You're reading from Mastering Python for Networking and Security Leverage the scripts and libraries of Python version 3.7 and beyond to overcome networking and security issues

Product type Paperback

Published in Jan 2021

Publisher Packt

ISBN-13 9781839217166

Length 538 pages

Edition 2nd Edition

Languages

Python

Tools

Tor

Concepts

Network Security

Author (1):

José Manuel Ortega

View More author details

Table of Contents (22) Chapters

Preface

1. Section 1: The Python Environment and System Programming Tools

2. Chapter 1: Working with Python Scripting FREE CHAPTER

3. Chapter 2: System Programming Packages

4. Section 2: Network Scripting and Extracting Information from the Tor Network with Python

5. Chapter 3: Socket Programming

6. Chapter 4: HTTP Programming

7. Chapter 5: Connecting to the Tor Network and Discovering Hidden Services

8. Section 3: Server Scripting and Port Scanning with Python

9. Chapter 6: Gathering Information from Servers

10. Chapter 7: Interacting with FTP, SFTP, and SSH Servers

11. Chapter 8: Working with Nmap Scanner

12. Section 4: Server Vulnerabilities and Security in Python Modules

13. Chapter 9: Interacting with Vulnerability Scanners

14. Chapter 10: Identifying Server Vulnerabilities in Web Applications

15. Chapter 11: Security and Vulnerabilities in Python Modules

16. Section 5: Python Forensics

17. Chapter 12: Python Tools for Forensics Analysis

18. Chapter 13: Extracting Geolocation and Metadata from Documents, Images, and Browsers

19. Chapter 14: Cryptography and Steganography

20. Assessments

21. Other Books You May Enjoy

Leave a review - let other readers know what you think

Discovering SQL vulnerabilities with Python tools

In this section, we will learn how to test whether a website is vulnerable to SQL injection using the sqlmap penetration testing tool as an automated tool for finding and exploiting SQL injection vulnerabilities that inject values into the query parameters.

Introduction to SQL injection

SQL injection is a technique that is used to steal data by taking advantage of a non-validated input vulnerability in query parameters.

With this code injection technique, an attacker executes malicious SQL queries that control a web application's database. Therefore, if an application has a SQL injection vulnerability, an attacker could read the data in the database, including confidential information and hashed passwords.

For example, consider the following PHP code segment:

$variable = $_POST['input'];
mysql_query('INSERT INTO `table` (`column`) VALUES ('$variable')');

If the user enters 'value...

The rest of the chapter is locked

You're reading from Mastering Python for Networking and Security Leverage the scripts and libraries of Python version 3.7 and beyond to overcome networking and security issues

Table of Contents (22) Chapters

Discovering SQL vulnerabilities with Python tools

Introduction to SQL injection

Authors (1)

Other recommended products

Personalised recommendations for you

You're reading from Mastering Python for Networking and Security Leverage the scripts and libraries of Python version 3.7 and beyond to overcome networking and security issues

Table of Contents (22) Chapters

Discovering SQL vulnerabilities with Python tools

Introduction to SQL injection

Unlock this book and the full library FREE for 7 days

Authors (1)

Other recommended products

Personalised recommendations for you