Instructions:
Lab Notes
In this lab we will do the following:
We use inject always true SQL statements into the SQL Injection User ID field with security set to low.
We will obtain the username and raw-MD5 password contents from the user’s table.
We will use John the Ripper to crack the raw-MD5 password HASH for each user.
Follow the steps given in the following document:
DVWA SQL Injection Lab [PDF, 3.1 MB] (additional materials)
Once you have completed the lab, please answer the following questions in 1 to 2 pages:
1.What are some of your suggested changes to the code of the given website to eliminate the SQL-injection vulnerability?
2.What were some lessons learned from this project and how can these skills be used in the future?
3. Make sure to have screenshots
Place this order or similar order and get an amazing discount. USE Discount code “GET20” for 20% discount