SQLi Labs Setup – SQL Injection Training
iSpeech.org
The following is the link to my NEW course with coupon applied - Kali Linux Web App Pentesting Labs:
https://www.udemy.com/kali-linux-web-app-pentesting-labs/?couponCode=NINE99
Here's my other courses with coupons applied if interested:
https://www.udemy.com/kali-linux-web-app-pentesting-labs/?couponCode=NINE99
https://www.udemy.com/kali-linux-hands-on-penetration-testing-labs/?couponCode=NINE99
https://www.udemy.com/network-security-analysis-using-wireshark-snort-and-so/?couponCode=NINE99
https://www.udemy.com/snort-intrusion-detection-rule-writing-and-pcap-analysis/?couponCode=NINE99
Description:
We’re going to download and configure SQLi Labs, which is hands down one of my favorites. SQLi Labs was created by a security researcher named Audi-1, and is a collection of php files and a script to populate a MySQL database in a vulnerable manner. The purpose of these labs is to hone your SQL injection skills both manually and automatically. We’ll dig into these in more depth later, but for now let’s focus on getting it set up. All of the commands in this video are attached to this lab in a text file.
First we need to download the SQLi Labs remake for php 7, since that is what the Kali Linux 2018 VM has at the time of this recording.
Commands:
cp -r sqli-labs-php7-master /var/www/html
service mysql start
mysql -u root -p
use mysql;
GRANT ALL PRIVILEGES ON *.* TO 'jesse'@'localhost' IDENTIFIED BY 'password';
service mysql restart
cd /var/www/html/sqli-labs-php7-master/sql-connections
vi db-creds.inc
service mysql restart
service apache2 start
vi /etc/mysql/mariadb.conf.d/50-server.cnf
service mysql restart
URLs:
https://github.com/skyblueee/sqli-labs-php7
http://localhost/sqli-labs-php7-master/Less-1/?id=1
2018-05-04 21:17:36
source
Gloss