在職老D滲透日記day16:sqli-labs靶場通關（第24關）二次注入 sqlmap自動注入沒跑出來。。。

5.24.2.sqlmap自動注入

第一個：登錄頁面

（1）pb抓取http頭

POST /sqli-labs/Less-24/login.php HTTP/1.1
Host: 192.168.10.106
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 53
Origin: http://192.168.10.106
Connection: keep-alive
Referer: http://192.168.10.106/sqli-labs/Less-24/
Cookie: PHPSESSID=gubl3g41j1400v89r2se01dc50
Upgrade-Insecure-Requests: 1
Priority: u=0, ilogin_user=admin&login_password=123456&mysubmit=Login

（2）sql.txt填入http頭

vi sql.txt

（3）跑當前數據庫

sqlmap -r sql.txt --level 5 --risk 3 --thread="10" --batch --current-db

沒跑出

第二個：注冊頁面

（1）pb抓取http頭

POST /sqli-labs/Less-24/login_create.php HTTP/1.1
Host: 192.168.10.106
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 71
Origin: http://192.168.10.106
Connection: keep-alive
Referer: http://192.168.10.106/sqli-labs/Less-24/new_user.php
Cookie: PHPSESSID=gubl3g41j1400v89r2se01dc50
Upgrade-Insecure-Requests: 1
Priority: u=0, iusername=13819123456&password=123456&re_password=123456&submit=Register

（2）sql.txt填入http頭

vi sql.txt

（3）跑當前數據庫

sqlmap -r sql.txt --level 5 --risk 3 --thread="10" --batch --current-db

沒跑出

第三個：修改密碼頁面

（1）pb抓取http頭

POST /sqli-labs/Less-24/pass_change.php HTTP/1.1
Host: 192.168.10.106
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:141.0) Gecko/20100101 Firefox/141.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 75
Origin: http://192.168.10.106
Connection: keep-alive
Referer: http://192.168.10.106/sqli-labs/Less-24/logged-in.php
Cookie: Auth=1; PHPSESSID=gubl3g41j1400v89r2se01dc50
Upgrade-Insecure-Requests: 1
Priority: u=0, icurrent_password=123456&password=12345678&re_password=12345678&submit=Reset

（2）sql.txt填入http頭

vi sql.txt

（3）跑當前數據庫

sqlmap -r sql.txt --level 5 --risk 3 --thread="10" --batch --current-db

跑不出

三個頁面都跑了很久，都沒跑出...

本文來自互聯網用戶投稿，該文觀點僅代表作者本人，不代表本站立場。本站僅提供信息存儲空間服務，不擁有所有權，不承擔相關法律責任。
如若轉載，請注明出處：http://www.pswp.cn/bicheng/93587.shtml
繁體地址，請注明出處：http://hk.pswp.cn/bicheng/93587.shtml
英文地址，請注明出處：http://en.pswp.cn/bicheng/93587.shtml

如若內容造成侵權/違法違規/事實不符，請聯系多彩編程網進行投訴反饋email:809451989@qq.com，一經查實，立即刪除！