[sqlmap-users] proxy/non-proxy behavior is different
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] proxy/non-proxy behavior is different
|
From: <li...@li...> - 2009-04-16 13:00:00
|
I'm currently conducting a pen-test where I am successfully able to enumerate data from a database using sqlmap (blind sql injection). However, I've noticed that sqlmap acts differently using a proxy vs not using a proxy. My session cookies will working when not using the proxy in sqlmap. Using the proxy setting will not work (proxy through burp suite). When not using the proxy, sqlmap will use a GET request without the host:port information and just use the /url. When using a proxy, sqlmap will use http://hostname:port/url instead. Because of the differences, my session state will not work the same. Is there a way in sqlmap to have the proxy usage be the same as the non-proxy usage so that I can use the session credentials obtained using burp suite. |
