mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2025-07-01 18:33:12 +03:00
Minor update
parent
ca612520c1
commit
796278720f
34
Usage.md
34
Usage.md
|
@ -9,8 +9,7 @@
|
||||||
-v VERBOSE Verbosity level: 0-6 (default 1)
|
-v VERBOSE Verbosity level: 0-6 (default 1)
|
||||||
|
|
||||||
Target:
|
Target:
|
||||||
At least one of these options has to be specified to set the source to
|
At least one of these options has to be provided to set the target(s)
|
||||||
get target URLs from
|
|
||||||
|
|
||||||
-d DIRECT Direct connection to the database
|
-d DIRECT Direct connection to the database
|
||||||
-u URL, --url=URL Target URL (e.g. "www.target.com/vuln.php?id=1")
|
-u URL, --url=URL Target URL (e.g. "www.target.com/vuln.php?id=1")
|
||||||
|
@ -47,13 +46,12 @@
|
||||||
--timeout=TIMEOUT Seconds to wait before timeout connection (default 30)
|
--timeout=TIMEOUT Seconds to wait before timeout connection (default 30)
|
||||||
--retries=RETRIES Retries when the connection timeouts (default 3)
|
--retries=RETRIES Retries when the connection timeouts (default 3)
|
||||||
--randomize=RPARAM Randomly change value for given parameter(s)
|
--randomize=RPARAM Randomly change value for given parameter(s)
|
||||||
--scope=SCOPE Regexp to filter targets from provided proxy log
|
|
||||||
--safe-url=SAFURL URL address to visit frequently during testing
|
--safe-url=SAFURL URL address to visit frequently during testing
|
||||||
--safe-freq=SAFREQ Test requests between two visits to a given safe URL
|
--safe-freq=SAFREQ Test requests between two visits to a given safe URL
|
||||||
--skip-urlencode Skip URL encoding of payload data
|
--skip-urlencode Skip URL encoding of payload data
|
||||||
--force-ssl Force usage of SSL/HTTPS
|
--force-ssl Force usage of SSL/HTTPS
|
||||||
--eval=EVALCODE Evaluate provided Python code before the request (e.g.
|
--hpp Use HTTP parameter pollution
|
||||||
"import hashlib;id2=hashlib.md5(id).hexdigest()")
|
--eval=EVALCODE Evaluate provided Python code before the request (e.g. "import hashlib;id2=hashlib.md5(id).hexdigest()")
|
||||||
|
|
||||||
Optimization:
|
Optimization:
|
||||||
These options can be used to optimize the performance of sqlmap
|
These options can be used to optimize the performance of sqlmap
|
||||||
|
@ -65,8 +63,7 @@
|
||||||
--threads=THREADS Max number of concurrent HTTP(s) requests (default 1)
|
--threads=THREADS Max number of concurrent HTTP(s) requests (default 1)
|
||||||
|
|
||||||
Injection:
|
Injection:
|
||||||
These options can be used to specify which parameters to test for,
|
These options can be used to specify which parameters to test for, provide custom injection payloads and optional tampering scripts
|
||||||
provide custom injection payloads and optional tampering scripts
|
|
||||||
|
|
||||||
-p TESTPARAMETER Testable parameter(s)
|
-p TESTPARAMETER Testable parameter(s)
|
||||||
--skip=SKIP Skip testing for given parameter(s)
|
--skip=SKIP Skip testing for given parameter(s)
|
||||||
|
@ -82,8 +79,7 @@
|
||||||
--tamper=TAMPER Use given script(s) for tampering injection data
|
--tamper=TAMPER Use given script(s) for tampering injection data
|
||||||
|
|
||||||
Detection:
|
Detection:
|
||||||
These options can be used to specify how to parse and compare page
|
These options can be used to customize the detection phase
|
||||||
content from HTTP responses when using blind SQL injection technique
|
|
||||||
|
|
||||||
--level=LEVEL Level of tests to perform (1-5, default 1)
|
--level=LEVEL Level of tests to perform (1-5, default 1)
|
||||||
--risk=RISK Risk of tests to perform (0-3, default 1)
|
--risk=RISK Risk of tests to perform (0-3, default 1)
|
||||||
|
@ -95,8 +91,7 @@
|
||||||
--titles Compare pages based only on their titles
|
--titles Compare pages based only on their titles
|
||||||
|
|
||||||
Techniques:
|
Techniques:
|
||||||
These options can be used to tweak testing of specific SQL injection
|
These options can be used to tweak testing of specific SQL injection techniques
|
||||||
techniques
|
|
||||||
|
|
||||||
--technique=TECH SQL injection techniques to use (default "BEUSTQ")
|
--technique=TECH SQL injection techniques to use (default "BEUSTQ")
|
||||||
--time-sec=TIMESEC Seconds to delay the DBMS response (default 5)
|
--time-sec=TIMESEC Seconds to delay the DBMS response (default 5)
|
||||||
|
@ -110,9 +105,7 @@
|
||||||
-f, --fingerprint Perform an extensive DBMS version fingerprint
|
-f, --fingerprint Perform an extensive DBMS version fingerprint
|
||||||
|
|
||||||
Enumeration:
|
Enumeration:
|
||||||
These options can be used to enumerate the back-end database
|
