sqlmap-users — sqlmap users mailing list

Re: [sqlmap-users] (no subject)

[a d. <deh...@gm...>]

Hi


Thanks;

Yes of course it's exploitable .

As you see i have used --risk=3 before.

I think Sqlmap isn't able to handle it properly because there is custom
injection in name of parameter and also name is an array .
Any Opinion ?


Regards dehqan

On Fri, Oct 24, 2014 at 4:00 AM, Ryan Sears <rd...@mt...> wrote:

> // Grrr, stupid gmail. Didn't reply-all first time :-P
>
> Are you sure it's exploitable? Try upping the --level and --risk.
>
> The #1* means the first * character you put into the --data parameter.
> It's in lieu of saying something like "POST parameter 'derp' is not
> exploitable" if you pass in --data="derp=testme" and ask it to test the
> "derp" parameter.
>
> Ryan
>
> On Thu, Oct 23, 2014 at 5:14 AM, a dehqan <deh...@gm...> wrote:
>
>> Thanks man ;
>>
>> I want to send an array with query in its index as value of "name" POST
>> variable .
>>
>> Remember if i want inject it manually should try >
>> <input type="text" id="edit-name" name="name[1 ;UPDATE {users} SET pass=
>> 'test123'; -- ]" value="" size="60" maxlength="60" class="form-text
>> required error">
>>
>> So tried (sqlmap/1.0-dev) :
>>
>> python sqlmap.py -u "http://localhost//?id=n&ssid=w"
>> --data="name[0*]=name"  --risk=3 --flush-session --dbms=mysql
>>
>>
>> Sqlmap returns this error:
>>
>> [WARNING] (custom) POST parameter '#1*' is not injectable
>>
>> What does # mean here ?
>>
>> And how to make it work under sqlmap ?
>>
>> Regards
>>
>> On Thu, Oct 23, 2014 at 11:00 AM, Miroslav Stampar <
>> mir...@gm...> wrote:
>>
>>> Hi.
>>>
>>> You need to put a custom injection mark * at the place where you want
>>> sqlmap to inject. For example:
>>>
>>> ...name[1*]
>>>
>>> Bye
>>>
>>> p.s. your example with SELECT is not a proper one as queries are usually
>>> not supported in stacking
>>>
>>> On Thu, Oct 23, 2014 at 7:43 AM, a dehqan <deh...@gm...> wrote:
>>>
>>>> Hi Guys ,
>>>>
>>>> Is Sqlmap able to send an array instead of string while injecting?
>>>>
>>>> Like situation we  have html form and we want manually send post
>>>> variable 'name' this way (value is obtained from array) :
>>>>
>>>> name="name[1 ;select * from users -- ]
>>>>
>>>> I want do it with Sqlmap , but how ?
>>>>
>>>>
>>>> Regards dehqan
>>>>
>>>
>>>
>>>
>>> --
>>> Miroslav Stampar
>>> http://about.me/stamparm
>>>
>>
>>
>>
>> ------------------------------------------------------------------------------
>>
>> _______________________________________________
>> sqlmap-users mailing list
>> sql...@li...
>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>>
>>
>

Re: [sqlmap-users] (no subject)

[Ryan S. <rd...@mt...>]

// Grrr, stupid gmail. Didn't reply-all first time :-P

Are you sure it's exploitable? Try upping the --level and --risk.

The #1* means the first * character you put into the --data parameter. It's
in lieu of saying something like "POST parameter 'derp' is not exploitable"
if you pass in --data="derp=testme" and ask it to test the "derp"
parameter.

Ryan

On Thu, Oct 23, 2014 at 5:14 AM, a dehqan <deh...@gm...> wrote:

