This presentation will introduce SQL injection to the new web application hacker. It will walk you through web architectures and vulnerable code examples. You will learn how to set up a penetration testing lab with vulnerable applications, find SQL injection vulnerabilities, and hack them to bits. After you understand the problem, you’ll learn how to prevent them in the first place along with how to defend against SQL injection attacks.