I can hardly call this "detection"; looks more like "intrusion" to me.
~~
# mitchell
On Tue, Jan 21, 2014 at 4:43 PM, l.g. wrote:
> Miroslav Stampar writes:
>
> >
> >
> > So you made a "DROP TABLE" payload :))
> > I am n
Because I often use sqlmap in conjunction with burp, where I take burp's
> log and give it to sqlmap for testing (via -l parameter). In this scenario,
> it would be painful to insert '*' after each parameter name.
>
> I hope I expressed it clear:)
>
> Best regards an
So you have an option to inject wherever you want, but you want another
option to inject "inside parameter names"? Maybe, I am missing something
here...
~~
# m.
On Thu, Mar 28, 2013 at 8:06 PM, Karel Marhoul wrote:
> Hello,
>
> yes '*' works, but I have to put it behind parameter's name manual
Thank you, guys, for the invaluable tool!
~~
# m.
On Wed, Mar 20, 2013 at 11:06 PM, André Silva wrote:
> Great tool, great developers and i believe i can also say great support.
>
> Thank you guys.
>
> 2013/3/20 Carlos Albuquerque
>
>> Thanks for your time, guys! Great work!
>>
>>
>> On Wed,
...or he has used the --replicate switch, and now asks how to view the
data? @Iago if this is the case, then you can use
# sqlite3 filename.db
(where filename.db is the name of the sqlite3 database) to connect to a
sqlite3 database.
Then, you can use .help for more information.
~m.
On Sat, Sep
Hello guys,
Recently, during a blackbox test, my team had to test a URL that looks like:
http://target.com/news/press/p:1
where 'p' is a dynamic parameter, and it stands for the page.
Do you know if there is a way to have sqlmap test this parameter?
Kind Regards,
--
#
I've been having a lot of these recently:
sqlmap version: 1.0-dev (r3893)
Python version: 2.7.1+
Operating system: posix
Command line: ./sqlmap.py -u ** -D -T ***
--dump
Technique: UNION
Back-end DBMS: MySQL (fingerprinted)
Traceback (most recent call last):
Here's another example. Also, a lot of arabic data is coming down as ??
instead of the Unicode data. Some works, some doesn't. At any rate, here is
the debug data:
sqlmap version: 1.0-dev (r3893)
Python version: 2.7.1+
Operating system: posix
Command line: ./sqlmap.py -u *
