#TodayILearned
  • Intro
  • Mobile
    • ADB
    • Bundletool
    • Frida
    • Objection
    • Apktool
    • Patching Smali
    • jadx
    • Xamarin
    • Emulator
    • Correlium
  • Network
    • Bettercap
  • Red Team
    • Unicorn
    • Macros
    • Defense Evasion
      • Load shellcode from memory using Golang
      • Hershell
    • Initial Compromise
      • Password Spraying
  • Web
    • Burp
    • IIS
  • Pentest
    • Metasploit
    • sqlmap
    • Hashcat
  • Miscellaneous
  • Recon
  • Docker
    • GitHub
    • Pulling from an insecure registry
    • Exploring a Docker image
  • Recon
    • Aquatone
    • Censys
    • MassDNS
    • S3 buckets enumeration with ffuf
    • Shodan
  • Flutter
    • Privilege Escalation
  • SSTI
Powered by GitBook
On this page

Was this helpful?

  1. Pentest

sqlmap

PreviousMetasploitNextHashcat

Last updated 5 years ago

Was this helpful?

TODO :)

./sqlmap.py \
--force-ssl \
-r req  \
--second-req=req2 \
-p id \
--level 3 \
--risk 1 \
--union-cols=27 \
--prefix="'" \
--suffix="-- a" \
--test-filter="MySQL UNION query ([RANDNUM])" \
--tamper=unionalltounion,hex2char \
--flush-session

References

Sqlmap Tricks for Advanced SQL InjectionTrustwave
http://www.thegreycorner.com/2017/01/exploiting-difficult-sql-injection.htmlwww.thegreycorner.com
https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2019/march/did-you-order-a-sql-injection/www.nccgroup.trust
Logo