> Thanks man ;
>
> I want to send an array with query in its index as value of "name" POST
> variable .
>
> Remember if i want inject it manually should try >
> <input type="text" id="edit-name" name="name[1 ;UPDATE {users} SET pass=
> 'test123'; -- ]" value="" size="60" maxlength="60" class="form-text
> required error">
>
> So tried (sqlmap/1.0-dev) :
>
> python sqlmap.py -u "http://localhost//?id=n&ssid=w"
> --data="name[0*]=name"  --risk=3 --flush-session --dbms=mysql
>
>
> Sqlmap returns this error:
>
> [WARNING] (custom) POST parameter '#1*' is not injectable
>
> What does # mean here ?
>
> And how to make it work under sqlmap ?
>
> Regards
>
> On Thu, Oct 23, 2014 at 11:00 AM, Miroslav Stampar <
> mir...@gm...> wrote:
>
>> Hi.
>>
>> You need to put a custom injection mark * at the place where you want
>> sqlmap to inject. For example:
>>
>> ...name[1*]
>>
>> Bye
>>
>> p.s. your example with SELECT is not a proper one as queries are usually
>> not supported in stacking
>>
>> On Thu, Oct 23, 2014 at 7:43 AM, a dehqan <deh...@gm...> wrote:
>>
>>> Hi Guys ,
>>>
>>> Is Sqlmap able to send an array instead of string while injecting?
>>>
>>> Like situation we  have html form and we want manually send post
>>> variable 'name' this way (value is obtained from array) :
>>>
>>> name="name[1 ;select * from users -- ]
>>>
>>> I want do it with Sqlmap , but how ?
>>>
>>>
>>> Regards dehqan
>>>
>>
>>
>>
>> --
>> Miroslav Stampar
>> http://about.me/stamparm
>>
>
>
>
> ------------------------------------------------------------------------------
>
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>

Re: [sqlmap-users] (no subject)

[a d. <deh...@gm...>]

Thanks man ;

I want to send an array with query in its index as value of "name" POST
variable .

Remember if i want inject it manually should try >
<input type="text" id="edit-name" name="name[1 ;UPDATE {users} SET pass=
'test123'; -- ]" value="" size="60" maxlength="60" class="form-text
required error">

So tried (sqlmap/1.0-dev) :

python sqlmap.py -u "http://localhost//?id=n&ssid=w"
--data="name[0*]=name"  --risk=3 --flush-session --dbms=mysql


Sqlmap returns this error:

[WARNING] (custom) POST parameter '#1*' is not injectable

What does # mean here ?

And how to make it work under sqlmap ?

Regards

On Thu, Oct 23, 2014 at 11:00 AM, Miroslav Stampar <
mir...@gm...> wrote:

> Hi.
>
> You need to put a custom injection mark * at the place where you want
> sqlmap to inject. For example:
>
> ...name[1*]
>
> Bye
>
> p.s. your example with SELECT is not a proper one as queries are usually
> not supported in stacking
>
> On Thu, Oct 23, 2014 at 7:43 AM, a dehqan <deh...@gm...> wrote:
>
>> Hi Guys ,
>>
>> Is Sqlmap able to send an array instead of string while injecting?
>>
>> Like situation we  have html form and we want manually send post variable
>> 'name' this way (value is obtained from array) :
>>
>> name="name[1 ;select * from users -- ]
>>
>> I want do it with Sqlmap , but how ?
>>
>>
>> Regards dehqan
>>
>
>
>
> --
> Miroslav Stampar
> http://about.me/stamparm
>

Re: [sqlmap-users] (no subject)

[Miroslav S. <mir...@gm...>]

Hi.

You need to put a custom injection mark * at the place where you want
sqlmap to inject. For example:

...name[1*]

Bye

p.s. your example with SELECT is not a proper one as queries are usually
not supported in stacking

On Thu, Oct 23, 2014 at 7:43 AM, a dehqan <deh...@gm...> wrote:

> Hi Guys ,
>
> Is Sqlmap able to send an array instead of string while injecting?
>
> Like situation we  have html form and we want manually send post variable
> 'name' this way (value is obtained from array) :
>
> name="name[1 ;select * from users -- ]
>
> I want do it with Sqlmap , but how ?
>
>
> Regards dehqan
>



-- 
Miroslav Stampar
http://about.me/stamparm

[sqlmap-users] (no subject)

[a d. <deh...@gm...>]

Hi Guys ,

Is Sqlmap able to send an array instead of string while injecting?

Like situation we  have html form and we want manually send post variable
'name' this way (value is obtained from array) :

name="name[1 ;select * from users -- ]

I want do it with Sqlmap , but how ?


Regards dehqan

Re: [sqlmap-users] Sqlmap Bug

[Miroslav S. <mir...@gm...>]

Hi.

Thank you for your report and find it fixed now.

