There's more...
SQLMap can also inject input variables in POST requests. To do that, we only need to add the --data option, followed by the POST data inside quotes, for example: --data “username=test&password=test”.
Sometimes, we need to be authenticated in an application in order to have access to the vulnerable URL of an application. If this happens, we can pass a valid session's cookie to SQLMap using the --cookie option: --cookie “PHPSESSID=ckleiuvrv60fs012hlj72eeh37”. This is also useful for testing for injections in cookie values.
Another interesting feature of this tool is that, besides the fact that it can bring us an SQL shell where we can issue SQL queries, more interestingly, we could gain command execution in the database server ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access