sqlmap – Automatic SQL Injection Tool

sqlmap is an advance open source tool for penetration testing that automate the process of searching and performing SQL injection. This will allow attacker to extract data. What makes sqlmap different from other utilities is the ability to exploit every vulnerability found.

This means that sqlmap is able not only to find the bug but also to make the exploitation.

sqlmap - Automatic SQL Injection Tool
sqlmap – Automatic SQL Injection Tool

The scanner out of the box comes with great functionality, from the ability to define a database management system, creating a dump of data, and ending with gaining access to the system with the ability to access files on the targeted host to execute remote commands on the server.

Some of the features with this tool are:

  • Full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, Sybase, SAP MaxDB, Informix, MariaDB, MemSQL, TiDB, CockroachDB, HSQLDB, H2, MonetDB, Apache Derby, Amazon Redshift, Vertica, Mckoi, Presto, Altibase, MimerSQL, CrateDB, Greenplum, Drizzle, Apache Ignite, Cubrid, InterSystems Cache, IRIS, eXtremeDB and FrontBase database management systems.
  • Full support for six SQL injection techniques: boolean-based blind, time-based blind, error-based, UNION query-based, stacked queries and out-of-band.
  • Support to directly connect to the database without passing via a SQL injection, by providing DBMS credentials, IP address, port and database name.
  • Support to enumerate users, password hashes, privileges, roles, databases, tables and columns.
  • Support to download and upload any file from the database server underlying file system when the database software is MySQL, PostgreSQL or Microsoft SQL Server.
  • Support to establish an out-of-band stateful TCP connection between the attacker machine and the database server underlying operating system. This channel can be an interactive command prompt, a Meterpreter session or a graphical user interface (VNC) session as per user’s choice.
  • Support for database process’ user privilege escalation via Metasploit’s Meterpreter getsystem command.

You can read more and download this tool over here: https://github.com/sqlmapproject/sqlmap

Share
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments