sqlmap

Automatic SQL injection and database takeover tool.

Download / Access

Version 1.8GPLv2

Installation

bash

$ git clone --depth 1 https://github.com/sqlmapproject/sqlmap.git sqlmap-dev

Key Capabilities

Full DB dumping
WAF bypass
Shell upload
Password cracking

Operational Use Cases

Database assessment
Auditing legacy apps
Privilege escalation

Operational Risk: HIGH

This tool is capable of generating significant network traffic or modifying system state. Authorization is required before use against any target. Refer to FLLC Rules of Engagement.

Specifications

AuthorBernardo Damele A. G.

Updated2025-09-05

Maturitystable

Categoryexploitation

Master This Tool

Learn to use sqlmap in a safe environment with our guided labs.

View Training Path