[sqlmap-users] help implement new payload for error based sqli using extractvalue()

Hi all.. first time send e-mail to list =) My name is daniel, i'm new on contributing to the project.. I trying to implement this kind of payload to the error-based method for mysql, but i'm having some problems.. The payload i want to implement is: file.php?id=1 and extractvalue(0

[sqlmap-users] sqlmap --crawl - use defaults / do not prompt?

Hi, Just wondering if there's a way to run sqlmap such that it uses the default answer for each prompt, rather than requiring me to press return every time! Thanks for any help :) Dan -- Ridiculously easy VDI. With Citri

[sqlmap-users] sqlmap stuck + can not retrieve all rows in aerror based sql injection

Hey guys i have a problem here take a look sqlmap almost always stuck with the message - [WARNING] no proper pivot column provided (with unique values). It wo n't be possible to retrieve all rows even if i let it run for days it will not dump a thing, sometimes it does retrieve some data put out of

[sqlmap-users] problem with data retrieving - part of it comes out as rubbish

hey, i have a strange problem on data retrieving with Mycrosoft SQL server - error based i use this command python sqlmap.py --risk=3 --level=5 -u "www.test.com" -p x --threads=10 --dump-all --random-agent -o --flush-session --technique=EUS now some of the data is good but parts of some data co

[sqlmap-users] problem using dbms-creds when password is NULL

hey, i am trying to write on mssql with either os-shell or any other flag (non works for me) i know that 'Ad Hoc Distributed Queries are disabled -> OpenRowSet is disabled as well sqlmap initially gets into the db as a secondary user, there are 2 users in the db, SA which is the administrator and t

[sqlmap-users] Reporting: Unknown web page charset

*Reporting* [20:21:53] [WARNING] unknown web page charset 'gbk2312'. Please report by e-mail to sqlmap-users@lists.sourceforge.net. *Command* sqlmap -g inurl:"showpro.asp?id=" --random-agent --batch --passwords *Terminal Readout* GET http://www.sh-sinap.com/en/Showpro.asp?id=6 do you want to test

[sqlmap-users] sqlmap error

recent call last): File "sqlmap.py", line 82, in main start() File "C:\Users\Daniel Rheault\Desktop\Outils RÚseau\sqlmap-0.9\sqlmap\lib\cont roller\controller.py", line 267, in start setupTargetEnv() File "C:\Users\Daniel Rheault\Desktop\Outils RÚseau\sqlmap-0.9\s

[sqlmap-users] Question about Stacked Queries

Hi Miroslav, Bernardo, list members, As far I know ( please correct if i´m wrong ) reading a couple of times Bernardo´s Damele Advanced SQL Injection whitepaper , Stacked queries could be executed via Blind and MySQL with ASP.NET,but sqlmap show me via sql-shell: web server operating system: Wind