Рет қаралды 68,865
In this video, we cover Lab #1 in the SQL injection track of the Web Security Academy. This lab contains an SQL injection vulnerability in the product category filter. To solve the lab, we perform a SQL injection attack that causes the application to display details of all products in any category, both released and unreleased.
▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬
Buy my course: academy.ranakhalil.com/p/web-...
▬ Contents of this video ▬▬▬▬▬▬▬▬▬▬
00:00 - Introduction
01:22 - Lab #1 SQL injection vulnerability in WHERE clause allowing retrieval of hidden data
02:10 - Understand the exercise and make notes about what is required to solve it
03:32 - Exploit the lab manually
11:57 - Script the exploit
28:47 - Summary
29:07 - Thank You
▬ Links ▬▬▬▬▬▬▬▬▬▬
SQL injection Theory video (previous video): • SQL Injection | Comple...
Python script: github.com/rkhal101/Web-Secur...
Notes.txt document: github.com/rkhal101/Web-Secur...
Web Security Academy KZbin Video Series Release Schedule: docs.google.com/spreadsheets/...
Web Security Academy: portswigger.net/web-security
Rana's Twitter account: / rana__khalil