How to inject a part of cookie using sqlmap

sqlmap
jerald picture jerald · Jun 23, 2014 · Viewed 34.9k times · Source

I need to do SQL injection on a part of cookie using sqlmap. The target URL is static.

A sample cookie:

Cookie1=blah_var1/blah_val1/blah_var2/blah_val2/searchtext/userinput/blah_var3/blah_val3/.../

In this cookie i need to inject the "userinput" using sqlmap. I know --cookie parameter but it wont work in this case. This is like part of cookie alone have to be injected using sqlmap.

I don't know how to do this. Please help.

Answer

MatandDie picture MatandDie · Jun 23, 2014

Intercept all request, save it to a file and then give that file to sqlmap with -r parameter, by default sqlmap should check cookie.

sqlmap.py -r request.txt

You can use tamper data (firefox extension), or free version of burp proxy to intercept request.

Related questions

Specify parameters with SQLMAP

I'm a student learning php & mysql development. i have setup a private lab ( VM ) inside my computer to test & learn how sql injection works. When things get harder i use sqlmap to exploit and later on study the …

Read More
SQLMAP - Post JSON data as body

Hi I'm trying to do a SQL injection in a login form. With BurpSuite I intercept the request: POST /xxxx/web/Login HTTP/1.1 Host: 10.0.0.70:42020 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:49.0) Gecko/20100101 Firefox/49.0 Accept: application/json, text/plain, */* Accept-Language: …

Read More
Sqlmap post data

I was trying to run sqlmap with method POST but I got this error: [CRITICAL] no parameter(s) found for testing in the provided data (e.g. GET parameter 'id' in 'www.site.com/index.php?id=1') Now, I …

Read More