Show Menu

SQLMap Cheat Sheet (DRAFT) by

A cheat sheet of the commands used to operate SQLmap

This is a draft cheat sheet. It is a work in progress and is not finished yet.

Basic Commands

-u URL, --url=URL
Target URL (e.g. "­htt­p:/­/ww­w.s­­m/v­­p?i­d=1­")
Data string to be sent through POST (e.g. "­id=­1")
Use randomly selected HTTP User-Agent header value
Testable parame­ter(s)
Level of tests to perform (1-5, default 1)
Risk of tests to perform (1-3, default 1)

Enumer­ation Commands

-a, --all
Retrieve everything
-b, --banner
Retrieve DBMS banner
Retrieve DBMS current user
Retrieve DBMS current database
Enumerate DBMS users password hashes
Enumerate DBMS databases
Enumerate DBMS database tables
Enumerate DBMS database table columns
Enumerate DBMS schema
Dump DBMS database table entries
Dump all DBMS databases tables entries
Detect if the DBMS current user is DBA
DBMS database to enumerate
DBMS database table(s) to enumerate
DBMS database table column(s) to enumerate

Operating System Commands

Prompt for an intera­ctive operating system shell
Prompt for an OOB shell, Meterp­reter or VNC
Execute an operating system command
Database process user privilege escalation
One-click prompt for an OOB shell, Meterp­reter or VNC