Skip to main content

Automatic SQL injection and database takeover tool

Project description

Python 2.7|3.x License X

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

Screenshots

Screenshot

You can visit the collection of screenshots demonstrating some of features on the wiki.

Installation

You can use pip to install and/or upgrade the sqlmap to latest (monthly) tagged version with:

pip install --upgrade sqlmap

Alternatively, you can download the latest tarball by clicking here or latest zipball by clicking here.

If you prefer fetching daily updates, you can download sqlmap by cloning the Git repository:

git clone --depth 1 https://github.com/sqlmapproject/sqlmap.git sqlmap-dev

sqlmap works out of the box with Python version 2.7 and 3.x on any platform.

Usage

To get a list of basic options and switches use:

sqlmap -h

To get a list of all options and switches use:

sqlmap -hh

You can find a sample run here. To get an overview of sqlmap capabilities, list of supported features and description of all options and switches, along with examples, you are advised to consult the user’s manual.

Project details


Release history Release notifications | RSS feed

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

sqlmap-1.10.7.tar.gz (7.6 MB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

sqlmap-1.10.7-py2.py3-none-any.whl (8.0 MB view details)

Uploaded Python 2Python 3

File details

Details for the file sqlmap-1.10.7.tar.gz.

File metadata

  • Download URL: sqlmap-1.10.7.tar.gz
  • Upload date:
  • Size: 7.6 MB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.12.3

File hashes

Hashes for sqlmap-1.10.7.tar.gz
Algorithm Hash digest
SHA256 b8e93fd157034cf23a26ebfc40419ed7594c909dcf7960f68df0aa58a1b2cdcc
MD5 4648abc19472db1c449da5ff8fa3ec24
BLAKE2b-256 3145310a17fae812f1a56c58fb8dc9a3b916fdee6a58f1dff8265c117281fee0

See more details on using hashes here.

File details

Details for the file sqlmap-1.10.7-py2.py3-none-any.whl.

File metadata

  • Download URL: sqlmap-1.10.7-py2.py3-none-any.whl
  • Upload date:
  • Size: 8.0 MB
  • Tags: Python 2, Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.12.3

File hashes

Hashes for sqlmap-1.10.7-py2.py3-none-any.whl
Algorithm Hash digest
SHA256 83ec02d4e373dd6656ae0b65f1362565dd8b09f998adac3a4bbf72fa7bc7f2ac
MD5 5dbe8d5cf2fd52f99b5ac21b18e2b704
BLAKE2b-256 65290938e45586f78c712c568160ba26a15d19b4dfeae2e9bafe2eefdd87ba74

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page