How Hackers Find SQL Injections in Minutes with Sqlmap [Video]

By Dawid Czagan
  • Instant online access to over 7,500+ books and videos
  • Constantly updated with 100+ new titles each month
  • Breadth and depth in over 1,000+ technologies

About this video

Automated SQL injection detection and exploitation has never been easier! This course shows you how ethical hackers and professional penetration testers find SQL injections speedily with Sqlmap and teaches you how you can do the same to protect your web applications. The course starts with the basics of Sqlmap and then shows you how to use it to dump database table entries. As you progress, you’ll find out how to install a backdoor with Sqlmap and go from SQL injection to remote code execution. You’ll also understand how this tool can be leveraged to maximize the power of SQL injection detection. Finally, you’ll explore how to use tamper scripts in Sqlmap to bypass Web Application Firewalls (WAFs). By the end of this course, you’ll have learned how to detect and exploit SQL injection vulnerabilities automatically using Sqlmap.

Publication date:
March 2019
1 hour 6 minutes

About the Author

  • Dawid Czagan

    Dawid Czagan is listed among Top 10 Hackers (among more than 100,000 registered hackers at HackerOne). He has found security vulnerabilities in Google, Yahoo, Mozilla, Microsoft, Twitter, and other companies. Due to the severity of many bugs, he received numerous awards for his findings. Dawid Czagan shares his security bug hunting experience in his hands-on training “Hacking Web Applications – Case Studies of Award-Winning Bugs in Google, Yahoo, Mozilla and More” and “Bug Hunting Millionaire: Mastering Web Attacks with Full-Stack Exploitation”. He delivered security training courses at key industry conferences such as Hack In The Box (Amsterdam), CanSecWest (Vancouver), 44CON (London), Hack In Paris (Paris), DeepSec (Vienna), HITB GSEC (Singapore), BruCON (Ghent) and for many corporate clients. His students include security specialists from Oracle, Adobe, ESET, ING, Red Hat, Trend Micro, Philips and government sector. Dawid Czagan is a founder and CEO at Silesia Security Lab – a company which delivers specialized security testing and training services. To find out about his latest works, you can follow him on Linkedin: Twitter: Official website:

    Browse publications by this author

Recommended For You

How Web Hackers Make Big Money: Remote Code Execution [Video]

Learn About the Most Dangerous Vulnerability in Modern Web Applications

By Dawid Czagan
Web Hacking Secrets: How to Hack Legally and Earn Thousands of Dollars at HackerOne [Video]

Master web application security testing and become a successful bug hunter

By Dawid Czagan
SSL Complete Guide - HTTP to HTTPS [Video]

Configure NGINX and Apache, install free SSL/TLS certificates from Let's Encrypt, configure Cloudflare, and create CSR requests

By Bogdan Stashchuk
Python 3 For Offensive PenTest: A Complete Practical Course [Video]

Learn to use Python for ethical hacking and penetration testing.

By Hussam Khrais