# [sqlmap](https://sqlmap.org) > `sqlmap` is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections. Here's an example call ``` sqlmap -u http://10.129.41.9/dashboard.php?search=query --cookie "PHPSESSID=2m4kejgvghqe1fu1cnkk24ea6e" ``` `-u` specifies the url to the page. It should include the test parameter. If you want to test against a URL (and not a query parameter) put an injection marker `*` in the URL. By default all URL parameters will be tested. To test a specific parameters specify them using `-p`. Usually SQL searches are behind some login screen which is then bypassed using a session cookie. Capture that cookie from your browser and include it in using `--cookie`, `--os-shell` will attempt to use SQL injection to get a shell. ## Hack The Box Machines - [[Vaccine Write-up|Vaccine]]