How to connect any database using SQLMap ?

sqlmap tool

Sqlmap is an open-source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. SQLMap can also be used as a database access client. As we already know running OS command is also possible depending on the database so it definitely helps in chain exploit.

mysql://USER:[email protected]_IP:DBMS_PORT/DATABASE_NAME
oracle://USER:[email protected]_IP:DBMS_PORT/DATABASE_SID
example: sqlmap -d ‘mysql://root:[email protected]:3306/information_schema’

Leave a Reply