Tool: sqlmap

Description

[sqlmap](https://attack.mitre.org/software/S0225) is an open source penetration testing tool that can be used to automate the process of detecting and exploiting SQL injection flaws. (Citation: sqlmap Introduction)

External References

• mitre-attack
• sqlmap Introduction

Techniques Used by This Tool

• T1190 — Exploit Public-Facing Application

APT Groups Using This Tool

• Ajax Security Team
• APT41