Kullanıcı1233
Kıdemli Üye
- 19 Tem 2011
- 4,371
- 12
Hi friends, today i will tell you how to scan SQL Injection vulnerability on the site using the pentest tool (NMap) among the 10 most common Kali Linux
tools.
tools.
(~) What is NMAP ?
Its an NMap Pentest tool and lets us scan port/vulnerability of a website. One of the indispensable tools of Linux.
(~) Using
We first open the terminal and install or update NMap.
Let's check if it works.
Let's scan SQL on the site.
We first open the terminal and install or update NMap.
Kod:
[COLOR="Lime"]sudo apt-get install nmap[/COLOR]
Let's check if it works.
Let's scan SQL on the site.
Kod:
[COLOR="Lime"]nmap -p80 --script http-sql-injection herorahim.com[/COLOR]
He determined up to the ports open to us, but SQL could not find the vulnerability.
If SQL finds a vulnerability ;
Kod:
[COLOR="Orange"]http-sql-injection:
| Possible sqli for queries:
| http://site.com/page.php?param=[/COLOR]
It appears in the form.