1. Install WAMP on Windows systems
- Download: https: //pan.baidu.com/s/1HY0hFnj6ywKjwHhB1vlOfg
- Extract the password: ms08067.com
- Double-click to install
2. downloaded from github (https://github.com/Audi-1/sqli-labs) SQLi-Labs installation files, extract the files, to copy it to the www wamp directory and file name to sql.
3. start wamp service, open HTTP: // localhost / phpmyadmin / , create a new security database in the database, sql-lab.sql file and the source code is imported into the database.
4. Open db-creds.inc file sql-connections folder, you can modify the database connection account, password, database name and other configuration information. Not need to change this, keep the default.
5. Open a browser to access http://127.0.0.1/sql/ , will appear the following page
6. Click Setup / reset Database for labs, the following page appears, indicating that the database has been imported into the
7. The browser opens "http://127.0.0.1/sqli-labs/" scroll down, you can see there are many different points of injection, and SQL injection is divided into basic, advanced SQL injection, SQL injection stacking challenge four parts, a total of about 75 SQL injection vulnerability.
8. Now we can try to enter http://127.0.0.1/sql/ , pull-down map display
9. Click FIG less-1 to the next
10. Enter in the URL? Id = 1, can be found on the page at this time have shown the database information
Platform to build success.