Nice! That seems like a nifty feature for sure!
I'm also a bit confused on the config files, maybe you can clarify? Even when I specify -C sqlmap.conf it doesn't seem to be honoring the options I have set. There's a few different options that I basically ALWAYS use, and it'd be nice to have it just permanently turn on things like --random-agent, as well as risk/level parameters as well. Who knows, I could just be missing something... Also I noticed that no matter how many threads you specify (<3) it sticks it to 3 no matter what, anyone else noticing it? Thanks, and as always great work guys :-D Ryan ----- Original Message ----- From: "Miroslav Stampar" <miroslav.stam...@gmail.com> To: "SqlMap List" <sqlmap-users@lists.sourceforge.net> Sent: Wednesday, June 15, 2011 7:55:45 AM GMT -05:00 US/Canada Eastern Subject: [sqlmap-users] New feature: mnemonics Hi boys and girls. We are introducing new (experimental) feature called mnemonics (-z option). All of you who are a hard core users of sqlmap and/or you are tired of writing down long sausages in sqlmap's command line you could enjoy this one. Comparison: A) normal ./sqlmap.py --batch --banner --dump -D=testdb -T=users --technique=E -u="http://xxx.xxx.xxx.xxx/sqlmap/mysql/get_int.php?id=1"; B1) with mnemonics ./sqlmap.py -u "http://xxx.xxx.xxx.xxx/sqlmap/mysql/get_int.php?id=1"; -z "bat,ban,du,D=testdb,T=users,tec=E" B2) with mnemonics ./sqlmap.py -u "http://xxx.xxx.xxx.xxx/sqlmap/mysql/get_int.php?id=1"; --batch --dump -z "ban,D=testdb,T=users,tec=E" C) possible real life example: ./sqlmap.py -u "http://.....?id=1"; -z "bat,ban,to,ra,le=3,ri=3" instead of: ./sqlmap.py -u "http://.....?id=1"; --batch --banner --tor --random-agent --level=3 --risk=3 (one of many possible equivalents is e.g.: ./sqlmap.py -u "http://.....?id=1"; -z "bat,bann,tor,rand,lev=3,ri=3") Trick is that you are writing as shorter names as possible of wanted parameters. Mnemonics are splitted with ',' char and values are explicitly set (if needed) by writing equation mark. In case of ambiguities parameter with the shortest name will be used (e.g. du will be resolved to dump because dump is shorter than dump-all) This is all prone to changes and we are opened for suggestions. KR -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B ------------------------------------------------------------------------------ EditLive Enterprise is the world's most technically advanced content authoring tool. Experience the power of Track Changes, Inline Image Editing and ensure content is compliant with Accessibility Checking. http://p.sf.net/sfu/ephox-dev2dev _______________________________________________ sqlmap-users mailing list sqlmap-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sqlmap-users ------------------------------------------------------------------------------ EditLive Enterprise is the world's most technically advanced content authoring tool. Experience the power of Track Changes, Inline Image Editing and ensure content is compliant with Accessibility Checking. http://p.sf.net/sfu/ephox-dev2dev _______________________________________________ sqlmap-users mailing list sqlmap-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sqlmap-users
