Thread: [sqlmap-users] feature request // csrf-token detection for forms

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hello,

I think it would great if sqlmap could detect which post-parameter 
contains the csrf-token, if any,
or select the toke manually.

kind regards,
a nice guy

CSRF protection bypass is in the TODO list, it will be implement at some point.

Bernardo

On 14 March 2012 18:57, a nice guy <ae9...@to...> wrote:
> Hello,
>
> I think it would great if sqlmap could detect which post-parameter
> contains the csrf-token, if any,
> or select the toke manually.
>
> kind regards,
> a nice guy
>
> ------------------------------------------------------------------------------
> Virtualization & Cloud Management Using Capacity Planning
> Cloud computing makes use of virtualization - but cloud computing
> also focuses on allowing computing to be delivered as a service.
> http://www.accelacomm.com/jaw/sfnl/114/51521223/
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users

-- 
Bernardo Damele A. G.

Homepage: http://about.me/inquis
E-mail / Jabber: bernardo.damele (at) gmail.com
Mobile: +447788962949 (UK 07788962949)