Get Started Using SQLMap for SQL Injection Pentesting
SQLMap is a popular open-source penetration testing tool used to detect and exploit SQL injection vulnerabilities. In prior posts, we looked at general concepts of…
Category: Beginner
Beginner-level content including courses, blog posts, and more.
4 steps to getting started securing applications
A lot of times, especially when you join smaller organizations, there are no (or very few) formal processes in place. The approach taken to secure…
OS Command Injections: How they work, and example techniques
When I first heard the term OS Command injections, or “Shell injection” as some people refer to it, I don’t know why but I assumed…
How To Hunt for Web App Vulnerabilities Hands-on!
I’ve said it again and again, and I think most members of the technical community would agree that the fastest, most effective, most fun way…
What are SQL Injections (SQLi)? Introduction to powerful techniques
We’ve talked about what SQL is, but now, let’s talk about one of the most common and dangerous web-based attacks: SQL injections (aka SQLi). In…
A quick SQL primer for SQL injections
While there are many other tutorials and resources out there that cover SQL, I wrote this blog post to give you a quick SQL primer…
Build Your Technical Skills with Free Hands-on Learning Activities!
These resources are for high school computer science teachers, university faculty, or anyone working in, studying, or curious about software engineering. I was “out and…
Blind SQL Injections with SQLMap against the DVWA
As part of our Injection Attacks: The Free 2020 Guide course, we reviewed concepts of SQL injections, including what blind injections are. Then, we practiced…
Set up the OWASP Juice Shop on Kali with Docker [Quickest Method]
Installing the OWASP Juice Shop on Kali with Docker is super fast because you don’t have to install anything but Docker. It also makes cleaning…
Install Kali on VirtualBox: The quickest way
Kali Linux is a free distribution that’s often used for digital forensics and penetration testing, and VirtualBox is a free hosted hypervisor for virtualization. The…