Sqlmap- Automatic SQL Injection Tool

Automatic tools play an important role in the field of penetration testing, either the test will going to conduct for network or for web application.

Web application penetration testing is very important for the high profile companies and for those services like E-commerce to secure the data of the user.

Most common and most valuable attack in the field of web is SQL-injection attack, SQL-Injection is a attack in which an attacker inject their code that exploit the security vulnerability in the database layer. In this attack an attacker try to get more and more requires data.

There are different commercial tools available in market to perform automatic injection to measure the security of a web application server, in this article we will talk about SQLMap. 
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of back-end database servers.
it provide a lot of option to choose from, once it detects sql injection flaws in a web application it give you the multiple option to perform advance penetration. You can fingerprint and enumerate the application.

Key Feature
  • It support MySQL, Oracle, PostgreSQL and Microsoft SQL Server.
  • Full support for three SQL injection techniques: inferential blind SQL injection, UNION query (inband) SQL injection and batched queries support.
  • It support anonymous proxy.
  • It support http header cookies.
  • Basic web server software and web application technology fingerprint.  
  • And more....
It available for both windows and linux plate form.


Sqlmap Video Tutorial

Note: If you enjoyed this post, you might want to subscribe our RSS feed and Email Subscription  or become our Facebook fan! You will get all the latest updates at both the places.
Sqlmap- Automatic SQL Injection Tool Reviewed by Ethical Hacking on 4:02 AM Rating: 5


  1. rofl. you've put a 0.7 for download while the nevest one is 0.9 :))))

  2. Thanks for notifying us, its now updated.....

  3. i dont think you rofl.... imo


Feel free to ask questions, we love to respond.

All Rights Reserved by The World of IT & Cyber Security: © 2014 - 2015
Powered By Blogger, Designed by Sweetheme

Contact Form


Email *

Message *

Powered by Blogger.