Skip to content

S0225 sqlmap

sqlmap is an open source penetration testing tool that can be used to automate the process of detecting and exploiting SQL injection flaws. 1

Item Value
ID S0225
Type TOOL
Version 1.0
Created 18 April 2018
Last Modified 17 October 2018
Navigation Layer View In ATT&CK® Navigator

Techniques Used

Domain ID Name Use
enterprise T1190 Exploit Public-Facing Application sqlmap can be used to automate exploitation of SQL injection vulnerabilities.1

Groups That Use This Software

ID Name References
G0130 Ajax Security Team 2

References

  1. Damele, B., Stampar, M. (n.d.). sqlmap. Retrieved March 19, 2018. 

  2. Check Point Software Technologies. (2015). ROCKET KITTEN: A CAMPAIGN WITH 9 LIVES. Retrieved March 16, 2018.