June 2017
Intermediate to advanced
338 pages
8h 28m
English
SQLMap is a great tool for exhaustive discovery, but sometimes you yearn for a menu-driven approach to actually exploit something in particular, especially around Blind SQLI. If you aren't a SQL expert but know you need a specific exploit mocked up from a certain host, you can customize a Blind SQLI exploit using BBQSQL(https://github.com/Neohapsis/bbqsql) a tool developed by Neohapsis (now a part of Cisco). If you are a big fan of the Social Engineering Toolkit (SET), and you want to exploit Blind SQLI fast, then BBQSQL is for you! Let's take a quick look at how to configure it and use it for your own purposes.
To start up BBQSQL, we don't need to capture a request for an effective analysis, but ...
Read now
Unlock full access