CF

SQL Injections Unlocked - SQLi Web Attacks

4h 59m 9s
English
Paid

SQL Injections Unlocked - SQLi Web Attacks is a 29-lesson 4 hours 59 minutes self-paced course by Udemy. Master Web Hacking: Dive deep into each vulnerability to become an expert.

Course facts

Lessons
29
Duration
4 hours 59 minutes
Level
All levels
Language
English
Updated
Instructor
Udemy
Price
Premium

Master Web Hacking: Dive deep into each vulnerability to become an expert. SQL injection ranks among the top 10 vulnerabilities globally, making it a great start for your journey into web security.

Understanding SQL Injection

  1. SQL Injection enables attackers to execute malicious SQL statements.

  2. Exploiting this vulnerability can lead to the addition, modification, or deletion of records in the target's database.

  3. FUN FACT: Approximately 8% of websites remain vulnerable to SQLi vulnerabilities!

Course Benefits

  • Beyond Automations: Learn the reasoning and logic behind attacks, not just automated solutions.

  • Identify and bypass security controls, even those undetectable by automated tools.

  • This is the last SQL Injection course you'll ever need for a lifetime.

  • Frequent Updates: Stay up-to-date with new content and bypassed restrictions.

Who teaches SQL Injections Unlocked - SQLi Web Attacks? Udemy

Udemy thumbnail

Udemy is the largest open marketplace for online courses on the internet. Founded in 2010 by Eren Bali, Oktay Caglar, and Gagan Biyani and headquartered in San Francisco, the company went public on the Nasdaq in 2021 under the ticker UDMY. The platform hosts well over two hundred thousand courses across software development, IT and cloud, data science, design, business, marketing, and creative skills, taught by tens of thousands of independent instructors. Roughly seventy million learners use it worldwide, and the corporate arm — Udemy Business — supplies a curated subset of that catalog to enterprise customers.

Because Udemy is a marketplace rather than a single editorial publisher, the catalog is uneven by design. The strongest material lives in the long-form, project-based courses authored by working engineers — full-stack JavaScript, React, Node.js, Python data science, AWS, Docker and Kubernetes, mobile development with Flutter and React Native, and cloud certification preparation. The CourseFlix listing under this source is the slice of that catalog that has been mirrored here for offline-friendly viewing, organized by topic and updated as new releases land. Pricing on Udemy itself swings dramatically with the site's near-permanent sales, which is why the platform is best treated as a deep reference catalog: pick instructors with strong reviews and a track record of updating their material rather than buying on the headline price alone.

What lessons are included in SQL Injections Unlocked - SQLi Web Attacks?

This is a demo lesson (10:00 remaining)

You can watch up to 10 minutes for free. Subscribe to unlock all 29 lessons in this course and access 10,000+ hours of premium content across all courses.

View Pricing
0:00
/
#1: Introduction to the Course
All Course Lessons (29)
#Lesson TitleDurationAccess
1
Introduction to the Course Demo
02:31
2
What are SQL Injections
12:34
3
Setting up our Practice Lab
03:03
4
SQL Language Basics
09:06
5
Types of SQL Injections
21:10
6
Classic Injection Bypass
12:57
7
Union Based SQL Injection
13:08
8
Error Based SQL Injection
14:19
9
Boolean Based SQL Injection
17:03
10
Time Based SQL Injection
10:57
11
Semi-Automated SQL Injection Tools
15:59
12
Fully-Automated SQL Injection Tools
16:28
13
Defending against SQL Injections
09:04
14
How to Install Labs in a Linux OS? (Silent Tutorial)
03:59
15
LAB 1 - Bypass Usual Login Screen with No Security Controls
17:33
16
LAB 2 - Bypass Login Screen when Brackets are used in its SQL Statement
05:55
17
LAB 3- Bypass Client Side Restrictions such as Max Length Limitations
07:57
18
LAB 4 - Bypass login screen when apostrophes are doubled
05:53
19
LAB 5 - Bypass application when Apostrophe Deletion is applied
06:55
20
LAB 6 - Bypass App when No. of Rows Returned is checked
08:18
21
LAB 7 - Bypass App when Returning Rows Number is checked (SQL Side)
10:33
22
LAB 8 - What to do when Whitespaces are disabled on Server Side
03:56
23
LAB 9 - How to Bypass Login Screen if the Field is numeric
05:26
24
LAB 10 - Bypass Log-Screen with regexp based Number testing
02:53
25
LAB 11 - Bypass Log-Screen with other regexp based Number tests
03:05
26
LAB 12 - When Multiline is Used in SQL Syntax of Target
09:14
27
Metadata Extraction Techniques with SQL Injection
23:44
28
A Great Way to Speed up Hit and Trial Attempts
11:25
29
Using ASCII characters in SQLI Payload
14:04
Unlock unlimited learning

Get instant access to all 28 lessons in this course, plus thousands of other premium courses. One subscription, unlimited knowledge.

Learn more about subscription

What courses are similar to SQL Injections Unlocked - SQLi Web Attacks?

Frequently asked questions

What are the prerequisites for this course?
The course does not specify particular prerequisites, but a basic understanding of SQL and web technologies would be beneficial. The course covers SQL language basics and different types of SQL injections, so familiarity with databases and web applications will help you follow along more easily.
What will I be able to build or achieve after completing the course?
Upon completing this course, you will be able to identify and exploit SQL injection vulnerabilities in web applications. You will learn to bypass various security controls and perform different types of SQL injections, such as Union-based, Error-based, Boolean-based, and Time-based injections. Additionally, you will gain skills in using both semi-automated and fully-automated SQL injection tools.
Who is the target audience for this course?
The course is designed for individuals interested in web security and ethical hacking. It is suitable for security professionals, developers, and anyone looking to understand SQL injection vulnerabilities deeply. The course content helps in mastering web hacking by focusing on reasoning and logic behind attacks rather than just automated solutions.
How does this course compare to other SQL injection courses?
This course distinguishes itself by offering comprehensive coverage of SQL injections through 29 detailed lessons. It includes practical lab exercises that demonstrate how to bypass various security measures. Unlike many courses, this one emphasizes understanding the logic behind attacks, which is crucial for identifying vulnerabilities that automated tools might miss.
What specific tools or platforms are covered in the course?
The course discusses both semi-automated and fully-automated SQL injection tools, providing insights into their usage. It also includes instructions on setting up a practice lab, specifically tailored for exploiting SQL injection vulnerabilities. The course does not focus on any specific platform beyond these SQL injection tools.
What topics are not covered in this course?
While the course provides a thorough exploration of SQL injection vulnerabilities, it does not cover other types of web vulnerabilities, such as cross-site scripting (XSS) or cross-site request forgery (CSRF). It also does not delve into the broader aspects of web application security beyond SQL injections.
What is the expected time commitment for completing this course?
The course's total runtime is not specified, but it comprises 29 lessons. Given the comprehensive nature of the material and the inclusion of practical labs, you should prepare to invest a significant amount of time to fully engage with the content, including setting up labs and practicing the techniques taught.