ivuorinen/cheatsheet-tldr
1
0
Fork 0
mirror of https://github.com/ivuorinen/cheatsheet-tldr.git synced 2026-02-07 17:45:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

Move pages under tldr, lint run.sh, update docs

Browse Source
This commit is contained in:
Ismo Vuorinen
2024-02-21 13:58:43 +02:00
parent 3d653cc7e6
commit 2c475fa62d
4806 changed files with 36 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
tldr/sqlmap Normal file
View File

@@ -0,0 +1,29 @@
---
syntax: markdown
tags: [tldr, common]
source: https://github.com/tldr-pages/tldr.git
---
# sqlmap
> Detect and exploit SQL injection flaws.
> More information: <https://sqlmap.org>.
- Run sqlmap against a single target URL:
`python sqlmap.py -u "{{http://www.target.com/vuln.php?id=1}}"`
- Send data in a POST request (`--data` implies POST request):
`python sqlmap.py -u "{{http://www.target.com/vuln.php}}" --data="{{id=1}}"`
- Change the parameter delimiter (& is the default):
`python sqlmap.py -u "{{http://www.target.com/vuln.php}}" --data="{{query=foobar;id=1}}" --param-del="{{;}}"`
- Select a random `User-Agent` from `./txt/user-agents.txt` and use it:
`python sqlmap.py -u "{{http://www.target.com/vuln.php}}" --random-agent`
- Provide user credentials for HTTP protocol authentication:
`python sqlmap.py -u "{{http://www.target.com/vuln.php}}" --auth-type {{Basic}} --auth-cred "{{testuser:testpass}}"`