ok, cool. thanks.
On Wed, Jul 9, 2014 at 12:44 PM, Miroslav Stampar <
miroslav.stam...@gmail.com> wrote:
> I've already said that there is nothing more than subquerying. Than means
> that it works in application layer without any username/password
>
> bye
>
>
> On Wed, Jul 9, 2014 at 8:33 AM, Sa
I've already said that there is nothing more than subquerying. Than means
that it works in application layer without any username/password
bye
On Wed, Jul 9, 2014 at 8:33 AM, Sabin Ranjit wrote:
> in which layer does the sqlmap work on for this? does it goes in database
> layer or resides in a
in which layer does the sqlmap work on for this? does it goes in database
layer or resides in application layer for finding database user/ password?
On Wed, Jul 9, 2014 at 12:02 PM, Miroslav Stampar <
miroslav.stam...@gmail.com> wrote:
> It just uses found SQLi to carry a given SQL (as a subquer
It just uses found SQLi to carry a given SQL (as a subquery). There is no
direct connection. There is no brute forcing.
Bye
On Jul 9, 2014 2:00 AM, "Sharma, Vivek" wrote:
> Hi all,
>
>
>
> Can someone tell me that how does sql map open a sql shell for me. How
> does it come to know the passwor