Kind regards,
Miroslav Stampar

On Wed, Oct 22, 2014 at 9:53 PM, Seb <aff...@gm...> wrote:

> [19:49:15] [CRITICAL] unhandled exception occurred in
> sqlmap/1.0-dev-nongit-20141022. It is recommended to retry your run with
> the latest development version from official GitHub repository at
> 'https://github.com/sqlmapproject/sqlmap'. If the exception persists,
> please open a new issue at
> 'https://github.com/sqlmapproject/sqlmap/issues/new' (or less preferably
> send by e-mail to 'sql...@li...') with the
> following text and any other information required to reproduce the bug.
> The developers will try to reproduce the bug, fix it accordingly and get
> back to you
> sqlmap version: 1.0-dev
> Python version: 2.6.5
> Operating system: posix
> Command line: sqlmap.py -u
> *****************************************************
> Technique: None
> Back-end DBMS: None (identified)
> Traceback (most recent call last):
>    File "sqlmap.py", line 97, in main
>      start()
>    File "/home/sqlmap-master/lib/controller/controller.py", line 369, in
> start
>      if not checkConnection(suppressOutput=conf.forms) or not
> checkString() or not checkRegexp():
>    File "/home/sqlmap-master/lib/controller/checks.py", line 1269, in
> checkConnection
>      page, _ = Request.queryPage(content=True, noteResponseTime=False)
>    File "/home/sqlmap-master/lib/request/connect.py", line 900, in
> queryPage
>      page, headers, code = Connect.getPage(url=uri, get=get, post=post,
> cookie=cookie, ua=ua, referer=referer, host=host, silent=silent,
> method=method, auxHeaders=auxHeaders, response=response,
> raise404=raise404, ignoreTimeout=timeBasedCompare)
>    File "/home/sqlmap-master/lib/request/connect.py", line 319, in getPage
>      headers = forgeHeaders({HTTP_HEADER.COOKIE: cookie,
> HTTP_HEADER.USER_AGENT: ua, HTTP_HEADER.REFERER: referer})
>    File "/home/sqlmap-master/lib/request/basic.py", line 56, in
> forgeHeaders
>      headers.update(items or {})
>    File "/home/sqlmap-master/thirdparty/odict/odict.py", line 691, in
> update
>      raise TypeError('undefined order, cannot get items from dict')
> TypeError: undefined order, cannot get items from dict
>
>
>
> ------------------------------------------------------------------------------
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>



-- 
Miroslav Stampar
http://about.me/stamparm

[sqlmap-users] Sqlmap Bug

[Seb <aff...@gm...>]

[19:49:15] [CRITICAL] unhandled exception occurred in 
sqlmap/1.0-dev-nongit-20141022. It is recommended to retry your run with 
the latest development version from official GitHub repository at 
'https://github.com/sqlmapproject/sqlmap'. If the exception persists, 
please open a new issue at 
'https://github.com/sqlmapproject/sqlmap/issues/new' (or less preferably 
send by e-mail to 'sql...@li...') with the 
following text and any other information required to reproduce the bug. 
The developers will try to reproduce the bug, fix it accordingly and get 
back to you
sqlmap version: 1.0-dev
Python version: 2.6.5
Operating system: posix
Command line: sqlmap.py -u 
*****************************************************
Technique: None
Back-end DBMS: None (identified)
Traceback (most recent call last):
   File "sqlmap.py", line 97, in main
     start()
   File "/home/sqlmap-master/lib/controller/controller.py", line 369, in 
start
     if not checkConnection(suppressOutput=conf.forms) or not 
checkString() or not checkRegexp():
   File "/home/sqlmap-master/lib/controller/checks.py", line 1269, in 
checkConnection
     page, _ = Request.queryPage(content=True, noteResponseTime=False)
   File "/home/sqlmap-master/lib/request/connect.py", line 900, in queryPage
     page, headers, code = Connect.getPage(url=uri, get=get, post=post, 
cookie=cookie, ua=ua, referer=referer, host=host, silent=silent, 
method=method, auxHeaders=auxHeaders, response=response, 
raise404=raise404, ignoreTimeout=timeBasedCompare)
   File "/home/sqlmap-master/lib/request/connect.py", line 319, in getPage
     headers = forgeHeaders({HTTP_HEADER.COOKIE: cookie, 
HTTP_HEADER.USER_AGENT: ua, HTTP_HEADER.REFERER: referer})
   File "/home/sqlmap-master/lib/request/basic.py", line 56, in forgeHeaders
     headers.update(items or {})
   File "/home/sqlmap-master/thirdparty/odict/odict.py", line 691, in update
     raise TypeError('undefined order, cannot get items from dict')
TypeError: undefined order, cannot get items from dict

