Although the tool relatively low, but the first with the tool, perhaps the fastest to go one way.
0x01 list of tools:
- awvs can be downloaded on my love crack forum
sqlmap injection artifact
#### 0x02 scan vulnerabilities:
Fill to scan the site url
- Select url associated
- After scanning period of vulnerability information displayed in the list
- Right you can see the description and corresponding information for each vulnerability,
Large columns awvs + sqlmap fool injection tps: //zebork.github.io/images/2016/3-23/09-57.png "width =" 550 "height =" 550 "/>
0x03 sqlmap attack with the injection point
Attack code (proxychains linked agent used):
|
|
See the database is Oracle, Oracle Database mention the right of a pit, if successful, to get permission, the next one will be described.