Automatic SQL injection and database takeover tool
Go to file
2012-12-18 17:49:18 +00:00
doc updated THANKS 2012-12-14 16:22:49 +00:00
extra bundle bottle library in sqlmap (it is MIT license) - issue #297 2012-12-14 03:00:30 +00:00
lib minor bug fix, union query has to be limited 0, 0 2012-12-18 16:36:30 +00:00
plugins minor refactoring, added possibility to compare the remote file and downloaded file (--file-read), prepping for #223 2012-12-18 17:49:18 +00:00
procs Bug fix for --os-shell on MySQL (it was not working for a long time because of this) 2012-10-29 15:45:30 +01:00
shell making PHP stager smaller by 100 chars 2012-06-21 10:46:45 +00:00
tamper Removing trailing blanks 2012-12-14 12:00:45 +01:00
thirdparty Cleaning some (web upload based) garbage 2012-12-13 13:19:47 +01:00
txt Trivial update 2012-12-17 17:16:11 +01:00
udf cleanup to README files 2012-07-17 00:32:32 +01:00
xml added test cases for --sql-query and improved tests for --search -C 2012-12-18 16:30:46 +00:00
_sqlmap.py code refactoring and first time logger is handled by a separate file descriptor (issue #297) 2012-12-15 00:12:22 +00:00
.gitignore slightly updated gitignore 2012-07-11 16:54:53 +01:00
CONTRIBUTING.md Create CONTRIBUTING.md 2012-12-06 02:53:03 -08:00
README.md Update README.md 2012-08-23 20:08:57 +03:00
sqlmap.conf Implementation for an Issue #293 2012-12-11 12:48:58 +01:00
sqlmap.py Minor style update 2012-08-22 15:05:17 +02:00

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Links