sqlmap – Page 5 – WindowsTechs.com

SQLMAP setting parameter

Posted on August 7, 2022 by fagner nunes

I am testing my own flask application that should be vulnerable.
I am using this in SQlmap:
sqlmap -u "https://test.heroku.com/checkusername/student*"

but the requests with payloads I am receiving contain student+payload. I thi… Continue reading SQLMAP setting parameter→

Sqlmap – Post Request with encoded json body

Posted on June 17, 2022 by Mingo Bille

I want to use sqlmap to find SQL injection vulnerabilities.
The problem that I am currently facing is that I need to encode the body of the Request to hex, otherwise the request won’t work.
My request is as follows(I will only post the ess… Continue reading Sqlmap – Post Request with encoded json body→

Sqlmap – Continuing a large query [migrated]

Posted on June 11, 2022 by Scott

I’m going to admit I’m not a sqlmap expert, hoping the community can help me learn something.

sqlmap -u "https://www.domain.com/page.php?id=1" –batch -D database_name -T table_name –dump -C "[column list]"

I ran th… Continue reading Sqlmap – Continuing a large query [migrated]→

Why are MySQL injections more limited than MS-SQL attacks?

Posted on June 8, 2022 by Questioner

I was watching the DEFCON 17: Advanced SQL Injection video here.
At 15:00, when discussing the various classes and types of SQL injection attackS, the speaker stated

With MySQL you really only have Union-based and Blind

Provided the abov… Continue reading Why are MySQL injections more limited than MS-SQL attacks?→

Encoding javascript cookies in sqlmap

Posted on June 7, 2022 by Juan2

I’m trying to inject cookies that are already encoded in base64 that look like this:
XSRF-TOKEN=eyJpdiI6IioiLCJ2YWx1ZSI6IioiLCJtYWMiOiIqIn0=
Decoded looks like this:
XSRF-TOKEN={"iv":"*","value":"*",… Continue reading Encoding javascript cookies in sqlmap→

sqlmap is encountering 403 forbidden

Posted on June 6, 2022 by Questioner

I am trying to complete an SQL injection CTF here.
I confirmed just adding a single ‘ mark at the end of the URL caused a MySQL syntax error, and following this tutorial, I could complete this challenge without any automated tools.
Here is… Continue reading sqlmap is encountering 403 forbidden→

How does the –os-shell parameter in Sqlmap work? Is it still anonymous over Tor?

Posted on April 24, 2022 by UndercoverDog

How does the –os-shell parameter in Sqlmap work? I know its uploading a backdoor, but how is Sqlmap uploading it and is the file just a normal reverse shell trojan?
Also, is it still anonymous when being used over the –tor switch?

Continue reading How does the –os-shell parameter in Sqlmap work? Is it still anonymous over Tor?→

What is the wisdom of using the ASCII function in exploit SQLi?

Posted on April 13, 2022 by Abdrrhmen

I mean, I can exploit the vulnerability using a substring function and without using an ASCII function like:
SELECT username FROM users WHERE id = 1 AND (SELECT substring(password,1,1) FROM users WHERE username = ‘admin’ ) = ‘a’;
And I ca… Continue reading What is the wisdom of using the ASCII function in exploit SQLi?→

How secure and anonymous is the –tor parameter in Sqlmap?

Posted on April 7, 2022 by UndercoverDog

How secure and anonymous is the –tor parameter in Sqlmap?
Does it really send every request over Tor and does it have any IP/DNS/STUN requests leak loopholes?

Continue reading How secure and anonymous is the –tor parameter in Sqlmap?→

When using SQLmap how can I correctly format a websites url [closed]

Posted on March 4, 2022 by Seth Habybe

for example
sqlmap -u "https://example.com/home/login

how can I get this to include the (Id) and the (PHP) part I see in every example. Like this
http://127.0.0.1/vulnerabilities/sqli/?id=1&Submit=Submit#

Continue reading When using SQLmap how can I correctly format a websites url [closed]→