SQL Injection and Friends

In this session we’ll talk about several of the most important vulnerabilities: SQL injection, command injection, and directory traversal.

What you’ll learn

  • Directory traversal
    • What it is
    • Exploitation
    • Mitigation
  • Command injection
    • What it is
    • Real-world scenario
    • Exploitation
    • Mitigation
  • SQLi (SQL Injection)
    • How it works
    • Basic exploitation
    • Mitigation
  • Blind SQLi
    • What it is
    • The types of blind SQLi
    • Exploiting blind

Video