Task 1 is asking, “SQL Injection: What are the first 8 characters in the the password hash for the user Admin?” I have been trying since last week to figure out how to obtain the password hash. I have also read other discussions with similar questions regarding SQL Injection’s 1.3 Challenge Exercise Task 1. To find the solution for this task, I’ve performed various queries in the dvwa database, such as using union select to find the users table, password column, and then narrow it down to the admin user. I read one discussion (occurred last year I believe) that discussed using sqlmap. Are we to use sqlmap to determine the password hash for user Admin? I don’t recall anything similar in the guided exercise that used sqlmap. Is this an error? I’ve never used sqlmap. Thanks in advance for your help!
In the Guided exercises you use the following:
1’ union select table_schema,table_name from information_schema.tables;#
You then scrolled through the output to see different database names and table names listed.
You next used:
1’ union select table_name,column_name FROM information_schema.columns WHERE table_schema = ‘dvwa’;#
To look at the dvwa table.
Using these tools you can find another interesting table name in information_schema.tables and then enumerate that table.