My first hacking challenge CHAP.1: SQL Injection - Input box non-string

13 Mar 2023  ・ 2 min read

I have always been intrigued by the field of cybersecurity, and recently a friend recommended tryhackme.com to me. Eager to explore the world of hacking, I decided to take on my first challenge involving SQL Injection.

To my surprise, the experience was exhilarating and more stimulating than I had anticipated. I was completely engrossed in the task, eager to learn and solve more challenges.

Starting with the easier level, I can confidently say that my experience thus far has been nothing short of thrilling. This post serves as a testament to my excitement and eagerness to continue learning and exploring the world of hacking.

Here's to my first successful hacking task, the beginning of a long journey filled with endless possibilities.

First chap - first task

  1. Environment Setup.

Following the instructions provided by tryhackme, I selected the region closest to me

and downloaded the OpenVPN.

After opening the file, I connected to the VPN.

Note: Sometimes, the connection may face problems such as the or connection timeout.

In such cases, I suggest trying the following:

  • Download the OpenVPN app again
  • Check the internet connection
  • Change the VPN region and regenerate it again
  1. Accessing the room Clicking on and , I waited for the virtual machine to start. After it started, I gained access to the virtual server on port .

The journey officially started at this point. The challenge room appeared with all the tasks, and I was excited to tackle them immediately.

Without reading the guidance from tryhackme first, I attempted to input for the and for the . However, I was rejected because the account did not exist.

I then attempted the SQL injection phrase that people usually talk about, , with a random password. But, once again, I was rejected.

After reading the challenge title (I was reckless), "SQL Injection: Input box non-string," I tried again and changed the input to . There! Success! I was able to gain access.OMG!!!😲

Hooray!!! Yahoooo!!!😍

Many thank for reading my post until here❤️. In conclusion, I am thrilled to have completed my first hacking challenge. Though it may seem like a small step, it has opened the door to tremendous excitement in learning how to hack and increase my knowledge of cybersecurity. I look forward to share with you guys my next chapter with next task😄.

#sql#hacking#My-first-hacking-challenge