04.24
A nice tutorial for SQLmap with TOR by 0entropy.blogspot.com
There is no better tool at the moment for blind SQL injection than sqlmap. If you don’t use it you should definitely have a look on it. With the latest additions sqlmap supports tor with a command line switch, –tor. Let’s proceed with an installation. My system is debian/ubuntu based but the installation is almost the same for any unix based distribution. Following the instructions, https://www.torproject.org/docs/debian.html.en#ubuntu ,
Add this line to your /etc/apt/sources.list file:
where you put the codename of your distribution (i.e. lenny, sid, maverick or whatever it is) in place of <DISTRIBUTION>.
Then add the gpg key used to sign the packages by running the following commands at your command prompt:
gpg --keyserver keys.gnupg.net --recv 886DDD89 gpg --export A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 | sudo apt-key add -
Now refresh your sources and install Tor by running the following commands (as root) at your command prompt:
Start tor, with /etc/init.d/tor start and grab a copy of polito config file from https://gitweb.torproject.org/torbrowser.git/blob_plain/HEAD:/build-scripts/config/polipo.conf , rename or move the old file in /etc/polipo/config and use the configuration from the URL.Restart polipo with /etc/init.d/polipo restart.
Get sqlmap from the latest svn trunk using
Now you can use sqlmap with –tor with the following command,
~/sqlmap# ./sqlmap.py -u http://URL/index.php?cata_id=1 --dump-all –tor --user-agent="Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"
and your requests will appear like an anonymous google bot getting information from the website.
[source]
Related posts:
I installed Tor and Polipo in another Linux distro and I run the cmd and nothing happens;
sqlmap -u http://URL/index.php?cata_id=1 –dump-all –tor –user-agent=”Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)”
Here’s the output below, how can I fix this?
[11:07:04] [WARNING] increasing default value for –time-sec to 10 because –tor switch was provided
[11:07:04] [INFO] setting Tor proxy settings
[11:07:04] [INFO] using ‘/opt/sqlmap/output/URL/session’ as session file
[11:07:04] [INFO] testing connection to the target url
[11:07:08] [INFO] heuristics detected web page charset ‘ascii’
[11:07:08] [CRITICAL] unable to connect to the target url (504 – Gateway Timeout), sqlmap is going to retry the request
[11:07:08] [WARNING] if the problem persists please check that the provided target url is valid. If it is, you can try to rerun with the –random-agent switch turned on and/or proxy switches (–ignore-proxy, –proxy,…)
[11:07:11] [CRITICAL] unable to connect to the target url (504 – Gateway Timeout), sqlmap is going to retry the request
[11:07:15] [CRITICAL] unable to connect to the target url (504 – Gateway Timeout), sqlmap is going to retry the request
[11:07:21] [CRITICAL] unable to connect to the target url (504 – Gateway Timeout)
[11:07:21] [WARNING] HTTP error codes detected during testing:
504 (Gateway Timeout) – 4 times
THANKS
If I cd to the /path /opt/sqlmap and run the command
I get this;
./sqlmap.py -u http://URL/index.php?cata_id=1 –dump-all -tor –user-agent=”Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)”
[*] starting at 12:07:29
[12:07:29] [INFO] using ‘/opt/sqlmap/output/URL/session’ as session file
[12:07:30] [CRITICAL] host ‘URL’ does not exist
Sorry I don’t understand, what is this sqlmap suppose to do? Is this suppose to be a better way to surf online with Tor?
So how do I make this work?
THANKS
Sqlmap is a web hacking tool, if you just want to browse web pages anonymous simply install tor software to your computer.
thanks a lot! good job)
Das…you are actually putting in a real URL aren’t you? If not that may be the issue…
Please put up a video tutorial of what you just said.
Thanks
Video tutorial about what?
in v0.9 u dont have to do it