Start with nmap as usual.
# Nmap 7.91 scan initiated Sun Mar 14 20:26:17 2021 as: nmap -sC -sV -Pn -p- -T4 -A -oN nmap.txt 10.10.10.154
Nmap scan report for 10.10.10.154
Host is up (0.043s latency).
Not shown: 65531 filtered ports
PORT STATE SERVICE VERSION
Start with nmap scan.
Same as the basic SQL Injection challenge, it has a single text field for user query.
There is a page with a single text field.
Enter user ID ‘1’ and submit.
This is a page which provides options to show content of given files.