An Introduction to Relational Databases for Hackers: Zero to SQL Injection
Author’s Note: I loooooooove databases and I want to spread the knowledge around! This is the first in what will hopefully be a series on databases, with a focus on providing foundational information and context necessary to understand and perform attacks against databases… as well as defend against them!
Shoutout to Dr. Poole, whose amazing database class got me hooked forever! <3
Table of Contents:
Terminology Schema Stuff Types of Relationships One to One (1-1) One To Many (1-M) Many to Many (M-N) Entity Relationship Diagrams (ERDs) Basic SQL SELECT, WHERE, LIKE, AND, OR, NOT Joins and Union Inner Join Left Join Full Join (Full Outer Join) Union SQL Injection Vulnerable Code from DVWA The Anatomy of a UNION based SQL Injection Additional Resources Sources Terminology “Words, words words.