Testout Ethical Hacker Pro 12.3.6 Preform an SQL Injection Attack
Solution
From the taskbar, open Chrome. Maximize the window for easier viewing. In the URL field, type mysecureonlinebank.com Press Enter. In the Enter your Account Number field, enter 90342. Select Lookup.The account balance is $582.29. In the top right, select Answer Questions. Answer question 1. In the Enter your Account Number field, enter 0 OR 1=1 for the SQL injection. Select Lookup. Answer question 2. Select Score Lab.
Scenario
You are the penetration tester for a small corporate network. You have decided to see how secure your online bank's web page is. In this lab, your task is to perform a simple SQL injection attack on MySecureOnlineBank.com using the following information: Make an account query for account number 90342. Perform a simple SQL attack using 0 OR 1=1. Answer the questions.
Questions - Answers
Q1: What is your account balance? Correct answer: $582.29 Q2: What is the account number of Nisha Dickson? Correct answer: 90003