[Owasp-testing] Database Fingerprinting

Daniele Bellucci daniele.bellucci at gmail.com
Wed Dec 16 04:19:57 EST 2009


If you want to fingerprint by hand, have a look here


http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DBMS_Fingerprint


On Wed, Dec 16, 2009 at 8:56 AM, Zaki Akhmad <zakiakhmad at gmail.com> wrote:
> Thanks for all the responses
>
> I haven't got any error messages. This site doesn't have many form except:
> - authentication: userid and password
> - quantity of the goods
>
> I have tried both, inserting SQL injection command and it failed.
> Sigh, this web applicationis good at handling input.
>
> How do I do sqlmap to authenticated page?
>
> This site has dynamic GET parameters. This web application
> automatically redirects to its home address if I hit this URL[1]
> without being succesfully authenticated.
>
> -za,
> [1]https://tralalaxxx.com/?act=shop&page=5
> _______________________________________________
> Owasp-testing mailing list
> Owasp-testing at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-testing
>


More information about the Owasp-testing mailing list