An injection attack allows attackers to inject code into a program or query. Injection attacks come in many forms in this lesson you will explore SQL injection. SQL injection (SQLi) is where an attacker can inject SQL commands into a SQL statement.

You will be using a real web application and a web proxy that is built into the lesson. The proxy has the ability to stop all HTTP requests to the server so that they can be analyzed and modified before forwarding them to the server. Our proxy works the same as Burp Suite with simpler functionality for this intro lesson.

This unique training lesson will teach you how attackers look at your applications, how to exploit SQL injection and the impact, and lastly how to find and fix the issues in code.

The course is available in Python, Ruby, Go, Java, Node.js, Javascript, PHP, and .NET.