Specialized Testing: SQL Injection

Focused View

Christian Wenz

1:13:28

77 View

1. Course Overview

1. Course Overview.mp4

01:40

2. SQL Injection Fundamentals

1. Course Overview.mp4

01:43

2. History of SQL Injection.mp4

02:32

3. Anatomy of SQL Injection.mp4

02:57

4. SQL Special Characters.mp4

01:56

5. SQL Injection Countermeasures.mp4

02:18

03. Testing for SQL Injection

01. Introduction.mp4

02:06

02. Types of SQL Injection.mp4

02:59

03. SQL Injection Detection Workflow.mp4

04:26

04. Common In-band Attacks.mp4

02:03

05. Demo - Signing in with Arbitrary Accounts.mp4

07:54

06. Demo - UNION Attacks.mp4

05:56

07. Demo - Retrieving Additional Data.mp4

04:11

08. Demo - Retrieving Authentication Information.mp4

05:59

09. Demo - Blind SQL Injection.mp4

04:58

10. Demo - Out-of-band SQL Injection.mp4

04:25

4. More Kinds of Injection

1. NoSQL Injection.mp4

02:00

2. Demo - MongoDB Injection.mp4

03:17

3. SQL Injection against Entity Framework.mp4

02:21

4. SQL Injection against Hibernate.mp4

02:05

5. SQL Injection against PHP ORMs.mp4

03:58

6. Course Summary.mp4

01:44

Description

This course will teach you how to test for SQL injection, one of the most common security issues in desktop and web applications alike.

What You'll Learn?

Since the late 1990s, SQL injection has been one of the most common security issues in desktop and web applications alike. In this course, Specialized Testing: SQL Injection, you’ll learn to audit an application for SQL injection. First, you’ll explore the mechanics of SQL injection. Next, you’ll discover the different types of SQL injection. Finally, you’ll learn how to test for SQL injection vulnerabilities. When you’re finished with this course, you’ll have the skills and knowledge of testing for SQL injection needed to audit an application for this kind of vulnerability.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Database Programming

Microsoft SQL

Christian Wenz

Instructor's Courses

Christian Wenz is an author, consultant and trainer focusing on web technologies. He wrote or co-wrote over 100 books, is a fixture at international developer conferences since 2001, is a Microsoft Most Valuable Professional (MVP) for ASP.NET, an ASPInsiders member, and main author of the Zend PHP 5.5 certification. His day job at Munich/London-based Arrabiata Solutions (http://www.arrabiata.com/) includes conducting security audits, migrating old code bases, implementing complex web applications and helping companies choose the right web strategy and web technology mix.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.