webapp-sqlmap

Solid

Automated SQL injection detection and exploitation tool for web application security testing. Use when: (1) Testing web applications for SQL injection vulnerabilities in authorized assessments, (2) Exploiting SQL injection flaws to demonstrate impact, (3) Extracting database information for security validation, (4) Bypassing authentication mechanisms through SQL injection, (5) Identifying vulnerable parameters in web requests, (6) Automating database enumeration and data extraction.

API & Backend 335 stars 29 forks Updated today

Install

View on GitHub

Quality Score: 85/100

Stars 20%

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

Description 5%

100

Skill Content

# SQLMap - Automated SQL Injection Tool ## Overview SQLMap is an open-source penetration testing tool that automates the detection and exploitation of SQL injection vulnerabilities. This skill covers authorized security testing including vulnerability detection, database enumeration, data extraction, and authentication bypass. **IMPORTANT**: SQL injection exploitation is invasive and can corrupt data. Only use SQLMap with proper written authorization on systems you own or have explicit permission to test. ## Quick Start Basic SQL injection detection: ```bash # Test single parameter sqlmap -u "http://example.com/page?id=1" # Test with POST data sqlmap -u "http://example.com/login" --data="username=admin&password=test" # Test from saved request file sqlmap -r request.txt # Detect and enumerate databases sqlmap -u "http://example.com/page?id=1" --dbs ``` ## Core Workflow ### SQL Injection Testing Workflow Progress: [ ] 1. Verify authorization for web application testing [ ] 2. Identify potential injection points [ ] 3. Detect SQL injection vulnerabilities [ ] 4. Determine DBMS type and version [ ] 5. Enumerate databases and tables [ ] 6. Extract sensitive data (if authorized) [ ] 7. Document findings with remediation guidance [ ] 8. Clean up any test artifacts Work through each step systematically. Check off completed items. ### 1. Authorization Verification **CRITICAL**: Before any SQL injection testing: - Confirm written authorization from application owner - Ve...

Details

Author: aiskillstore
Repository: aiskillstore/marketplace
Created: 5 months ago
Last Updated: today
Language: Python
License: None

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

exploiting-sql-injection-with-sqlmap

Detecting and exploiting SQL injection vulnerabilities using sqlmap to extract database contents during authorized penetration tests.

13,115 Updated today

mukul975

API & Backend Solid

sqlmap-database-penetration-testing

This skill should be used when the user asks to "automate SQL injection testing," "enumerate database structure," "extract database credentials using sqlmap," "dump tables and columns from a vulnerable database," or "perform automated database penetration testing." It provides comprehensive guidance for using SQLMap to detect and exploit SQL injection vulnerabilities.

27,705 Updated today

davila7

API & Backend Solid

sqlmap-database-penetration-testing

4,222 Updated today

zebbern

API & Backend Listed

sqlmap-database-penetration-testing

335 Updated today

aiskillstore

Testing & QA Featured

sqlmap-database-pentesting

Provide systematic methodologies for automated SQL injection detection and exploitation using SQLMap.

39,350 Updated today

sickn33