Screenshots

Verbose output (option -v set to 3): Verbose output set to 3

Concatenation of three tamper scripts to obfuscate the injected SQL payloads (switch --tamper): Tamper scripts in action

Cracking dumped databased users' password hashes (switch --passwords): Users' password hashes cracking

Enumerating database table's columns (switch --columns): Database table's columns dump

Mnemonics (option -z set to "flu,ign,bat,tec=B"): Mnemonics usage

Conducting through tests only if positive heuristic(s) (switch --smart): Smart mode

DNS exfiltration technique (option --dns-domain):

Replicating table to a local SQLite3 database (switch --replicate): Replicated table

OS pwn (Meterpreter) (switch --os-pwn): OS pwn

OS shell (switch --os-shell): SQL shell

SQL shell (switch --sql-shell):

Wizard mode (switch --wizard):

Introduction - Introductory to sqlmap
Techniques - SQLi techniques supported by sqlmap
Features - Brief list of supported features
Download and update - Keep your copy up-to-date
Dependencies - Information about used third-party libraries and tools
History - History from 2006 to 2025
Usage - Exhaustive breakdown of all options and switches together with examples
License - Copyright information

FAQ - Frequently Asked Questions
Presentations - Materials from sqlmap team presented at conferences
Screenshots - Collection of screenshots demonstrating some of features
Third party libraries - Detailed information about third-party libraries and tools used by sqlmap

Provide feedback