Really quickly before we move on, I did want to highlight some pre-requisites that you should have before taking this course.
In order to fully utilize sqlmap, it’s important that you have a solid foundation in these areas:
- SQL – You should know SQL pretty well. You don’t have to be a Database Administrator, but if you don’t know what I mean by SQL, then I would stop here and I would go find a course dedicated to SQL. Then, I would recommend that you check out my Injection Attacks course, because you will also need to learn about SQL injections before you can really understand this tool. Otherwise, it’s like buying a car when you’ve never driven one before. Yes, technically you can try to drive it, but you’re probably going to crash.
- What they are, how they work
- Different database engines and their differences (ie: MySQL vs SQLite)
- You don’t have to be an expert in this, of course, but if you don’t understand what I mean by database engines, that would be a red flag. Stop here and go find a database course!
- Web or Software Development
- At least understand how applications are built, structured, and how they use databases, because otherwise finding SQL injections is going to be very difficult, and you need to be able to find potential areas of attack to configure & use sqlmap properly
So I would say that those are the main 3 areas that you should be at least familiar with before taking this course. If any thing I said in this lesson is foreign to you, and you don’t understand it, or you’re rusty because it’s been a while since you’ve touched SQL (for example), then I would just try and brush up on that first, and then come right back and keep going!
That’s it, go ahead and complete this lesson, and let’s get started!