Automatic SQL injection and database takeover tool
Go to file
Miroslav Stampar 7207cf29dd Minor update
2012-10-26 11:05:44 +02:00
doc minor syntax fix 2012-08-30 10:49:21 +01:00
extra Minor refactoring and update of sqlharvest.py 2012-08-21 13:37:16 +02:00
lib Minor update 2012-10-26 11:05:44 +02:00
plugins More general approach for PostgreSQL concatenation operator precedence problem (Issue #219) 2012-10-25 10:41:16 +02:00
procs added SQL file to write a file with LIMIT statement on MySQL 2012-07-20 16:20:53 +01:00
shell making PHP stager smaller by 100 chars 2012-06-21 10:46:45 +00:00
tamper Tamper function(s) refactoring (really no need for returning headers as they are passed by reference) 2012-10-25 10:10:23 +02:00
thirdparty Fix for an Issue #164 2012-08-26 15:46:12 +02:00
txt Minor cleanup of standard wordlist (html entities, etc.) 2012-09-12 16:06:32 +02:00
udf cleanup to README files 2012-07-17 00:32:32 +01:00
xml Cleaning/refactoring of bunch of stacked/suffix/comment stuff (e.g. 2012-09-26 11:27:43 +02:00
_sqlmap.py Minor refactoring 2012-08-21 10:28:25 +02:00
.gitignore slightly updated gitignore 2012-07-11 16:54:53 +01:00
README.md Update README.md 2012-08-23 20:08:57 +03:00
sqlmap.conf Implementation for an Issue #128 2012-10-05 10:24:09 +02:00
sqlmap.py Minor style update 2012-08-22 15:05:17 +02:00

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Links