Description: sqlmap is one of the best tool used in penetration testing . it is open source tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It has some great features .
it has full Full support for MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, SQLite, Firebird, Sybase and SAP MaxDB database management systems.
it uses 5 different technique for this purpose.following are the techniques.
boolean-based blind, time-based blind, error-based, UNION query and stacked queries.
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
as far as i know it is best open source tool for sql injection. it covers almost all techniques.
Mostly I use sqlninja Batter then this :P