[sqlmap-users] exploiting mysql 3.x

[R W <rw8...@gm...>]

Hi all,

Just looking for any tips on exploiting MySQL 3.x with sqlmap. It's a
pretty standard injection, but the best I've been able to do is extract the
database name with sqlmap. I'm using the B technique, have tried --hex,
--no-cast, etc, but none of the functions sqlmap is using exist in MySQL
3.x, e.g. union, cast, convert, so I'm reduced to manual exploitation with
scripts and mid(), char(), etc.

No big deal, just wondering if there's a quick way to get a bit further
with sqlmap before I go back to manual exploitation through Burp.

Thanks

[sqlmap-users] sqlmap changes PUT to POST

[Dennis <kor...@ya...>]

Hi everybody,

if I pass a PUT request via "-r" to sqlmap, it will send requests to the
server using POST.
1. Is this intended?
2. If yes, is there a way to switch it off?

Thanks in advance!
Dennis

Re: [sqlmap-users] sqlmap no colors!

[Miroslav S. <mir...@gm...>]

You have a reduced version of Python, commonly a result of custom build.
Please get the official build to get everything up and running.

Bye
On Oct 16, 2014 2:27 AM, "FLO" <neu...@ch...> wrote:

> Hey,
> When i want to start sqlmap, i type in "python sqlmap.py", and when i do
> this, i get following error message:
> "missing one or more core extensions ('gzip' , 'ssl' , 'sqlite' ,
> 'zlib') most probably because current version of Python has been built
> without appropriate dev packages (e.g. 'libsqlite3-dev')"
> Do you know what that mean?
> I use freebsd 10.0.
> Thx4help..
>
> ---
> Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus
> Schutz ist aktiv.
> http://www.avast.com
>
>
>
> ------------------------------------------------------------------------------
> Comprehensive Server Monitoring with Site24x7.
> Monitor 10 servers for $9/Month.
> Get alerted through email, SMS, voice calls or mobile push notifications.
> Take corrective actions from your mobile device.
> http://p.sf.net/sfu/Zoho
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>

Re: [sqlmap-users] sqlmap no colors!

[FLO <neu...@ch...>]

Hey,
When i want to start sqlmap, i type in "python sqlmap.py", and when i do 
this, i get following error message:
"missing one or more core extensions ('gzip' , 'ssl' , 'sqlite' , 
'zlib') most probably because current version of Python has been built 
without appropriate dev packages (e.g. 'libsqlite3-dev')"
Do you know what that mean?
I use freebsd 10.0.
Thx4help..

---
Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus Schutz ist aktiv.
http://www.avast.com

Re: [sqlmap-users] sqlmap security

[Miroslav S. <mir...@gm...>]

Both are secure if you know what are you doing. Also, --tor should work out
of box if you have a Tor bundle installed (e.g. Vidalia)

Bye
On Oct 13, 2014 8:35 PM, "FLO" <neu...@ch...> wrote:

> Hey,
> I am curious about the security level of sqlmap.. is it more secure to
> use --tor or --proxy?
> And is it enough to write --tor, when my tor generally is configured well?
> Or do i have to specifiy in sqlmap an specific socks?!
> Thx for an answer,
> Flo
>
> ---
> Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus
> Schutz ist aktiv.
> http://www.avast.com
>
>
>
> ------------------------------------------------------------------------------
> Comprehensive Server Monitoring with Site24x7.
> Monitor 10 servers for $9/Month.
> Get alerted through email, SMS, voice calls or mobile push notifications.
> Take corrective actions from your mobile device.
> http://p.sf.net/sfu/Zoho
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>

[sqlmap-users] sqlmap security

[FLO <neu...@ch...>]

Hey,
I am curious about the security level of sqlmap.. is it more secure to 
use --tor or --proxy?
And is it enough to write --tor, when my tor generally is configured well?
Or do i have to specifiy in sqlmap an specific socks?!
Thx for an answer,
Flo

---
Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus Schutz ist aktiv.
http://www.avast.com

Re: [sqlmap-users] sqlmap no colors!

