Lab - SQL Injection Attack Lab
Lab Description and Tasks
- Lab Description: SQL Injection.pdf
- Lab Setup Files: Labsetup.zip
Additional information on the SEED project site.
Bobby Tables: A guide to preventing SQL injection SQL Injection Prevention
Login information
| User | Password |
|---|---|
| admin | seedadmin |
| alice | seedalice |
| boby | seedboby |
| ryan | seedryan |
| ted | seedted |
| samy | seedsamy |
Tips
- Multiple ways to generate SHA1 of a password:
mysql> select sha1('new_password');- CyberChef and search for SHA1
Examples
Grading
Post your report in Marmoset by the scheduled due date in the syllabus. Your grade for this lab will be composed of:
- 30% - Design
- 30% - Observations
- 40% - Explanation
- Extra Credit if you pursue further investigation, beyond what is required by the lab description.