These options can be used to enumerate the back-end database management system information, structure and data contained in the tables. Moreover you can run your own SQL statements
|
||||||
management system information, structure and data contained in the
|
|
||||||
tables. Moreover you can run your own SQL statements
|
|
||||||
|
|
||||||
-a, --all Retrieve everything
|
-a, --all Retrieve everything
|
||||||
-b, --banner Retrieve DBMS banner
|
-b, --banner Retrieve DBMS banner
|
||||||
|
@ -158,16 +151,14 @@
|
||||||
--shared-lib=SHLIB Local path of the shared library
|
--shared-lib=SHLIB Local path of the shared library
|
||||||
|
|
||||||
File system access:
|
File system access:
|
||||||
These options can be used to access the back-end database management
|
These options can be used to access the back-end database management system underlying file system
|
||||||
system underlying file system
|
|
||||||
|
|
||||||
--file-read=RFILE Read a file from the back-end DBMS file system
|
--file-read=RFILE Read a file from the back-end DBMS file system
|
||||||
--file-write=WFILE Write a local file on the back-end DBMS file system
|
--file-write=WFILE Write a local file on the back-end DBMS file system
|
||||||
--file-dest=DFILE Back-end DBMS absolute filepath to write to
|
--file-dest=DFILE Back-end DBMS absolute filepath to write to
|
||||||
|
|
||||||
Operating system access:
|
Operating system access:
|
||||||
These options can be used to access the back-end database management
|
These options can be used to access the back-end database management system underlying operating system
|
||||||
system underlying operating system
|
|
||||||
|
|
||||||
--os-cmd=OSCMD Execute an operating system command
|
--os-cmd=OSCMD Execute an operating system command
|
||||||
--os-shell Prompt for an interactive operating system shell
|
--os-shell Prompt for an interactive operating system shell
|
||||||
|
@ -179,8 +170,7 @@
|
||||||
--tmp-path=TMPPATH Remote absolute path of temporary files directory
|
--tmp-path=TMPPATH Remote absolute path of temporary files directory
|
||||||
|
|
||||||
Windows registry access:
|
Windows registry access:
|
||||||
These options can be used to access the back-end database management
|
These options can be used to access the back-end database management system Windows registry
|
||||||
system Windows registry
|
|
||||||
|
|
||||||
--reg-read Read a Windows registry key value
|
--reg-read Read a Windows registry key value
|
||||||
--reg-add Write a Windows registry key value data
|
--reg-add Write a Windows registry key value data
|
||||||
|
@ -209,6 +199,8 @@
|
||||||
--parse-errors Parse and display DBMS error messages from responses
|
--parse-errors Parse and display DBMS error messages from responses
|
||||||
--pivot-column=P.. Pivot column name
|
--pivot-column=P.. Pivot column name
|
||||||
--save Save options to a configuration INI file
|
--save Save options to a configuration INI file
|
||||||
|
--scope=SCOPE Regexp to filter targets from provided proxy log
|
||||||
|
--test-filter=TE.. Select tests by payloads and/or titles (e.g. ROW)
|
||||||
--update Update sqlmap
|
--update Update sqlmap
|
||||||
|
|
||||||
Miscellaneous:
|
Miscellaneous:
|
||||||
|
@ -221,13 +213,11 @@
|
||||||
--dependencies Check for missing (non-core) sqlmap dependencies
|
--dependencies Check for missing (non-core) sqlmap dependencies
|
||||||
--disable-coloring Disable console output coloring
|
--disable-coloring Disable console output coloring
|
||||||
--gpage=GOOGLEPAGE Use Google dork results from specified page number
|
--gpage=GOOGLEPAGE Use Google dork results from specified page number
|
||||||
--hpp Use HTTP parameter pollution
|
|
||||||
--identify-waf Make a through testing for a WAF/IPS/IDS protection
|
--identify-waf Make a through testing for a WAF/IPS/IDS protection
|
||||||
--mobile Imitate smartphone through HTTP User-Agent header
|
--mobile Imitate smartphone through HTTP User-Agent header
|
||||||
--page-rank Display page rank (PR) for Google dork results
|
--page-rank Display page rank (PR) for Google dork results
|
||||||
--purge-output Safely remove all content from output directory
|
--purge-output Safely remove all content from output directory
|
||||||
--smart Conduct through tests only if positive heuristic(s)
|
--smart Conduct through tests only if positive heuristic(s)
|
||||||
--test-filter=TE.. Select tests by payloads and/or titles (e.g. ROW)
|
|
||||||
--wizard Simple wizard interface for beginner users
|
--wizard Simple wizard interface for beginner users
|
||||||
|
|
||||||
## Output verbosity
|
## Output verbosity
|
||||||
|
|
Loading…
Reference in New Issue
Block a user