Sunday, July 23, 2017

Crawling and Exploiting Forms with SQLMap

Exploiting POST variables with sqlmap has always been a bit of a pain in the ass.  Here's a great one liner to very quickly crawl, detect, and exploit forms with sqlmap:

sqlmap -u <target> --forms --batch --crawl 1

Of course, you can crawl deeper if you want, but if you know where the login form is, then no need to waste time.  This is almost always much more convenient than digging through the form code, and using --data with sqlmap.  Enjoy!