Force
1,554
Rep
Rep
17,188
Likes
Likes
Verified Carder
- Posts
- 53,796
- Threads
- 1,598
- Joined
- May 2018
How to dump a database with SQLMAP For any Website
Step one: Installation
Open python file so please install version 2 https://www.python.org/ftp/python/2.7.9/python-2.7.9.msi
It should create a folder inside your C:\ drive called python27, this is needed for later.
Next download SQLMap https://github.com/sqlmapproject/sqlmap/zipball/master (RENAME IT SQLMAP!)
and put this inside the python27 folder so the path is C:\Python27\sqlmap
Step two: Opening the python file for basic help
Open CMD and type CD C:\python27\sqlmap
Ok, we are now in the sqlmap directory! Type sqlmap.py -h for details about all the functions in sqlmap.
Step three: Scanning!
Ok, now it gets good, for this to work you already need to have a vulnerable website. Type: sqlmap.py -u VULN
If it worked you will see something like this
Step four: Idk let's just carry on.
Next we have to identify there databases, press the UP arrow will load the last executed command and press space and then --dbs
and then dada! We have pulled the database.
Now we have to access it which is super dooper easy! Press the Up arrow and delete --dbs and type --tables -D and then the database you want.
So? What did we just do? --tables tells sqlmap we are looking for tables and -D (MUST BE CAPITAL!) tells sqlmap we want to open that database.
If it all goes to plan it should look like this.
Now we have to open the tables for columns!
Press UP arrow, delete --tables and replace it with --columns which tells the user we want to open columns then type -T (CAPITAL!) and then the table you want to open! We are going for user
ass so a_admins seems like a good start? full code:
Just like before we should see another table this been a_admins only
We see two things of interested, db_username and db_password, next tast is to pull and then dump these into a file.
Once again press the UP arrow and simply add -C database,database replacing them with the ones you want and then --dump at the end, this is telling sqlmap we want to access both of these columns and then dump them into a file which creates our combos!
And we are Done .
Step one: Installation
Open python file so please install version 2 https://www.python.org/ftp/python/2.7.9/python-2.7.9.msi
It should create a folder inside your C:\ drive called python27, this is needed for later.
Next download SQLMap https://github.com/sqlmapproject/sqlmap/zipball/master (RENAME IT SQLMAP!)
and put this inside the python27 folder so the path is C:\Python27\sqlmap
Step two: Opening the python file for basic help
Open CMD and type CD C:\python27\sqlmap
Ok, we are now in the sqlmap directory! Type sqlmap.py -h for details about all the functions in sqlmap.
Step three: Scanning!
Ok, now it gets good, for this to work you already need to have a vulnerable website. Type: sqlmap.py -u VULN
If it worked you will see something like this
Step four: Idk let's just carry on.
Next we have to identify there databases, press the UP arrow will load the last executed command and press space and then --dbs
and then dada! We have pulled the database.
Now we have to access it which is super dooper easy! Press the Up arrow and delete --dbs and type --tables -D and then the database you want.
So? What did we just do? --tables tells sqlmap we are looking for tables and -D (MUST BE CAPITAL!) tells sqlmap we want to open that database.
If it all goes to plan it should look like this.
Now we have to open the tables for columns!
Press UP arrow, delete --tables and replace it with --columns which tells the user we want to open columns then type -T (CAPITAL!) and then the table you want to open! We are going for user
Just like before we should see another table this been a_admins only
We see two things of interested, db_username and db_password, next tast is to pull and then dump these into a file.
Once again press the UP arrow and simply add -C database,database replacing them with the ones you want and then --dump at the end, this is telling sqlmap we want to access both of these columns and then dump them into a file which creates our combos!
And we are Done .
