SQL Injection and Friends
In this session we’ll talk about several of the most important vulnerabilities: SQL injection, command injection, and directory traversal.
What you’ll learn
- Directory traversal
- What it is
- Exploitation
- Mitigation
- Command injection
- What it is
- Real-world scenario
- Exploitation
- Mitigation
- SQLi (SQL Injection)
- How it works
- Basic exploitation
- Mitigation
- Blind SQLi
- What it is
- The types of blind SQLi
- Exploiting blind