The Injections Project Overview

The Injections Project

Overview

Web injections are used against websites and web-based applications to gain access to sensitive information, elevate privileges, and view private data.

Learn about the different types of web injections through Google searching the following list below. Using a popular web security tool, try performing the various types of web injections.

XSS
CSV Injection
SQL Injection
Command Injection
ORM Injection
FTP Injection

Project Recommendations

It is recommended you have familiarity with the foundations of networking, web application development and security, general knowledge of I.T. security fundamentals, use of a Linux distribution, and formidable research skills.

Starting Resources & Links

What are Injection Attacks? – Acunetix
InfoSec Guide: Web Injections – TrendMicro
Top 10 Open Source Security Testing Tools for Web – Hackr.io

Recommended Level

Beginner to Intermediate

Project Author Credit: Grant C.