

• SQL injection UNION attack, determining the number of columns returned by the query

• SQL injection UNION attack, finding a column containing text

• SQL injection UNION attack, retrieving data from other tables

• SQL injection UNION attack, retrieving multiple values in a single column

• SQL injection attack, querying the database type and version on Oracle

• SQL injection attack, querying the database type and version on MySQL and Microsoft

• SQL injection attack, listing the database contents on non-Oracle databases

• SQL injection attack, listing the database contents on Oracle

• Blind SQL injection with conditional responses

• Blind SQL injection with conditional errors

• Blind SQL injection with time delays

• Blind SQL injection with time delays and information retrieval

• Blind SQL injection with out-of-band interaction

• Blind SQL injection with out-of-band data exfiltration

• SQL injection with filter bypass via XML encoding