SQLMAP is a tool used to enumerate the database. It will try to find the injection points in the address and will try to exploit them. Let’s see how.
I have taken a local setup of a vulnerable application, as you can see i have given the username as test and password as qtest in the url.
1)”-u” is used to state the URL
2)Refer the highlighted string.
3)Testing the injectable parameter with diferrent SQL statements , ORDER BY , GROUP BY etc.
4)Now comes the turn of password , being injectable or not. Refer the highlighted string
5)Getting to know the SQL injection type (blind , error based etc), payload etc.
Uncovering the database names
Finding the tables inside the information schema database (from the above discovery)
Finding the columns inside one of the tables(TABLES) discovered above
Getting the data inside the columns