SQLMap is an open-source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws. It is widely used by security professionals to perform database fingerprinting, data extraction, and full database takeover during vulnerability assessments.

Features of SQLMap:

• Supports a wide range of SQL injection techniques including boolean-based, error-based, UNION query-based, time-based, and out-of-band.
• Automates the process of database enumeration and data dumping.
• Supports multiple database management systems such as MySQL, PostgreSQL, Oracle, Microsoft SQL Server, and SQLite.
• Includes options to access the file system, execute system commands, and establish reverse shells on the target host (if exploitable).
• Supports authentication, proxy settings, and tamper scripts to bypass web application firewalls (WAFs).
• Compatible with HTTP, HTTPS, GET, POST, cookies, and custom headers for flexible targeting.

To check the installed version of sqlmap, run these commands in your environment:

$ sudo su
$ cd /opt
$ sqlmap --version

Disclaimer: SQLMap is open-source software released under the GNU General Public License (GPL). It is intended for lawful testing and educational purposes only. Unauthorized use on systems without permission is illegal. The developers disclaim all liability for any misuse, damage, or legal issues resulting from its use. Use responsibly and ethically.