Advanced SQLi & NoSQLi Techniques
Examine more complex SQL and NoSQL injection scenarios and learn advanced defensive coding patterns to counter them effectively.
Deeper Dive into SQLi
You've learned about basic SQL injection (SQLi), where direct user input manipulates database queries. However, attackers use more subtle and complex methods to bypass defenses.
In this lesson, we'll explore these 'advanced' SQLi techniques, like blind and second-order injections, and then shift our focus to NoSQL injection vulnerabilities. Most importantly, we'll cover how to defend against them effectively!
What is Blind SQL Injection?
Blind SQL Injection (Blind SQLi) occurs when an application is vulnerable to SQLi, but its HTTP responses do not directly show the results of the SQL query or any error messages.
Instead, an attacker must infer information by observing the application's behavior or response times. There are two main types of Blind SQLi:
- Boolean-based Blind SQLi: The attacker observes changes in page content (e.g., a specific message appears or disappears) based on true/false conditions of injected statements.
- Time-based Blind SQLi: The attacker infers data by observing delays in the server's response time, triggered by injected database functions.
All lessons in this course
- Advanced SQLi & NoSQLi Techniques
- Comprehensive Input Validation Strategies
- Content Security Policy (CSP) for Backend
- Preventing Command & LDAP Injection