AWS Labs
Labs badge iconLAB

Web Attacks: SQL Injection

In this lab, you’ll practice SQL injection. When you’re finished with this lab, you’ll have the ability to inject SQL into a web request to alter the query being delivered to the database.

* Our Labs are Available for Enterprise and Professional plans only.
Terms and conditions apply.
Contact sales
Labs - Web Attacks: SQL Injection

Lab info

Rating (34)
Level
Beginner
Duration
1h
Released
Jun 29, 2022

Lab author

Lab Author: Gavin Johnson-Lynn
Gavin Johnson-Lynn
Gavin has 20 years’ experience writing software in regulated environments and for global organisations. The last five years of his development career were spent with a focus on security, becoming the security lead for a significant payments project at a FTSE 100 company. He has experience with languages from COBOL to .Net and now often finds those skills useful when developing with Python. Gavin's experience of software security revealed a passion for security, leading him to become a speaker a... more
Challenge

Getting Started in the Lab Environment

Here are the initial instructions and explanation of the lab environment. Read this while your environment is busy creating itself from nothing. Yes, this violates physics; we know. How fun!

Challenge

Inject Commands into SQL Requests

Here you’ll learn how to identify a field which has a SQL injection vulnerability. You'll then use that field to modify the SQL query being sent to a database.

Challenge

Change Logic in SQL Syntax

Here you'll be more specific with your injected code. You’ll take known information about a user (e.g. email address) and log in as that user without knowing their password.

Challenge

The Last Challenge

Welcome to the final challenge! This is your last chance to experiment in the environment. Clicking Finish Lab will end this little world that flittered into existence just for you.

Labs - code icon

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Labs - list icon

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Labs - analytic icon

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Recommended prerequisites

  • Basic understanding of SQL SELECT statements
  • Basic understanding of web requests and responses

Start learning by doing today

Contact sales

Contact Sales

Loading form...

If this message remains, it may be due to cookies being disabled or to an ad blocker.

Close button

Ready to skill up
your entire team?

10
Subscriptions
Continue to checkout Continue to checkout
Cancel

With your Pluralsight plan, you can:

With your 14-day pilot, you can:

  • Access thousands of videos to develop critical skills
  • Give up to 10 users access to thousands of video courses
  • Practice and apply skills with interactive courses and projects
  • See skills, usage, and trend data for your teams
  • Prepare for certifications with industry-leading practice exams
  • Measure proficiency across skills and roles
  • Align learning to your goals with paths and channels

Ready to skill up
your entire team?

10
Subscriptions
Continue to checkout
Cancel

With your Pluralsight plan, you can:

With your 14-day pilot, you can:

  • Access thousands of videos to develop critical skills
  • Give up to 10 users access to thousands of video courses
  • Practice and apply skills with interactive courses and projects
  • See skills, usage, and trend data for your teams
  • Prepare for certifications with industry-leading practice exams
  • Measure proficiency across skills and roles
  • Align learning to your goals with paths and channels
Copyright © 2004 - 2022 Pluralsight LLC. All rights reserved.