How do I test a log in protected website with sqlmap?
use the --cookie parameter / or capture the request, pass it on with the -r parameter / or use the --auth-type=ATYPE, --auth-cred=ACRED, and --auth-cert=ACERT parameters
How do I test a website with sqlmap that requires authentication?
use the --cookie parameter / or capture the request, pass it on with the -r parameter / or use the --auth-type=ATYPE, --auth-cred=ACRED, and --auth-cert=ACERT parameters
How do I test a website with sqlmap that uses JSON data?
automatically works with JSON
How do I test a website with sqlmap that uses XML data?
use the custom injection paramter pointer *
How do I test a website with sqlmap that uses SSL?
use the --force-ssl parameter
How do I tell sqlmap to try harder?
use the --level and --risk parameters
How do I automate a sql map scan?
use the --batch and --crawl 3
go to the http://192.168.79.175, then search the users and use burp to record the traffic.
Then click the traffic content in the burp and right click it and copy to file, name it as test.txt.