Jacco, if you provide --search -C password, then select LIKE search (default) then sqlmap with apply the LIKE only on the column name, not on table nor or database. To search for tables like password provide --search -T password instead.
Bernardo On 1 November 2013 07:53, Jacco van Tuijl <jaccovantu...@gmail.com> wrote: > Hi all, > > When using the --search 'password' option > > and selecting the LIKE option: > > do you want sqlmap to consider provided column(s): > [1] as LIKE column names (default) > [2] as exact column names >> 1 > > When searching a database for a column with the text 'password' it uses > LIKE. > when searching the table it doesn't use LIKE : it uses = and so it doesn't > return a column. > > [15:15:49] [INFO] fetching number of tables containing columns like > 'password' in database 'master' > [15:15:49] [INFO] retrieved: 4 > [15:15:50] [INFO] retrieving the length of query output > [15:15:50] [INFO] retrieved: 10 > [15:16:06] [INFO] retrieved: sql_logins > [15:16:06] [INFO] fetching columns 'password' for table 'sql_logins' in > database 'master' > [15:16:06] [INFO] retrieved: 0 > > this one should be easy to fix :) > > ------------------------------------------------------------------------------ > Android is increasing in popularity, but the open development platform that > developers love is also attractive to malware creators. Download this white > paper to learn more about secure code signing practices that can help keep > Android apps secure. > http://pubads.g.doubleclick.net/gampad/clk?id=65839951&iu=/4140/ostg.clktrk > _______________________________________________ > sqlmap-users mailing list > sqlmap-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) ------------------------------------------------------------------------------ Android is increasing in popularity, but the open development platform that developers love is also attractive to malware creators. Download this white paper to learn more about secure code signing practices that can help keep Android apps secure. http://pubads.g.doubleclick.net/gampad/clk?id=65839951&iu=/4140/ostg.clktrk _______________________________________________ sqlmap-users mailing list sqlmap-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sqlmap-users
