The Robot Framework script for executing sqlmap is as follows:
*** Settings ***
Library SSHLibrary
*** Variables ***
${HOST_URL} http://demo.testfire.net
*** Test Cases ***
SQL Injection Testing
[Documentation] Use SQLmap to do the SQL injection testing on target host
${output}= Execute Command python sqlmap.py -u ${HOST_URL} -- batch --banner
Should Not Contain ${output} vulnerable
In this case, we use Execute Command, and Should Not Contain to define the sqlmap execution steps and the expected testing results. Here you can see the difference that the adoption of Robot Framework makes. Robot Framework is a keyword-driven acceptance testing framework that is able to describe the testing steps with well-defined expected results.
Furthermore, Robot Framework is also flexible enough to define other user-defined keywords and variables, to make its output more understandable.