[Miroslav S. <mir...@gm...>]

You are most probably running the old version of sqlmap (installed on your
system via system repository).

Please do this:

1) cd /tmp
2) git clone https://github.com/sqlmapproject/sqlmap.git
3) cd /tmp/sqlmap
4) python sqlmap.py

Bye

On Sun, Oct 12, 2014 at 9:45 PM, FLO <neu...@ch...> wrote:

> Hey Guys,
> I use sqlmap 0.9 at freebsd 10.0 system, and i have the problem, that in
> my shell: when i run the command "sqlmap" there is no color highlighting!
> I only have black letters, and white background. Normally i have colours
> in my shell!
> So what to do? And also: I dont know why, but i cant start sqlmap with
> the common command: "python sqlmap.py", only with the command "sqlmap"
> it works.
> Would be fine, if you can help me!
> Thx,
> Flo
>
> ---
> Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus
> Schutz ist aktiv.
> http://www.avast.com
>
>
>
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
> http://p.sf.net/sfu/Zoho
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>



-- 
Miroslav Stampar
http://about.me/stamparm

Re: [sqlmap-users] sqlmap no colors!

[André S. <and...@gm...>]

Sync the last sqlmap version.

Cheers

2014-10-12 20:45 GMT+01:00 FLO <neu...@ch...>:
> Hey Guys,
> I use sqlmap 0.9 at freebsd 10.0 system, and i have the problem, that in
> my shell: when i run the command "sqlmap" there is no color highlighting!
> I only have black letters, and white background. Normally i have colours
> in my shell!
> So what to do? And also: I dont know why, but i cant start sqlmap with
> the common command: "python sqlmap.py", only with the command "sqlmap"
> it works.
> Would be fine, if you can help me!
> Thx,
> Flo
>
> ---
> Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus Schutz ist aktiv.
> http://www.avast.com
>
>
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
> http://p.sf.net/sfu/Zoho
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users

Re: [sqlmap-users] bugs

[Miroslav S. <mir...@gm...>]

Hi.

It should be fixed now.

Bye

On Mon, Oct 13, 2014 at 11:24 AM, PentestXss <pen...@12...> wrote:

> [17:18:14] [CRITICAL] unhandled exception occurred in
> sqlmap/1.0-dev-nongit-20141013. It is recommended to retry your run with
> the latest development version from official GitHub repository at '
> https://github.com/sqlmapproject/sqlmap'. If the exception persists,
> please open a new issue at '
> https://github.com/sqlmapproject/sqlmap/issues/new' (or less preferably
> send by e-mail to 'sql...@li...') with the
> following text and any other information required to reproduce the bug. The
> developers will try to reproduce the bug, fix it accordingly and get back
> to you
> sqlmap version: 1.0-dev
> Python version: 2.6.5
> Operating system: posix
> Command line: sqlmap.py
> --url=**************************************************** --random-agent
> --threads=5 --dbms=mssqlserver --current-user --current-db -v 3 --os-shell
> Back-end DBMS: Microsoft SQL Server (fingerprinted)
> Traceback (most recent call last):
>   File "sqlmap.py", line 97, in main
>     start()
>   File "/root/sqlmap-dev/lib/controller/controller.py", line 585, in start
>     action()
>   File "/root/sqlmap-dev/lib/controller/action.py", line 160, in action
>     conf.dbmsHandler.osShell()
>   File "/root/sqlmap-dev/plugins/generic/takeover.py", line 83, in osShell
>     self.shell()
>   File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 144, in shell
>     self.runCmd(command)
>   File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 86, in runCmd
>     output = self.evalCmd(cmd)
>   File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 66, in evalCmd
>     retVal = self.xpCmdshellEvalCmd(cmd, first, last)
>   File "/root/sqlmap-dev/lib/takeover/xp_cmdshell.py", line 229, in
> xpCmdshellEvalCmd
>     if not (output[0] or "").strip():
> AttributeError: 'list' object has no attribute 'strip'
>
>
>
>
>
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
> http://p.sf.net/sfu/Zoho
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>


