How Hackers Find SQL Injections in Minutes with Sqlmap
What you'll learn
- Learn about the most powerful tool for automated SQL injection detection and exploitation
- Dump database tables entries with one simple command
- Install a backdoor and become the master of a vulnerable machine
- Bypass web application firewalls (WAFs)
- Discover how to go from SQL injection to remote code execution
- Maximize the power of SQL injection detection with sqlmap
- ...and more
Requirements
- Basic hacking skills
Description
Automated SQL injection detection and exploitation has never been easier! This course will teach you how to find SQL injections in minutes with sqlmap. First, you will learn about the basics of this tool. Then, I will show you how to dump database table entries with sqlmap. After that, you will explore how to install a backdoor with sqlmap and how to go from SQL injection to remote code execution. Then, you will see how to maximize the power of SQL injection detection with this tool. Finally, you will learn how to use tamper scripts in this tool to bypass web application firewalls (WAF). By the end of the course, you will know how to automatically detect and exploit SQL injection vulnerabilities with sqlmap.
Who this course is for:
- Penetration testers, ethical hackers, bug hunters, security engineers / consultants
Instructor
Dawid Czagan is listed among Top 10 Hackers (HackerOne). He has found security vulnerabilities in Google, Yahoo, Mozilla, Microsoft, Twitter and other companies. Due to the severity of many bugs, he received numerous awards for his findings.
Dawid Czagan shares his security bug hunting experience in his hands-on trainings “Hacking Web Applications – Case Studies of Award-Winning Bugs in Google, Yahoo, Mozilla and More” and “Bug Hunting Millionaire: Mastering Web Attacks with Full-Stack Exploitation”. He delivered security training courses at key industry conferences such as Hack In The Box (Amsterdam), CanSecWest (Vancouver), 44CON (London), Hack In Paris (Paris), DeepSec (Vienna), HITB GSEC (Singapore), BruCON (Ghent) and for many corporate clients. His students include security specialists from Oracle, Adobe, ESET, ING, Red Hat, Trend Micro, Philips and government sector.
Dawid Czagan is a founder and CEO at Silesia Security Lab – a company which delivers specialized security testing and training services. To find out about the latest in Dawid Czagan’s work, you are invited to follow him on Twitter.