What is SQL injection? - Web Security Academy

Подписаться 28 тыс.

Просмотров 316 тыс.

50% 1

SQL injection is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. Learn more from the Web Security Academy, by PortSwigger.
Read the full guide: portswigger.net/web-security/...
SQL injection cheat sheet: portswigger.net/web-security/...
Register for free with the Web Security Academy to test yourself in our interactive labs: portswigger.net/web-security

Наука

Опубликовано:

23 июл 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 74

@bytesunlimitedsecuritytips9095 3 года назад

Very great video! Thank you! My only complaint is that there was a lot of content mentioned here that could have been slowed down and further explained or better analyzed. Other than that, I will have to watch a few more times to fully grasp it.

@mrrairai Год назад

This video is amazing! I'm so happy I found it. It makes things make so much more sense now. Thank you.

@trentashore1059 3 года назад

Your a legend I couldnt understand wtf 1=1 bs was, but the way you broke it up and showed what was being altered or affected made it sooo easy to understand, big thanks to yall

@dustinhxc Год назад

Thank you for the academy videos!

@nandhaKumar-nr8yv 4 года назад

Really useful! its ultra level. i am very much attracted to the way of teaching by a wonderful instructor. i looking for more videos. You are doing a great job

@headshotcaptain8389 2 года назад

Awesome content!

@paulojr1384 Год назад

awesome content PortSwigger tnx

@Mohamed-xe7ui 2 года назад

so great, PLz make more videos for other web academy topics

@Umar0x01 3 года назад

02:43 barely held the laugh, hahaha.

@aaronwhite1786 5 месяцев назад

I feel like this was actually how they eliminated people at PortSwigger who wanted to host the video. If you couldn't get through that portion of the script without breaking you didn't get the do the video.

@dranonymous1547 4 года назад

very good

@pardeepbhardwaj4251 3 года назад

Do any practical of sql injection ... create video for practising of sql

@mothish. 3 года назад

Make more burb suite academy tutorials please

@b8akaratn 10 месяцев назад

Thank you

@togrow6578 3 года назад

amazing

@sumanaswal6557 3 года назад

thanks for the info you look like joey king

@kunjalbhudke80 Месяц назад

Amazing

@gonzalo635 3 года назад

NetSec is amazing.

@PrakashKumar-se1qk 2 года назад

Prevention part is good and not spoked in many blogs and videos

@pascallazarus-zm7bf Месяц назад

wher are the other topics videos

@AnthonyMcqueen1987 3 года назад

I have been having so much bad-luck searching for XSS i am thinking of focusing on SQL Injection because its only the database we need to worry about and if valid could bring some major $$$.

@gkmusicnocopyrightsongs7307 2 года назад

Send your contact number sir I want your help

@AnthonyMcqueen1987 2 года назад

@@gkmusicnocopyrightsongs7307 nope

@gkmusicnocopyrightsongs7307 2 года назад

Sir plz help me

@AnthonyMcqueen1987 2 года назад

@@gkmusicnocopyrightsongs7307 whats the problem ?

@gkmusicnocopyrightsongs7307 2 года назад

My family was poor I want your help plz help in haking tricks

@pnehru8361 3 года назад

How did you say username: weiner and password: blue cheese with a completely straight face

@dhayes5151 Год назад

Very well put together. Audio could be better quality however. Thanks!

@Tekionemission 2 года назад

Great video, thanks for posting it. Curious, does anyone know what the + is for, i.e.: '+OR+1=1--

@MrHT1993 2 года назад

The '+' sign represent concatenation in a URL. If you perform the labs, you will understand.

@Fahodinho 2 года назад

+ is a space ' ' URL encoded

@joojordy5855 Год назад

nice

@amol5436 3 года назад

@3.10 did they miss a single quote after -- ?

@cybercog Год назад

no, the single quote is purposefully used to 'break' the SQL formatter and inject your code

@XaraTVOfficial Год назад

2:43 I wish you had used a form that has Username and Password instead of Email Address and Password to avoid confusion.

@aesthetic_diabetics 3 года назад

ya'll really just gonna drop wiener and blue cheese with a straight face... sheeeeeesh

@opurbovai3414 Год назад

I WANT TO WORK WITH YOU

@pardeepbhardwaj4251 3 года назад

👍

@Learnsomethingnew-vk4sn Месяц назад

Can uh help me i lost my money in an online website

@stumbras2000 Год назад

What should you study in order to understand concepts in this video seems like this is not beginner level...

@d.j.s.3180 3 года назад

Девчуля я влюбился

@philopateermoheb7162 11 месяцев назад

البت اللي في الفيديو حلوة

@mohamedreddad2684 2 года назад

Well, can anyone mention her name or her instagram 🌝

@kiwinesss 3 года назад

She talks very very fast, so I had to watch it twice. But thank you for the information.

@sumanaswal6557 3 года назад

or you could have slowed it down from the option manu

@kiwinesss 3 года назад

@@sumanaswal6557 na I hate doing that, it makes everyone sound like a robot.

@inyodream642 3 года назад

@@kiwinesss wtf lol

@ansh4360 3 года назад

@APTsec 10 месяцев назад

her name please... i feel in love :)

@anoopmv7 2 года назад

Excellent presentation by a beautiful girl..

@darrensylvain8868 3 года назад

Hopefully youtube doesn't demonetize you for suggesting sql injections exist

@albertomertinez1710 2 года назад

Do you understand sql injection ... Lots of videos💋💕💕 seems confusing .

@randymoazha4440 2 года назад

just want to say, that women is really beautiful.

@MrDubs 2 года назад

After watching this video and reading your comment, I commuted to a local sporting goods store and purchased the most powerful pair of binoculars they had available. I then proceeded to traverse the highest mountain in a 200 mile radius of my location five minutes after noon. The day was clear, weather warm, I had visibility for miles in all 360 degrees. But to my dismay, I still couldn't see who asked.