当前位置:网站首页>Sqlmap tutorial (III) practical skills II
Sqlmap tutorial (III) practical skills II
2022-07-06 05:58:00 【A τθ】
One 、–technique Use the specified injection method
In some projects , It is inevitable that the network will react slowly ,idc And testing sqlmap The ability of . As a professional penetration tester , We must be fast, accurate and ruthless .
There are some SQL The injection point only allows time injection , It is designated at this time SQLMAP The injection type of is T
Here are --technique Explanation of the value of the parameter :
B:Boolean-basedblindSQLinjection( Boolean Injection )
E:Error-basedSQLinjection( Error reporting injection )
U:UNIONquerySQLinjection( Query injection can be combined )
S:StackedqueriesSQLinjection( Multi statement query injection )
T:Time-basedblindSQLinjection( Injection based on time delay )
Q:InlineSQLInjection( Inline Injection )
Two 、 Use time-based delay injection
sqlmap -u "192.168.1.50/06/vul/sqli/sqli_str.php?name=1&submit=1" --dbms mysql -v 3 -D pikachu --technique=T
Support multiple injection detection , The default is all :
sqlmap -u "192.168.1.50/06/vul/sqli/sqli_str.php?name=1&submit=1" --dbms mysql -v 3 -D pikachu --technique=BEUT
3、 ... and 、 Set timeout
--time-out This parameter is to set the timeout Some web pages are slow to respond , You can use this parameter to increase the access timeout time . The default is 30
sqlmap -u "192.168.1.50/06/vul/sqli/sqli_str.php?name=1&submit=1" --dbms mysql -v 3 -D pikachu --timeout=10
Four 、 Read text for SQL Injection detection
sqlmap -r post.txt
5、 ... and 、 Specify parameters to inject
-p Specify the parameters to be tested
sqlmap -u "http://192.168.0.103/06/vul/sqli/sqli_str.php?name=1&submit=1" -p name --dbms mysql -v 1
Use * For injection
If url When it is pseudo static , have access to * No. indicates that this is the place of detection ;
sqlmap -u "http://192.168.0.103/06/vul/sqli/id/1*./html POST Inject sqlmap -u "http://192.168.0.103/06/vul/sqli/sqli_id.php" --data "id=1&submit=1" -p id -v 1
6、 ... and 、 Modify the default maximum thread size
sqlmap/lib/core/settings.py
The default maximum thread is 10 You can set the maximum number of threads to 100
MAX_NUMBER_OF_THREADS = 100
边栏推荐
- Huawei BFD configuration specification
- [Jiudu OJ 08] simple search x
- 嵌入式面试题(四、常见算法)
- J'ai un chaton.
- Summary of data sets in intrusion detection field
- 清除浮动的方式
- PDK process library installation -csmc
- Grant Yu, build a web page you want from 0
- Gtest之TEST宏的用法
- Jushan database appears again in the gold fair to jointly build a new era of digital economy
猜你喜欢
MIT6.s081-2020 Lab2 System Calls
[Thesis code] SML part code reading
HCIA复习
Winter 2021 pat class B problem solution (C language)
Database: ODBC remote access SQL Server2008 in oracel
Embedded interview questions (IV. common algorithms)
How Huawei routers configure static routes
Novice entry SCM must understand those things
[Jiudu OJ 07] folding basket
【论文代码】SML部分代码阅读
随机推荐
Summary of data sets in intrusion detection field
Clear floating mode
B站刘二大人-多元逻辑回归 Lecture 7
[paper reading] nflowjs: synthetic negative data intensive anomaly detection based on robust learning
Database: ODBC remote access SQL Server2008 in oracel
初识数据库
Download, install and use NVM of node, and related use of node and NRM
Yunxiaoduo software internal test distribution test platform description document
[Jiudu OJ 07] folding basket
[email protected] raspberry pie
Pytorch代码注意的细节,容易敲错的地方
How to recover Huawei router's forgotten password
[Jiudu OJ 08] simple search x
Embedded interview questions (I: process and thread)
Baidu online AI competition - image processing challenge: the 8th program of handwriting erasure
High quality coding tool clion
CoDeSys note 2: set coil and reset coil
[experience] install Visio on win11
Garbage collector with serial, throughput priority and response time priority
网络协议模型