The sqlmap is one of the best known open source tools for penetration testing which automates the detection processes and implementations SQL Injections. It is based on python and one can find it in Kali Linux or download it from github.
The corresponding tool is also available for mobile Android by name sqlmapchik. Easy to use graphic environment and with a multitude of options without the use of a console. Its basic effectiveness is the same as the corresponding version for computer, but as an application it presents some instabilities on some devices, which are expected to be overcome over time. Also, some features available in regular sqlmap are missing such as:
- sqlmap API
- profiling
- log colorizing
- beeping
– Process definition injection defined by the user
- Upgrade
- Interfacing with the metasploit framework
It is understood that de facto some of these functions are difficult to integrate for the time being.
How to execute sqlmapchik and interface with the user while performing the results gives the same sense of usability as sqlmap.
An important condition about the ability to execute it sqlmapchik is the installation of the platform BusyBox and by extension to have been done root n device.
We thank her warmly SecTeam @SAMSONIC
