The SQL Injection Fundamentals CTF challenge focuses on testing your knowledge and skills in SQL injection vulnerabilities and exploiting them to extract information or perform unauthorized actions on a vulnerable web application. The challenge requires you to use the MySQL client from the command line to establish a connection to the database.
Table of contents
Solving SQL Injection Fundamentals HTB CTFIntroductionChallenge 1: Connect to the Database and Find the First Database NameChallenge 2: Find the Department Number for the ‘Development’ DepartmentChallenge 3: Find the Last Name of an EmployeeChallenge 4: Count Records Based on Certain CriteriaChallenge 5: Log in as the User ‘tom’Challenge 6: Log in as a Specific User to Retrieve the FlagChallenge 7: Perform a Union Query on Multiple TablesChallenge 8: Retrieve the Result of ‘user()’Challenge 9: Retrieve the Password Hash for ‘newuser’Challenge 10: Discover the Database PasswordChallenge 11: Retrieve the Flag using a WebshellChallenge 12: Skills Assessment — SQL Injection FundamentalsSort: