I'm learning SQL injections in the PNPT course. I understand how to use SQLmap just fine. But I'm a little confused on when you would use the -u flag to test a URL, versus capturing a request in Burp Suite, then sending it to SQLmap.
Are the requests only for login forms? That's the only time I see them come up when finding YT vids/blogs on the topic.
Would appreciate the clarification. Cheers
[link] [comments]
from hacking: security in practice https://ift.tt/wLk4N6T
Comments
Post a Comment