51 - PostgreSQL Functions and System Tables for SQLi | WEB-200 OSWA by KinSec
51 - PostgreSQL Functions and System Tables for SQLi | WEB-200 OSWA by KinSec
In this video, we explore PostgreSQL-specific functions and system tables that are useful during SQL Injection attacks. PostgreSQL has its own structure and set of functions that differ from MySQL and MSSQL, and knowing these is critical when targeting Postgres-based web applications.
Topics Covered:
- Useful PostgreSQL functions: version(), current_user, database(), current_database()
- Important system tables: pg_catalog.pg_tables, pg_catalog.pg_user, pg_class, pg_attribute
- Enumerating databases, tables, and columns in Postgres
- Payload examples for UNION SELECT and metadata extraction
- Recognizing a PostgreSQL backend during SQLi testing
Tools Used:
- Burp Suite
- Vulnerable web application (PostgreSQL backend)
- PostgreSQL-specific payloads
This video is part of the WEB-200 OSWA series by KinSec, designed to help you develop deep practical skills in web exploitation and prepare for the OSWA certification by Offensive Security.
Subscribe to KinSec for more database-focused SQLi tutorials, ethical hacking walkthroughs, and real-world lab exercises.
#PostgreSQL #SQLInjection #WEB200 #OSWA #KinSec #CyberSecurity #EthicalHacking #BugBounty #DatabaseSecurity #PenetrationTesting #OffensiveSecurity
Видео 51 - PostgreSQL Functions and System Tables for SQLi | WEB-200 OSWA by KinSec канала KinSec
In this video, we explore PostgreSQL-specific functions and system tables that are useful during SQL Injection attacks. PostgreSQL has its own structure and set of functions that differ from MySQL and MSSQL, and knowing these is critical when targeting Postgres-based web applications.
Topics Covered:
- Useful PostgreSQL functions: version(), current_user, database(), current_database()
- Important system tables: pg_catalog.pg_tables, pg_catalog.pg_user, pg_class, pg_attribute
- Enumerating databases, tables, and columns in Postgres
- Payload examples for UNION SELECT and metadata extraction
- Recognizing a PostgreSQL backend during SQLi testing
Tools Used:
- Burp Suite
- Vulnerable web application (PostgreSQL backend)
- PostgreSQL-specific payloads
This video is part of the WEB-200 OSWA series by KinSec, designed to help you develop deep practical skills in web exploitation and prepare for the OSWA certification by Offensive Security.
Subscribe to KinSec for more database-focused SQLi tutorials, ethical hacking walkthroughs, and real-world lab exercises.
#PostgreSQL #SQLInjection #WEB200 #OSWA #KinSec #CyberSecurity #EthicalHacking #BugBounty #DatabaseSecurity #PenetrationTesting #OffensiveSecurity
Видео 51 - PostgreSQL Functions and System Tables for SQLi | WEB-200 OSWA by KinSec канала KinSec
Комментарии отсутствуют
Информация о видео
26 июня 2025 г. 23:30:15
00:02:42
Другие видео канала
