Hello again,
I found the problem. The SQL injection parameter that I found was a false
positive and the output of the page was random and unrelated to the
injected values. The 'garbage' I got was the product of that randomness.
Cumprimentos,
Bruno Ferreira
2015-02-22 14:40 GMT+00:00 Bruno Ferreira <chal...@chalkos.net>:
> Hello everyone,
>
> I just started using sqlmap and it detects basic stuff fine so far
> (database, operative system, php version, ...) but when it comes to
> retrieving information I get a lot of garbage that I can't make sense of.
> An example of this 'garbage text' can be seen in the attached screenshot.
>
> For those wondering, this is for a security challenge (that is one of many
> things that happened as part of the computer science week in the
> university) and my final goal is to be able to list files in the server
> (and if they are out of the www folder, I should still be able to read them
> somehow).
>
> But my question is about all those strange characters that can be seen in
> the attached picture and how to convert them to something useful.
>
> Thank you.
>
> Bruno Ferreira
>
------------------------------------------------------------------------------
Download BIRT iHub F-Type - The Free Enterprise-Grade BIRT Server
from Actuate! Instantly Supercharge Your Business Reports and Dashboards
with Interactivity, Sharing, Native Excel Exports, App Integration & more
Get technology previously reserved for billion-dollar corporations, FREE
http://pubads.g.doubleclick.net/gampad/clk?id=190641631&iu=/4140/ostg.clktrk
_______________________________________________
sqlmap-users mailing list
sqlmap-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/sqlmap-users
