Monday, March 26, 2012

SQLMap Gui - Automatic SQL injection and database takeover tool

This is a awesome sqlmap python gui made by xcedz.To make it work get and install python 2.7 and download the last version of sqlMap-dev

svn checkout sqlMap-dev 

after doing that download the gui script from 

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

And here is Another  Windows GUI for sqlmap written in C#  

you have to enter the database parameters, select the table and column that you want to enumerate and press Exploit. SQL Map GUI will do the rest! 

Honestly I recommend you python version because works better!


Anonymous said...

update. Added option: --no-cast =)

Anonymous said...

Another GUI at