sqlmap – Page 14 – WindowsTechs.com

Sql injection technique for 3 inputs [on hold]

Posted on March 10, 2019 by Paul Vio

I have a task to hack the user, password and 2FA with OWASP top 10 methods. What is the SQL injection command for the following code or should I use another method? sqlmap couldn’t find an injectable point.

<div id=”pare… Continue reading Sql injection technique for 3 inputs [on hold]→

Sqlmap – Getting Strange Table Names

Posted on March 9, 2019 by Akshay Sharma

I am running sqlmap on folllowing target and getting some weird table names as output. I am not sure why i am getting this as output. The backend dbms is SQLite.Can someone help in that why i am getting strange names as outpu… Continue reading Sqlmap – Getting Strange Table Names→

sqlmap – Testing parameters when reading request from file

Posted on March 7, 2019 by n00b.exe

After hours of trial an error I decided to ask here for some advice.
I am currently trying to perform a sqlinj using using sqlmap on a system that was specifically designed to be attacked.
The API states:

Method: GET
/users/>user_id&l… Continue reading sqlmap – Testing parameters when reading request from file→

SQLmap check sql burp vulnerability

Posted on March 4, 2019 by ScTALE

Burp suggests me that an application has an SQL injection point.
First request:

GET /restrict/menuApc.do?MVPG=ApcAssistitoTSRicercaPre&ASSISTITO_ID=*SRVZOSA40002294’&s_ELIMINATI=1&s_TIPO_ASSISTITO=&s_ASSISTIT… Continue reading SQLmap check sql burp vulnerability→

SQLmap different response than burp

Posted on February 8, 2019 by ScTALE

This is my GET request, inside a get_request.txt file:

GET /sa4apc/restrict/menuApc.do?MVPG=ApcAssistitiRicerca&s_TIPO_ASSISTITO=C&s_ELIMINATI=1&s_ASSISTITO=’giovanni&s_TIPO_SOGGETTO=1 HTTP/1.1
Host: test-san… Continue reading SQLmap different response than burp→

SQLmap after burp possible injection point

Posted on February 6, 2019 by ScTALE

Burp states that a GET request have surely a SQL injection point.

I am using python sqlmap.py -r file_with_that_request.txt –level 5 –risk 3 –dbms=oracle but the injectiont doesn’t work. Am I doing something wrong or is t… Continue reading SQLmap after burp possible injection point→

tamper scripts for bypassing waf sqlmap

Posted on January 30, 2019 by user2014429

I have tried the following tamper scripts in sqlmap but the connection is still getting dropped by the WAF: tamper=apostrophemask,apostrophenullencode,appendnullbyte,base64encode,between,bluecoat,chardoubleencode,charencode,c… Continue reading tamper scripts for bypassing waf sqlmap→

search for tables containing specific values in sqlmap [on hold]

Posted on January 29, 2019 by user2014429

Is it possible to search for tables which contain a specific value and dump those tables e.g search all tables that have the name ‘john’ in them somewhere.
something like:

sqlmap.py -u “https://www.website.com/index.php?id=… Continue reading search for tables containing specific values in sqlmap [on hold]→

How to make –os-shell command work on UBUNTU 16.04 ( Digital Ocean )?

Posted on January 21, 2019 by temporarya

I have made a vulnerable SQLi website ( to teach students ).
I am able to dump the database but I am not able to run os commands or upload os-shell.

I want to show them how to use –os-shell option of sqlmap. How should I p… Continue reading How to make –os-shell command work on UBUNTU 16.04 ( Digital Ocean )?→

Sql injection bypass against KONA (akamai) WAF

Posted on January 17, 2019 by Vipul Nair

I have been trying to find SQL injection against a site in bug bounty. I tried a few parameters via SQLmap. One such query was shown to be injectible.
Parameter: query (GET)
Type: boolean-based blind
Title: OR boolean-based blind -… Continue reading Sql injection bypass against KONA (akamai) WAF→