[sqlmap-users] custom injection marker and eval
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] custom injection marker and eval
|
From: Sebastian N. <seb...@sy...> - 2013-08-20 13:39:20
|
Hi,
is there a way to access the value of elements in eval-code, if custom
injection markers are used?
Why am I asking?
==
$ ~/Downloads/sqlmap/sqlmap.py -u
"http://localhost/test.php?argl=1*&foo=2" --eval="print dir()"
[..]
[*] starting at 15:37:51
custom injection marking character ('*') found in option '-u'. Do you
want to process it? [Y/n/q]
[15:37:52] [INFO] testing connection to the target URL
['__builtins__']
[15:37:52] [INFO] heuristics detected web page charset 'ascii'
[..]
==
Is there a way to access the parameters?
Thanks!
Sebastian
|
