Learn › SQL Injection

SQL Injection

Free PortSwigger Web Security Academy walkthroughs for SQL Injection — each with a clear explanation and a runnable solution script. All labs on GitHub.

PortSwiggerApprentice
SQL injection vulnerability in WHERE clause allowing retrieval of hidden data
SQL injection has been on the OWASP Top 10 for over two decades, and it survives not because developers don't know it exists, but because of exactly...
PortSwiggerApprentice
SQL injection vulnerability allowing login bypass
A login form is usually the single most attacked endpoint on any application, and it's also where SQL injection stops being a data-disclosure bug and...

Want to go from zero to junior pentester?

These walkthroughs are a taste. The full path — live, hands-on, small cohorts — starts with a free webinar.

Join the Free Live Webinar →