Learning the sqlmap tool in Kali Linux is essential to understand SQL injection attacks. It not only enables security professionals to automatically detect and exploit SQL injection vulnerabilities in web applications, but also enhances database security by simulating real-world attack scenarios. Mastering SQLMAP means having the ability to identify potential risks so you can take effective measures to harden your system and prevent sensitive data from being breached. In today's increasingly important cybersecurity, understanding this tool is one of the indispensable skills for every IT practitioner.
Continuing from the above
In just 5 steps, you can use Kali's SqlMap injection to get the backend database
1、查看当前数据库:--current-db
The current database is: DVWA
2. Check the current database user name: --users
Scan result: root
3、获取用户密码:--users --passwords
Scan results
4、获取所有数据库表名:--tables
5. Obtain the table name of the specified database: -D database name
Scan results
6、获取特定表的列:-T 表名 --columns
Scan results
7. Download the username and password: -dump
Scan results
View locally
Click on the link to learn synchronous video lessons!
"Links"