tldr/pages/common/sqlmap.md

# sqlmap

> Detect and exploit SQL injection flaws.
> Homepage: <https://sqlmap.org>.

- Run sqlmap against a single target URL:

`python sqlmap.py -u {{"http://www.target.com/vuln.php?id=1"}}`

- Send data in a POST request (`--data` implies POST request):

`python sqlmap.py -u {{"http://www.target.com/vuln.php" --data={{"id=1"}}`

- Change the parameter delimiter (& is the default):

`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --data={{"query=foobar;id=1"}} --param-del={{";"}}`

- Select a random `User-Agent` from `./txt/user-agents.txt` and use it:

`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --random-agent`

- Provide user credentials for HTTP protocol authentication:

`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --auth-type {{Basic}} --auth-cred {{"testuser:testpass"}}`
sqlmap: add page (#2412) 2018-10-24 06:18:16 +01:00			`# sqlmap`

			`> Detect and exploit SQL injection flaws.`
sqlmap: add link to homepage 2019-05-15 09:04:05 +01:00			`> Homepage: <https://sqlmap.org>.`
sqlmap: add page (#2412) 2018-10-24 06:18:16 +01:00
			`- Run sqlmap against a single target URL:`

			`python sqlmap.py -u {{"http://www.target.com/vuln.php?id=1"}}`

			- Send data in a POST request (`--data` implies POST request):

			`python sqlmap.py -u {{"http://www.target.com/vuln.php" --data={{"id=1"}}`

			`- Change the parameter delimiter (& is the default):`

			`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --data={{"query=foobar;id=1"}} --param-del={{";"}}`

			- Select a random `User-Agent` from `./txt/user-agents.txt` and use it:

			`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --random-agent`

			`- Provide user credentials for HTTP protocol authentication:`

			`python sqlmap.py -u {{"http://www.target.com/vuln.php"}} --auth-type {{Basic}} --auth-cred {{"testuser:testpass"}}`