August 2018
Intermediate to advanced
404 pages
10h 22m
English
This attack could continue by finding out the DBMS, the version being used, and then using vendor-specific commands to see whether the user has administrative privileges. If they do, you would extract all usernames and passwords, activate remote connections, and many more things besides. One other thing you could try is to use tools to automate this type of attack, such as SQLMap, which we will cover in the next recipe.
Read now
Unlock full access