-- 
Miroslav Stampar
http://about.me/stamparm

[sqlmap-users] bugs

[PentestXss <pen...@12...>]

[17:18:14] [CRITICAL] unhandled exception occurred in sqlmap/1.0-dev-nongit-20141013. It is recommended to retry your run with the latest development version from official GitHub repository at 'https://github.com/sqlmapproject/sqlmap'. If the exception persists, please open a new issue at 'https://github.com/sqlmapproject/sqlmap/issues/new' (or less preferably send by e-mail to 'sql...@li...') with the following text and any other information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you
sqlmap version: 1.0-dev
Python version: 2.6.5
Operating system: posix
Command line: sqlmap.py --url=**************************************************** --random-agent --threads=5 --dbms=mssqlserver --current-user --current-db -v 3 --os-shell
Back-end DBMS: Microsoft SQL Server (fingerprinted)
Traceback (most recent call last):
  File "sqlmap.py", line 97, in main
    start()
  File "/root/sqlmap-dev/lib/controller/controller.py", line 585, in start
    action()
  File "/root/sqlmap-dev/lib/controller/action.py", line 160, in action
    conf.dbmsHandler.osShell()
  File "/root/sqlmap-dev/plugins/generic/takeover.py", line 83, in osShell
    self.shell()
  File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 144, in shell
    self.runCmd(command)
  File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 86, in runCmd
    output = self.evalCmd(cmd)
  File "/root/sqlmap-dev/lib/takeover/abstraction.py", line 66, in evalCmd
    retVal = self.xpCmdshellEvalCmd(cmd, first, last)
  File "/root/sqlmap-dev/lib/takeover/xp_cmdshell.py", line 229, in xpCmdshellEvalCmd
    if not (output[0] or "").strip():
AttributeError: 'list' object has no attribute 'strip'

[sqlmap-users] sqlmap no colors!

[FLO <neu...@ch...>]

Hey Guys,
I use sqlmap 0.9 at freebsd 10.0 system, and i have the problem, that in 
my shell: when i run the command "sqlmap" there is no color highlighting!
I only have black letters, and white background. Normally i have colours 
in my shell!
So what to do? And also: I dont know why, but i cant start sqlmap with 
the common command: "python sqlmap.py", only with the command "sqlmap" 
it works.
Would be fine, if you can help me!
Thx,
Flo

---
Diese E-Mail ist frei von Viren und Malware, denn der avast! Antivirus Schutz ist aktiv.
http://www.avast.com

Re: [sqlmap-users] Sql test behind internal proxy

[Miroslav S. <mir...@gm...>]

"no i can get to the the page if i change my firefox browser proxy and add
correct test proxy ."

<- you need to put that same proxy information into sqlmap by using option
--proxy (e.g. --proxy="http://192.168.10.2:8000")

Bye

On Thu, Oct 9, 2014 at 11:38 AM, zana sadi <zan...@ho...> wrote:

> Hi there
>
> I'm wondering if you can kindly help.
>
> I wan to test SQLmap on test enviroment .
>
> so basically we have an application which we would like to test it against
> sql injection attacks,
> the issue is the application is behind a proxy which is internal.
>
> no i can get to the the page if i change my firefox browser proxy and add
> correct test proxy .
>
> The issue is we don't want to test on live database. so wondering if you
> can possibly help? how to go about it
>
>
> Regards
>
> Sadi
>
>
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
>
> http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>


-- 
Miroslav Stampar
http://about.me/stamparm

Re: [sqlmap-users] (no subject)

[Hans W. <wur...@go...>]

Maybe this link will help You in your quest...
https://github.com/sqlmapproject/sqlmap/wiki/Usage

> Am 30.09.2014 um 14:18 schrieb Edwin Echeverria <hol...@gm...>:
> 
> Why do I get this error in the CMD?<hjg.jpg>
> ​
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
> http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users

[sqlmap-users] Sql test behind internal proxy

[zana s. <zan...@ho...>]

Hi there 

I'm wondering if you can kindly help.

I wan to test SQLmap on test enviroment . 

so basically we have an application which we would like to test it against sql injection attacks,
the issue is the application is behind a proxy which is internal.
 
no i can get to the the page if i change my firefox browser proxy and add correct test proxy .

