Automatic SQL injection and database takeover tool
Go to file
2012-08-22 15:51:47 +02:00
doc Update of doc/THANKS 2012-08-21 14:46:48 +02:00
extra Minor refactoring and update of sqlharvest.py 2012-08-21 13:37:16 +02:00
lib Update for an Issue #161 (now detecting format error messages too) 2012-08-22 15:51:47 +02:00
plugins Some more dict refactorings 2012-08-21 11:30:01 +02:00
procs added SQL file to write a file with LIMIT statement on MySQL 2012-07-20 16:20:53 +01:00
shell making PHP stager smaller by 100 chars 2012-06-21 10:46:45 +00:00
tamper working on issue #12 2012-07-26 23:11:07 +01:00
thirdparty Fix for an Issue #152 2012-08-20 10:41:43 +02:00
txt Refreshing wordlist with a yahoo dump dict 2012-07-24 10:28:15 +02:00
udf cleanup to README files 2012-07-17 00:32:32 +01:00
xml Fixing INSERT/UPDATE generic boundaries (those previous few were junkies) 2012-08-22 14:12:51 +02:00
_sqlmap.py Minor refactoring 2012-08-21 10:28:25 +02:00
.gitignore slightly updated gitignore 2012-07-11 16:54:53 +01:00
README.md minor update 2012-07-16 15:03:04 +01:00
sqlmap.conf Implementation of an Issue #149 2012-08-15 22:31:25 +02:00
sqlmap.py Minor style update 2012-08-22 15:05:17 +02:00

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Links