Важное объявление!
У Нас Все раздачи мультитрекерные, при нуле пиров в релизах, можете смело вставать на закачку!
 
Автор Сообщение

HUNTER

Стаж:
4 года 9 месяцев
Сообщений:
65008

Репутация: 101

[+] [-]
Вне форума [Профиль] [ЛС]

Ethical Hacking: SQL Injection
Год выпуска: 2015
Производитель: Pluralsight
Автор: Troy Hunt
Продолжительность: 5h 25m
Тип раздаваемого материала: Видеоклипы
Язык: Английский
Описание: This course is part of the 20 course Ethical Hacking Series. SQL injection remains the number one risk on the web today. Understanding how to detect it and identify risks in your web applications early is absolutely critical. This course goes through the risk in depth and helps you to become an ethical hacker with a strong SQL injection understanding.
This course is part of the 20 course Ethical Hacking Series. Ever since we started connecting websites to databases, SQL injection has been a serious security risk with dire ramifications. The ability for attackers to run arbitrary queries against vulnerable systems can result in data exposure, modification, and in some cases, entire system compromise. SQL injection is classified as the number one risk on the web today due to the "perfect storm" of risk factors. It's very easily discoverable, very easily exploited, and the impact of a successful attack is severe. Add to that the fact that injection risks remain rampant, it's clear how it deserves that number one spot. This course takes you through everything from understanding the SQL syntax used by attackers, basic injection attacks, database discovery and data exfiltration, advanced concepts, and even using injection for network reconnaissance and running system commands. It's everything an ethical hacker needs to know to be effective in identifying the SQL injection risk in target systems.