The issue is we don't want to test on live database. so wondering if you can possibly help? how to go about it 


Regards 

Sadi
 		 	   		  

Re: [sqlmap-users] querystrings with *'s and no spaces

[Robin W. <ro...@di...>]

On 1 October 2014 12:37, Miroslav Stampar <mir...@gm...>
wrote:

> -u "www.target.com/vuln?string=the" --tamper=space2comment
>
> bye
>
> p.s. please don't use any SQLi inside provided parameter values
>

That fixed it, its been a while since I got SQLi on a job so was not
thinking properly.

Robin


> On Wed, Oct 1, 2014 at 11:17 AM, Robin Wood <ro...@di...nja> wrote:
>
>> It was pointed out that I should be URL encoding the *s which removes
>> that as a problem but it still isn't quite working properly, probably
>> because of the spaces. Got limited time on this test so going to leave it
>> for now and will build a lab to look at it properly later.
>>
>> Robin
>>
>> On 1 October 2014 09:54, Robin Wood <ro...@di...nja> wrote:
>>
>>> I've got the following vulnerable querystring value:
>>>
>>> string=the%%22/**/and/**/1=1/**/and/**/%22%%22=%22
>>>
>>> Where with 1=1 I get data back, 1=0 is false so no data.
>>>
>>> I can't use spaces which is why I've have to go for /**/.
>>>
>>> How do I tell sqlmap where the injection point is and to use /**/
>>> instead of spaces?
>>>
>>> Robin
>>>
>>
>>
>>
>> ------------------------------------------------------------------------------
>> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
>> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
>> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
>> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
>>
>> http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
>> _______________________________________________
>> sqlmap-users mailing list
>> sql...@li...
>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>>
>>
>
>
> --
> Miroslav Stampar
> http://about.me/stamparm
>

Re: [sqlmap-users] querystrings with *'s and no spaces

[Miroslav S. <mir...@gm...>]

-u "www.target.com/vuln?string=the" --tamper=space2comment

bye

p.s. please don't use any SQLi inside provided parameter values

On Wed, Oct 1, 2014 at 11:17 AM, Robin Wood <ro...@di...nja> wrote:

> It was pointed out that I should be URL encoding the *s which removes that
> as a problem but it still isn't quite working properly, probably because of
> the spaces. Got limited time on this test so going to leave it for now and
> will build a lab to look at it properly later.
>
> Robin
>
> On 1 October 2014 09:54, Robin Wood <ro...@di...nja> wrote:
>
>> I've got the following vulnerable querystring value:
>>
>> string=the%%22/**/and/**/1=1/**/and/**/%22%%22=%22
>>
>> Where with 1=1 I get data back, 1=0 is false so no data.
>>
>> I can't use spaces which is why I've have to go for /**/.
>>
>> How do I tell sqlmap where the injection point is and to use /**/ instead
>> of spaces?
>>
>> Robin
>>
>
>
>
> ------------------------------------------------------------------------------
> Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer
> Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports
> Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper
> Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer
>
> http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
>


-- 
Miroslav Stampar
http://about.me/stamparm

[sqlmap-users] querystrings with *'s and no spaces

[Robin W. <ro...@di...>]

I've got the following vulnerable querystring value:

string=the%%22/**/and/**/1=1/**/and/**/%22%%22=%22

Where with 1=1 I get data back, 1=0 is false so no data.

I can't use spaces which is why I've have to go for /**/.

How do I tell sqlmap where the injection point is and to use /**/ instead
of spaces?

Robin

Re: [sqlmap-users] querystrings with *'s and no spaces

[Robin W. <ro...@di...>]

It was pointed out that I should be URL encoding the *s which removes that
as a problem but it still isn't quite working properly, probably because of
the spaces. Got limited time on this test so going to leave it for now and
will build a lab to look at it properly later.

Robin

On 1 October 2014 09:54, Robin Wood <ro...@di...nja> wrote:

> I've got the following vulnerable querystring value:
>
> string=the%%22/**/and/**/1=1/**/and/**/%22%%22=%22
>
> Where with 1=1 I get data back, 1=0 is false so no data.
>
> I can't use spaces which is why I've have to go for /**/.
>
> How do I tell sqlmap where the injection point is and to use /**/ instead
> of spaces?
>
> Robin
>