April 24, 2017, 03:48:41 PM
Welcome, Guest. Please login or register.

"640 K ought to be enough for anybody." -- Bill Gates

Author Topic: Sql injection challanges?  (Read 3014 times)

uSploit

  • Guest
Sql injection challanges?
« on: July 04, 2013, 04:08:46 AM »
Is it allowed to post vulnerable sites for challenges?
Not sites that can be hacked but sites where information can be gathered.

Simple example i find a website which is fully inject-able but there is no way to get inside (no admin table) or no upload or anything avoiding us from hacking the website totally. Then it would only be for educational purposes.

If not ill try and build my own challenges for this website! I am up for this.

- usploit.

Offline corr.x86

  • Top Hat Member
  • Elite
  • ********
  • Posts: 1111
  • Internets: +10/-0
  • ^That's a lie
Re: Sql injection challanges?
« Reply #1 on: July 04, 2013, 06:49:24 AM »
Lol, //offtopic! Waddup usploit! so the sploits are back now? Awesome! oh and I'm pretty sure you can post up challenges. Just need clarification for the big guys now. hahaha
"I have this assignment bla bla bla, can you give me teh codez?"

"www.adoptamalware.com would be a nice website to run."

Offline GalaxyNinja

  • Global Moderator
  • Elite
  • *****
  • Posts: 1709
  • Internets: +94/-0
  • My password is **********
Re: Sql injection challanges?
« Reply #2 on: July 04, 2013, 08:16:08 AM »
Hey there uSploit, in terms of posting vulnerable sites, you can only post sites which are meant to be tested (such as our SQLi lab). You can not post sites that have vulnerabilities in them but are not designed for the purpose of testing. We could get in big trouble if we allowed that.
Once things have settled down over here and we have completed updating the site, store, courses etc, I am sure we will also be posting fresh challenges monthly with prizes. That won't be for several months at least though!
 
Hope this helps,
GalaxyNinja - Admin Top-Hat-Sec

Offline n1tr0g3n

  • Super Elite
  • ******
  • Posts: 4734
  • Internets: +63/-2
  • MCSA, MCP, MCTS, DCSE, CE/H, ACSP, N+,A+, CWSP
    • n1tr0g3n Information Security Blog
Re: Sql injection challanges?
« Reply #3 on: July 04, 2013, 10:28:50 AM »
uSploit would you be down to do a SQLi class on Skype or screencast one day for everyone? I think that would be awesome if we could start with sqlmap or something like that. There's a lot to be learned with sqli.
"It's mind over matter, If you don't have a mind then it doesn't matter

Youtube  Channnel
http://www.youtube.com/user/n1tr0g3n0x1d3
Twitter  https://twitter.com/n1tr0g3n_com
http://www.n1tr0g3n.com  
http://teamctfu.weebly.com/

uSploit

  • Guest
Re: Sql injection challanges?
« Reply #4 on: July 14, 2013, 02:51:53 AM »
Id love to do so but i still need to get a lot setup.
Havent been doing stuff for ages. accept for sql injection which i dont use tools for.
Ill do some screen casts sooner or later.
Just give me time to adjust to computer life again.

Im so used to be outdoors now stuped addictions :) yeh im a fuck up sometimes xp

Offline iSploit

  • Prospect
  • *
  • Posts: 16
  • Internets: +0/-0
Re: Sql injection challanges?
« Reply #5 on: July 14, 2013, 09:46:00 AM »
What's crack-a-lacking, I'm up for some challenges too.

Online Gingerbread Man

  • *High Tech Low-life*
  • Administrator
  • Elite
  • *****
  • Posts: 923
  • Internets: +93/-0
Re: Sql injection challanges?
« Reply #6 on: July 14, 2013, 09:47:48 AM »
Give it up...you are the same guy  :-X

Offline iSploit

  • Prospect
  • *
  • Posts: 16
  • Internets: +0/-0
Re: Sql injection challanges?
« Reply #7 on: July 14, 2013, 09:50:54 AM »
I can assure you we're not.

uSploit

  • Guest
Re: Sql injection challanges?
« Reply #8 on: July 14, 2013, 03:33:28 PM »
Lol haha isploit they wont believe you i guess :D wed have to proove them sooner or later :D up to what we learn hows your linux from scratch going?

Greetings uSploit

Offline iSploit

  • Prospect
  • *
  • Posts: 16
  • Internets: +0/-0
Re: Sql injection challanges?
« Reply #9 on: July 15, 2013, 05:49:01 AM »
Just covering some basic ground before actually tackling the more major customization.

Offline R4v3N

  • Administrator
  • Super Elite
  • *****
  • Posts: 3691
  • Internets: +160/-1
  • The googles and the metasploits...
    • Top-Hat-Sec
Re: Sql injection challanges?
« Reply #10 on: July 15, 2013, 05:54:21 AM »
We have the SQL student labs with DVWA and mutillidae for starts.