Discover and read the best of Twitter Threads about #bugbountyhelp
Most recents (1)
Hey ReconOne fam! I've personally used Sqlmap on several occasions and it has proven to be a valuable tool in my security arsenal.
Let's dive into some of its features
๐๐งต
#sqlmap #sqli #bugbountyhelp #bugbounty #AttackSurface
Let's dive into some of its features
๐๐งต
#sqlmap #sqli #bugbountyhelp #bugbounty #AttackSurface
1/7 Sqlmap against potential vulnerable Page
$ sqlmap -u https://example. com/page?id=1 -v 3
$ sqlmap -u https://example. com/list --data id=1
$ sqlmap -u https://example. com/internal --cookie=PHPSESSIDabcdef
$ sqlmap -u https://example. com/page?id=1 -v 3
$ sqlmap -u https://example. com/list --data id=1
$ sqlmap -u https://example. com/internal --cookie=PHPSESSIDabcdef
2/7 Test injection in a specific parameter
$ sqlmap -u https://example. com/page? id=1&page=4&sort=desc&env=*
$ sqlmap -u https://example. com/form --data 'name=asd&page=4&role=admin' -p role
$ sqlmap -u https://example. com/page? id=1&page=4&sort=desc&env=*
$ sqlmap -u https://example. com/form --data 'name=asd&page=4&role=admin' -p role
