Time spent: 1.5 hours spent in total
The following required functionality is completed:
- Required: Challenge 1 - SQL Injection
- Required: Challenge 2 - SQL Injection 1
- Required: Challenge 3 - SQL Injection 2
- Required: Challenge 4 - SQL Injection Escaping
- Required: Challenge 5 - SQL Injection 3
The following advanced user stories are optional:
- Bonus 1: SQL Injection 4
- Bonus 2: SQL Injection 5
- Bonus 3: SQL Injection Stored Procedure
- Bonus 4: SQL Injection 6
- Bonus 5: SQL Injection 7
Here's a walkthrough of implemented user stories:
GIF created with LiceCap.
I found the bonus ones were very difficult compared to the required ones, I had attempted them all and spent a good amount of time on each one, but couldn't make much progress with them. I was also one of the BlackHat attendees and thus missed the video call going over these challenges.
Copyright [2017] [Alexander Matson]
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.