Содержание

FileName Size Length Bit rate Data rate Resolution Frame Rate Parent Folder
01_01-Overview 3.02 MB 0:02:23 103kbps 72.00 1024x768 15 frames/second 01. Why SQL Injection Matters
01_02-The Significance of SQL Injection 8.36 MB 0:05:09 106kbps 118.00 1024x768 15 frames/second 01. Why SQL Injection Matters
01_03-Executing a SQL Injection Attack 8.34 MB 0:06:01 106kbps 85.00 1024x768 15 frames/second 01. Why SQL Injection Matters
01_04-The Impact of a Successful Attack 3.78 MB 0:03:35 106kbps 39.00 1024x768 15 frames/second 01. Why SQL Injection Matters
01_05-SQL Injection in the Wild 4.96 MB 0:02:20 105kbps 189.00 1024x768 15 frames/second 01. Why SQL Injection Matters
01_06-Summary 1.67 MB 0:01:23 106kbps 60.00 1024x768 15 frames/second 01. Why SQL Injection Matters
02_01-Overview 3.67 MB 0:02:55 105kbps 68.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_02-Understanding Structured Query Language 15.6 MB 0:06:52 107kbps 208.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_03-Statement Termination 4.56 MB 0:02:22 105kbps 162.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_04-Using the SQL Comment Syntax 4.32 MB 0:02:19 104kbps 154.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_05-SQL Queries Versus Data 6.53 MB 0:04:27 103kbps 99.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_06-The Value of Internal Exceptions 3.34 MB 0:01:45 104kbps 160.00 1024x768 15 frames/second 02. Understanding SQL Queries
02_07-Summary 2.97 MB 0:02:20 106kbps 70.00 1024x768 15 frames/second 02. Understanding SQL Queries
03_01-Overview 3.02 MB 0:02:31 106kbps 59.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_02-Types of SQL Injection 5.44 MB 0:04:32 105kbps 59.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_03-The Single Character Injection Test 19.6 MB 0:07:41 107kbps 248.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_04-Modifying the Query Structure 14.9 MB 0:08:45 106kbps 129.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_05-Circumventing Website Logins 8.92 MB 0:06:41 106kbps 78.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_06-Modifying Data and Database Objects 6.35 MB 0:04:19 105kbps 98.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_07-Identifying the Risk in Code 435 KB 0:03:46 106kbps 239.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_08-Understanding and Detecting Input Sanitization 5.12 MB 0:04:03 106kbps 68.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
03_09-Summary 3.50 MB 0:02:47 104kbps 68.00 1024x768 15 frames/second 03. The Mechanics of SQL Injection Attacks
04_01-Overview 3.56 MB 0:02:44 102kbps 77.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_02-Understanding the Union Operator 6.56 MB 0:03:29 106kbps 154.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_03-Executing Union Injection 26.3 MB 0:10:47 104kbps 234.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_04-Manual Database Structure Discovery with Errorbased Injection 18.4 MB 0:05:52 105kbps 331.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_05-Querying System Objects for Schema Discovery 6.46 MB 0:02:50 105kbps 211.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_06-Extracting Schema Details with Union Injection 9.46 MB 0:04:43 105kbps 172.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_07-Enumerating Result Sets with Subqueries 11.6 MB 0:05:32 109kbps 182.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_08-Extracting Schema Details with Errorbased Injection 20.3 MB 0:07:17 103kbps 285.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
04_09-Summary 2.74 MB 0:02:08 103kbps 74.00 1024x768 15 frames/second 04. Discovering Schema and Extracting Data
05_01-Overview 2.97 MB 0:02:27 104kbps 63.00 1024x768 15 frames/second 05. Blind SQL Injection
05_02-Basic and Blind Attack Success Criteria 5.49 MB 0:03:54 102kbps 92.00 1024x768 15 frames/second 05. Blind SQL Injection
05_03-Understanding a Blind Attack 6.40 MB 0:04:25 104kbps 95.00 1024x768 15 frames/second 05. Blind SQL Injection
05_04-Applying Boolean Based Injection 5.42 MB 0:04:05 106kbps 77.00 1024x768 15 frames/second 05. Blind SQL Injection
05_05-Constructing Yes and No Questions for Boolean Based Injection 16.0 MB 0:08:20 107kbps 159.00 1024x768 15 frames/second 05. Blind SQL Injection
05_06-Enumerating via ASCII Values 14.2 MB 0:08:32 106kbps 125.00 1024x768 15 frames/second 05. Blind SQL Injection
05_07-Where Time Based Injection Makes Sense 5.76 MB 0:02:06 103kbps 278.00 1024x768 15 frames/second 05. Blind SQL Injection
05_08-Understanding the WAITFOR DELAY Command 4.31 MB 0:02:11 104kbps 169.00 1024x768 15 frames/second 05. Blind SQL Injection
05_09-Constructing a Time Based Attack 18.3 MB 0:08:56 104kbps 181.00 1024x768 15 frames/second 05. Blind SQL Injection
05_10-Summary 2.34 MB 0:01:52 105kbps 67.00 1024x768 15 frames/second 05. Blind SQL Injection
