--charset for each column #5958
Description
My command looks roughly like this:
--null-connection --dbms="mysql" --threads=10 -o -D example -T users -C email,hash --dump --where "email LIKE '%com' AND email >= 'a' AND email < 'b'"
I’d like to use --charset="0123456789abcdefghijklmnopqrstuvwxyz.@_-" for the email column and --charset="0123456789abcdef" for the hash column, since all rows are MD5 hashes for the hash column. Only boolean-based injection is available, and since the database is large, I’m trying to find the most optimized approach. I’ve read the sqlmap documentation and couldn’t find any information on setting different charset for different column, so I’m not sure if it’s even possible?
Also, I’m wondering whether --predict-output would be a faster approach than --threads=10 . I’m guessing it would require fewer requests, put less stress on the server, and allow me to run multiple SQLMAP windows/sessions at the same time.
I could retrieve the email and hash in separate SQLMAP sessions and use different charsets for each session, but I need each email to remain correctly paired with its hash, therefore I can’t use that approach.
Thanks in advance for your help.