Created
February 10, 2021 17:00
-
-
Save hackhunt/045ac00394d58911e4846b8dba86d5d0 to your computer and use it in GitHub Desktop.
Cheatsheet for enumeration flags in SQLMap
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
-a, --all Retrieve everything | |
-b, --banner Retrieve DBMS banner | |
--current-user Retrieve DBMS current user | |
--current-db Retrieve DBMS current database | |
--hostname Retrieve DBMS server hostname | |
--is-dba Detect if the DBMS current user is DBA | |
--users Enumerate DBMS users | |
--passwords Enumerate DBMS users password hashes | |
--privileges Enumerate DBMS users privileges | |
--roles Enumerate DBMS users roles | |
--dbs Enumerate DBMS databases | |
--tables Enumerate DBMS database tables | |
--columns Enumerate DBMS database table columns | |
--schema Enumerate DBMS schema | |
--count Retrieve number of entries for table(s) | |
--dump Dump DBMS database table entries | |
--dump-all Dump all DBMS databases tables entries | |
--search Search column(s), table(s) and/or database name(s) | |
--comments Check for DBMS comments during enumeration | |
--statements Retrieve SQL statements being run on DBMS | |
-D DB DBMS database to enumerate | |
-T TBL DBMS database table(s) to enumerate | |
-C COL DBMS database table column(s) to enumerate | |
-X EXCLUDE DBMS database identifier(s) to not enumerate | |
-U USER DBMS user to enumerate | |
--exclude-sysdbs Exclude DBMS system databases when enumerating tables | |
--pivot-column=P.. Pivot column name | |
--where=DUMPWHERE Use WHERE condition while table dumping | |
--start=LIMITSTART First dump table entry to retrieve | |
--stop=LIMITSTOP Last dump table entry to retrieve | |
--first=FIRSTCHAR First query output word character to retrieve | |
--last=LASTCHAR Last query output word character to retrieve | |
--sql-query=SQLQ.. SQL statement to be executed | |
--sql-shell Prompt for an interactive SQL shell | |
--sql-file=SQLFILE Execute SQL statements from given file(s) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment