1

I want to understand the deep theory behind sqlmap - the decision making of the programm - how is it done? Is there any public paper? (There is still an option to read and understand sqlmap code and use -vvv switch).

I'm searching for a visualisation of sqlmap's decision tree.

Note: I know how SQL injection works and I'm familiar with sqlmap's wiki.

Awaaaaarghhh
  • 562
  • 2
  • 18
  • Yeah, i know how sql injection works and have read already the wiki. I'm interested how sqlmap decides which database is there and which version. It makes specific payloads to test the database and based on the response it decides which branch it should go further. I'm just curious how it works, but the codebase is really big and complex, so I search for academic paper or something in this direction (which i was unable to find) which would explain it more or less in detail – Awaaaaarghhh Dec 28 '18 at 22:41

1 Answers1

1

You may want to look at the list of presentations maintained by the sqlmap project. For example, they list sqlmap - Under the Hood and link to the slides. The same talk as presented by the author is available on Youtube (since slide decks often leave out the meat of the discussion).

gowenfawr
  • 71,975
  • 17
  • 161
  • 198