Thanks! Really nice to see you trying to debug that shit.. I got to this video because Bing AI recommended it to me when I asked him how to do this lab without using the hackvertor extension. I like manual stuff rather than ready-to-use stuff. And finally I could do it all from my browser without even using Burp.. I hesitated to fire up my kali, I was lazy and got stuborn to do right from my browser! lol
Very nice video! The python scripts sends the payload to productID, but the vulnerability was in storeID, i think this would solve the issue with sqlmap not finding the vulnerability.
Hey, thanks! SQLMap will actually try each possible parameter *but* you can manually specify the correct one by adding an asterisk beside it (storeID in this case). It will save some time but unfortunately the issue with the encoding of tamper payload was still an issue. Somebody did identify the issue: twitter.com/_0x999/status/1615054152291258385. I made the change and re-tested and SQLMap worked perfectly 🔥
mate...your rapid mouse movements are anoying =/. make them plz clear, because i look each time to dont miss something id you try to explain. rotate slowly over that region would also works and dont took too much attention from us. thx for your great videos :)
Best explanation about how to do this on RUclips, thank you
🙏🥰
love the debug one...good job
Incredible video 😊, definitely learned a lot.
I think proxying the traffic through burpsuite and using match and replace rules would fix the ampersand encoding issue
Good idea!
Best explanation , thank you guys for these awesome series 😊
Thank you! Glad you like them 💜
Great bout troubleshooting, overall great information thanks
Thanks for watching! 💜
Nice lecture and explanation ❤️
Glad you liked it! 🥰
Thanks! Really nice to see you trying to debug that shit..
I got to this video because Bing AI recommended it to me when I asked him how to do this lab without using the hackvertor extension. I like manual stuff rather than ready-to-use stuff.
And finally I could do it all from my browser without even using Burp.. I hesitated to fire up my kali, I was lazy and got stuborn to do right from my browser! lol
Awesome! Glad you enjoyed 😊
Very nice video! The python scripts sends the payload to productID, but the vulnerability was in storeID, i think this would solve the issue with sqlmap not finding the vulnerability.
Hey, thanks! SQLMap will actually try each possible parameter *but* you can manually specify the correct one by adding an asterisk beside it (storeID in this case). It will save some time but unfortunately the issue with the encoding of tamper payload was still an issue. Somebody did identify the issue: twitter.com/_0x999/status/1615054152291258385. I made the change and re-tested and SQLMap worked perfectly 🔥
mate...your rapid mouse movements are anoying =/. make them plz clear, because i look each time to dont miss something id you try to explain. rotate slowly over that region would also works and dont took too much attention from us. thx for your great videos :)
Yeh sorry about that, I tend to rapidly move my mouse when I'm thinking 😣
Nice explanation
🙏🥰