Monster10 Posted December 16, 2019 Share Posted December 16, 2019 Hi Im somewhat new to pentesting and, after watching this video https://www.youtube.com/watch?v=2YD4vygeghM I decided to try out SQLMap. I set up the Metasploitable 2 VM, captured the request with burp, and saved it as request.txt. I then ran the following command sqlmap -r /root/Desktop/request.txt --dbs In the video, the output is almost instantly displayed. When I tried it, it took forever and never finished. I also tried the other following commands on the OWASPBWA VM with no success sqlmap -u "http://192.168.184.129/mutillidae/index.php?page=login.php" --data="username=asdfg&password=asdf&login-php-submit-button=Login" -b and sqlmap -u "http://192.168.184.129/mutillidae/index.php?page=user-info.php&username=asdfg&password=asd&user-info-php-submit-button=View+Account+Details" -b Neither worked. Any help would be greatly appreciated. Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.