IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [sqlmap]

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers.

152 questions
1
vote
1 answer

SQLMap, SQLiPy and connection

I can successfully perform a sqlmap scan of my target from a host. However, if I run sqlmapapi from that same host and use SQLiPy from Burp, sqlmapapi returns connection errors. The specific SQLiPy errors retrieved are: INFO: 16:55:43 - testing…
garthoid
  • 51
  • 1
  • 7
1
vote
2 answers

Weird table names in SQLite database

This is the first time I'm using sqlmap against SQLite. When I run: sqlmap -u www.site.com:80/index.php?vulnParametr=p --dump-all --keep-alive --dbms=sqlite It gives me this: What is that? Is SQLite using some sort of encrypting?
Icurus Love
  • 11
  • 1
  • 2
1
vote
0 answers

Dumping Large table using Sqlmap

I am learning/working on sqlmap and I was trying to dump a large table with 11K entries on my localhost. The command I used is: python sqlmap.py -u "http://localhost/searchre.php" --data="search=' or '1'='1" --delay=10 --timeout=100 --random-agent…
Johnny
  • 181
  • 1
  • 4
  • 11
1
vote
1 answer

sqlmap not finding a proven vulnerability

I'm testing a wordpress site with the jetpack plugin installed. According to: https://www.exploit-db.com/exploits/18126/ this plugin should be vulnerable to SQL injection (found with sqlmap) but when running the last updated version of the tool…
Belial
  • 111
  • 2
1
vote
1 answer

Is sqlmap scan detectable?

I have a REST API running on a server. Is there a way to detect an unexpected sqlmap analysis?
jscherman
  • 113
  • 5
1
vote
1 answer

How do I exploit with vunerability in special format with sqlmap?

I used ZAP proxy to determine that login was injectable with GET request as login" AND "1"="1 was injectable, but it returned the url to me in this format: https://example.com/login%22%20AND%20%221%22=%221 I have checked, and it is injectable at…
Sanic Rider
  • 95
  • 1
  • 2
  • 6
1
vote
1 answer

Can SQL test by using SqlMap tool harm a website?

I am just learning about SQL injection attack, and I want to test this by using sqlmap on my own website.However I wonder if the attack can cause any harm on my website's services during the attack? Thank you.
ccca
  • 61
  • 1
  • 6
1
vote
0 answers

How to tell sqlmap to resume an exploit from results-*.csv file?

How to notify SQLMap to resume an exploit from results-*.csv file? Example: ~/.sqlmap/output/results-xxxxxxxxxx.csv Target URL,Place,Parameter,Techniques http://example.com:80/login.php,POST,Password,TU
ovolax
  • 111
  • 1
  • 3
1
vote
0 answers

sqlmap injection question

I'm trying to test my website, the command is: sqlmap -u website -D sitedb -T table -C column --dump --threads 10. While sqlmap is retrieving data it displays: [19:36:55] [INFO] retrieved: "","", [19:36:56] [INFO] retrieved: "","", [19:36:56] [INFO]…
Vcarias
  • 19
  • 1
1
vote
1 answer

Insert query in sqlmap causes error

I have tried SQL injection with sqlmap using the command below: sqlmap -u http://localhost/abc.php?id=1 -D datab --sql-shell Following query works in the SQL shell well: SELECT * FROM admin But when I try to drop the table or try to insert into…
Shahrukh Khan
  • 119
  • 1
  • 1
  • 4
1
vote
1 answer

SQLMAP : Unable to dump any data

I am working on a black box web application pentesting project for a client and while testing found an error-based SQL injection. I went on to exploit it using SQLMAP, I retrieved the Database names, Tables names, and Column names but when I try to…
paU1i
  • 181
  • 1
  • 3
  • 9
0
votes
1 answer

sqlmap cannot find a dispatched vulnerability

I have a known sqli vulnerability that I'd like to try out with sqlmap in a web application; however, I don't believe sqlmap is able to figure this one out. Here's how the system works: Inject on a given parameter, s, in Thread 1. Thread 1…
tophersmith116
  • 103
  • 3
0
votes
1 answer

Injecting a query within a query that has an order by or group by function

Select * from Shop where Item = $item order by ProductNum desc I found this vulnerability within a website. To test if there's any vulnerabilities I inserted a single quotation after itemshop_secure.php?section= And I stumbled upon this error…
PNC
  • 111
  • 1
0
votes
1 answer

SQLMAP setting parameter

I am testing my own flask application that should be vulnerable. I am using this in SQlmap: sqlmap -u "https://test.heroku.com/checkusername/student*" but the requests with payloads I am receiving contain student+payload. I think it's not working…
fagner nunes
  • 3
  • 2
0
votes
1 answer

Why are MySQL injections more limited than MS-SQL attacks?

I was watching the DEFCON 17: Advanced SQL Injection video here. At 15:00, when discussing the various classes and types of SQL injection attackS, the speaker stated With MySQL you really only have Union-based and Blind Provided the above…
questioner
  • 171
  • 2
  • 11
1 2 3
10 11