https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=Sumit+SiddharthOWASP - User contributions [en]2026-04-26T04:53:01ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=The_Art_of_Exploiting_SQL_Injections&diff=89943The Art of Exploiting SQL Injections2010-09-23T20:52:37Z<p>Sumit Siddharth: </p>
<hr />
<div>[[Image:468x60-banner-2010.gif|link=http://www.owasp.org/index.php?title=OWASP_AppSec_DC_2010]] <br />
<br />
[https://guest.cvent.com/EVENTS/Register/IdentityConfirmation.aspx?e=d52c6f5f-d568-4e16-b8e0-b5e2bf87ab3a Registration] | [https://resweb.passkey.com/Resweb.do?mode=welcome_gi_new&groupID=2766908 Hotel] | [http://www.dcconvention.com/ Walter E. Washington Convention Center]<br />
<br><br />
__NOTOC__ <br />
==Description==<br />
'''Course Length: 1 Day'''<br />
<br />
This is a full day hands on training course which will typically target penetration testers, security auditors/administrators and even web developers to learn advanced exploitation techniques. SQL Injection, although now nearly 15 years old, still exists in over 30% of the web applications. This vulnerability could typically result in 3 scenarios:<br />
<br />
# Authentication Bypass<br />
# Extraction of arbitrary sensitive data from the database<br />
# Access and compromise of the internal network.<br />
<br />
To identify the true impact of this vulnerability it is essential that the vulnerability gets exploited to the full extent. While there is a reasonably good awareness when it comes to identify this problem, there are still a lot of grey areas when it comes to exploitation or even identifying complex vulnerabilities like a 2nd order injections. This training will target 3 databases (MS-SQL, Mysql, Oracle) and discuss a variety of exploitation techniques to exploit each scenario. The aim of the training course is to address the following:<br />
<br />
# Identify the most complicated sql injections which are beyond the scope of any automated tool?<br />
# Identify and Extract sensitive data from back-end database?<br />
# Privilege Escalation within the database and extracting data with database admin privilege?<br />
# OS code execution on these database server and use this as a pivot to attack internal network?<br />
<br />
==Student Requirements==<br />
Students will need to bring a laptop with VMWare<br />
<br />
==Objectives==<br />
Skill: Basic, Intermediate<br />
<br />
# Understand the problem of SQL Injection <br />
# Learn a variety of advanced exploitation techniques which hackers use.<br />
# How to fix the problem?<br />
<br />
<br />
==Instructor==<br />
'''Instructor: Sumit Siddharth''' Sumit "sid" Siddharth works as a Principal Security Consultant (Penetration Tester) for 7Safe Limited in the UK. He specializes in the application and database security and has more than 5 years of pentesting. Sid has authored a number of whitepapers and tools. He has been a speaker at many security conferences including Blackhat, Defcon, Troopers, OWASP Appsec, Sec-T etc. He also runs the popular IT security blog: [http://www.notsosecure.com www.notsosecure.com]<br />
<br />
[[Category:AppSec_DC_2010_Training]] [[Category:Basic_Training]]] [[Category:Intermediate_Training]]]</div>Sumit Siddharth