Elsa
AdWords Master
2
MONTHS
2 2 MONTHS OF SERVICE
LEVEL 1
100 XP
Today I'm gonna teach how how to get injectable URLs using sqlmap and saving a lot of time, let's start:
SQLMap has an argument to show you all the potential vulnerable URLs using your private dork (or not)
That argument is -g
Let me show you how it works:
I'm using windows, if you are using a linux distribution you must start with python sqlmap.py or ./sqlmap.py
I will try with a simple dork, the "index.php?id" one
So, I must write something like this: It asks me if I want to test that website, let's say yes
After that it will start to inject the website, as normal.
With this I hope you can save a lot of time searching vulnerable websites
SQLMap has an argument to show you all the potential vulnerable URLs using your private dork (or not)
That argument is -g
Let me show you how it works:
I'm using windows, if you are using a linux distribution you must start with python sqlmap.py or ./sqlmap.py
I will try with a simple dork, the "index.php?id" one
So, I must write something like this: It asks me if I want to test that website, let's say yes
After that it will start to inject the website, as normal.
With this I hope you can save a lot of time searching vulnerable websites