06_01-Overview 3.27 MB 0:02:38 105kbps 65.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_02-Database Server Feature Comparison 15.3 MB 0:06:43 107kbps 210.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_03-Establishing Account Identity and Rights 11.6 MB 0:04:57 109kbps 217.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_04-Enumerating Other Databases on the System 12.7 MB 0:05:19 108kbps 223.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_05-Creating Database Logins 14.0 MB 0:05:29 109kbps 247.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_06-Extracting Passwords from SQL Server Hashes 11.3 MB 0:04:07 108kbps 275.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_07-Replicating a Table Using OPENROWSET 11.4 MB 0:05:11 108kbps 196.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_08-Executing Commands on the Operating System 10.2 MB 0:04:45 108kbps 192.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_09-SQL Injection for Network Reconnaissance 3.01 MB 0:02:14 102kbps 83.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
06_10-Summary 4.45 MB 0:03:28 105kbps 72.00 1024x768 15 frames/second 06. Advanced SQL Injection Concepts
07_01-Overview 3.10 MB 0:02:23 106kbps 73.00 1024x768 15 frames/second 07. Defending Against Attacks
07_02-Implement Proper Error Handling 6.68 MB 0:02:36 106kbps 250.00 1024x768 15 frames/second 07. Defending Against Attacks
07_03-Validating Untrusted Data 14.0 MB 0:04:42 107kbps 309.00 1024x768 15 frames/second 07. Defending Against Attacks
07_04-Query Parameterization 13.3 MB 0:05:21 108kbps 237.00 1024x768 15 frames/second 07. Defending Against Attacks
07_05-Stored Procedures 7.47 MB 0:03:49 107kbps 163.00 1024x768 15 frames/second 07. Defending Against Attacks
07_06-Object Relational Mappers 7.54 MB 0:03:39 107kbps 178.00 1024x768 15 frames/second 07. Defending Against Attacks
07_07-The Principle of Least Privilege 17.4 MB 0:07:57 106kbps 197.00 1024x768 15 frames/second 07. Defending Against Attacks
07_08-Isolating the Database Network Segment 6.11 MB 0:04:13 106kbps 94.00 1024x768 15 frames/second 07. Defending Against Attacks
07_09-Using an IDS or WAF 9.82 MB 0:04:33 105kbps 194.00 1024x768 15 frames/second 07. Defending Against Attacks
07_10-Keeping Software Patched and Current 7.58 MB 0:02:35 105kbps 303.00 1024x768 15 frames/second 07. Defending Against Attacks
07_11-Summary 3.80 MB 0:03:04 105kbps 65.00 1024x768 15 frames/second 07. Defending Against Attacks
08_01-Overview 1.75 MB 0:01:24 107kbps 65.00 1024x768 15 frames/second 08. Evasion Techniques
08_02-Understanding Signatures 3.44 MB 0:02:28 104kbps 88.00 1024x768 15 frames/second 08. Evasion Techniques
08_03-Basic Evasion Techniques 2.44 MB 0:01:57 106kbps 67.00 1024x768 15 frames/second 08. Evasion Techniques
08_04-Encoding for Evasion 2.07 MB 0:01:40 104kbps 67.00 1024x768 15 frames/second 08. Evasion Techniques
08_05-Splitting Strings 1.87 MB 0:01:35 106kbps 57.00 1024x768 15 frames/second 08. Evasion Techniques
08_06-White Space Diversity 1.43 MB 0:02:43 104kbps 93.00 1024x768 15 frames/second 08. Evasion Techniques
08_07-Inline Comments 3.22 MB 0:02:34 105kbps 68.00 1024x768 15 frames/second 08. Evasion Techniques
08_08-Variables 2.11 MB 0:01:43 106kbps 63.00 1024x768 15 frames/second 08. Evasion Techniques
08_09-String Manipulation 4.65 MB 0:02:56 104kbps 114.00 1024x768 15 frames/second 08. Evasion Techniques
08_10-Summary 2.19 MB 0:01:39 105kbps 78.00 1024x768 15 frames/second 08. Evasion Techniques
09_01-Overview 3.40 MB 0:02:25 122kbps 72.00 1024x768 15 frames/second 09. Automating Attacks
09_02-Testing in the Browser with SQL Inject Me 10.1 MB 0:03:42 121kbps 258.00 1024x768 15 frames/second 09. Automating Attacks
09_03-Fuzz Testing with Burp Suite 18.6 MB 0:09:43 107kbps 159.00 1024x768 15 frames/second 09. Automating Attacks
09_04-Data Extraction with Havij 6.22 MB 0:03:24 106kbps 147.00 1024x768 15 frames/second 09. Automating Attacks
09_05-Schema Mapping with sqlmap 9.26 MB 0:03:28 107kbps 264.00 1024x768 15 frames/second 09. Automating Attacks
09_06-Dynamic Analysis Testing with NetSparker 27.3 MB 0:09:03 105kbps 315.00 1024x768 15 frames/second 09. Automating Attacks
09_07-Summary 2.61 MB 0:02:06 104kbps 67.00 1024x768 15 frames/second 09. Automating Attacks
Файлы примеров: не предусмотрены
Формат видео: MP4
Видео: mpeg-4 AVC, 15 fps, 1024x768, ~144 kbps
Аудио: mp4a aac, 102~122kbps, 44.1kHz, Stereo

Скриншоты

Доп. информация: Exercise includes slides and code files, no subtitles.

_________________
Показать сообщения:    

Текущее время: Сегодня 20:17

Часовой пояс: GMT



Вы не можете начинать темы
Вы не можете отвечать на сообщения
Вы не можете редактировать свои сообщения
Вы не можете удалять свои сообщения
Вы не можете голосовать в опросах
Вы не можете прикреплять файлы к сообщениям
Вы не можете скачивать файлы