sqlmap is a really impressive tool. Look at how fast it identifies an SQL injection and enumerates the DB schema. This is not sped up!pic.twitter.com/j3cUHNTmu1
-
-
This is only the tip of the iceberg though. sqlmap can also simulate an SQL REPL and evaluate commands for you!pic.twitter.com/OhuPTf5Xja
-
More fun with sqlmap: if the database user is sufficiently privileged you can also read and write system files.
-
Of course it also has metasploit support!https://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database …
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.