This video is a walkthrough for keen pentesters on how to exploit an SQL injection in a safe and legal environment. This video uses a virtual machine from vulnhub, and the website tryhackme. It would be a good idea to educate yourself on the basics of SQLi and using burp suite before watching this video, but you can also just watch along.
What you need
- Kali Linux & Oracle
- Burp Suite Proxy
- To signup for a free tryhackme account
- SQLmap downloaded on your kali linux
00:00 - SQLi for Pentesters Part 1 - Manual exploitation of a basic SQL injection
07:22 - SQLi for Pentesters Part 2 - Automated exploitation of a time-based blind with SQLmap
I hope you learn something today!
#pentesting #kalilinux #ethicalhacking #sqlinjection #sql #burpsuite #webapplicationsecurity #cybersecurity
