sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-25 19:13:48 +03:00
Code Issues Packages Projects Releases Wiki Activity

updated live tests

Browse Source
This commit is contained in:
Bernardo Damele 2014-01-10 17:38:04 +00:00
parent 148767941b
commit 4975aafa65
1 changed files with 57 additions and 57 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

114
xml/livetests.xml
View File

@ -61,13 +61,13 @@
</switches>
<parse>
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29.+clear-text password: testpass'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -105,13 +105,13 @@
</switches>
<parse>
<item value="Title: MySQL &gt;= 5.0 AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -149,13 +149,13 @@
</switches>
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -193,13 +193,13 @@
</switches>
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -220,7 +220,7 @@
</switches>
<parse>
<item value="Title: MySQL &gt; 5.0.11 AND time-based blind"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -251,13 +251,13 @@
</switches>
<parse>
<item value="Title: MySQL inline queries"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -295,15 +295,15 @@
<parse>
<item value="Title: AND boolean-based blind - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 8.4.0 and &lt; 9.0.0'"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user: 'postgres'"/>
<item value="current database: 'testdb'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+postgres'"/>
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4.+clear-text password: testpass'"/>
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
<item value="r'Database: public.+1 table.+users'"/>
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
@ -338,15 +338,15 @@
<parse>
<item value="Title: PostgreSQL AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 8.4.0 and &lt; 9.0.0'"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user: 'postgres'"/>
<item value="current database: 'testdb'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+postgres'"/>
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
<item value="r'Database: public.+1 table.+users'"/>
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
@ -381,15 +381,15 @@
<parse>
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 8.4.0 and &lt; 9.0.0'"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user: 'postgres'"/>
<item value="current database: 'testdb'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+postgres'"/>
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
<item value="r'Database: public.+1 table.+users'"/>
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
@ -424,15 +424,15 @@
<parse>
<item value="Title: Generic UNION query (NULL) - 3 columns"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 8.4.0 and &lt; 9.0.0'"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user: 'postgres'"/>
<item value="current database: 'testdb'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+postgres'"/>
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
<item value="r'Database: public.+1 table.+users'"/>
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
@ -449,7 +449,7 @@
</switches>
<parse>
<item value="Title: PostgreSQL &gt; 8.1 AND time-based blind"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -463,7 +463,7 @@
</switches>
<parse>
<item value="Title: PostgreSQL &gt; 8.1 stacked queries"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -495,15 +495,15 @@
<parse>
<item value="Title: PostgreSQL inline queries"/>
<item value="r'back-end DBMS: active fingerprint: PostgreSQL &gt;= 8.4.0 and &lt; 9.0.0'"/>
<item value="banner: 'PostgreSQL 8.4.17 on i486-pc-linux-gnu, compiled by GCC gcc-4.4.real (Debian 4.4.5-8) 4.4.5, 32-bit'"/>
<item value="banner: 'PostgreSQL 9.1.11 on i686-pc-linux-gnu, compiled by gcc (Debian 4.7.2-5) 4.7.2, 32-bit'"/>
<item value="current user: 'postgres'"/>
<item value="current database: 'testdb'"/>
<item value="current schema (equivalent to database on PostgreSQL): 'public'"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+postgres'"/>
<item value="r'database management system users password hashes:.+postgres \[.+password hash: md5d7d880f96044b72d0bba108ace96d1e4'"/>
<item value="r'database management system users privileges:.+postgres.+\(administrator\).+privilege: super'"/>
<item value="r'database management system users roles:.+postgres.+\(administrator\).+role: super'"/>
<item value="r'available databases \[.+template0.+template1.+testdb'"/>
<item value="r'available databases \[.+information_schema.+pg_catalog'"/>
<item value="r'Database: public.+1 table.+users'"/>
<item value="r'Database: public.+Table: users.+3 columns.+id.+int4.+surname.+bpchar'"/>
<item value="r'Database: public.+Table.+Entries.+users.+5'"/>
@ -3303,7 +3303,7 @@
</switches>
<parse>
<item value="Title: OR boolean-based blind - WHERE or HAVING clause"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3339,7 +3339,7 @@
<tbl value="international"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="r'Database: testdb.+Table: international.+3 entries.+šućuraj.+长江.+река Москва'"/>
</parse>
</case>
@ -3397,7 +3397,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'Payload: id=[\d]+\.[\d]+ UNION'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3412,7 +3412,7 @@
<parse>
<item value="Title: MySQL UNION query (NULL) - 3 columns"/>
<item value="r'Payload: id=1 AND [\d]+=[\d]+ UNION'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user is DBA: True"/>
</parse>
</case>
@ -3428,7 +3428,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="HTTP digest authentication">
@ -3440,7 +3440,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="Boolean-based predict output enumeration">
@ -3452,7 +3452,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="r'performed 112 queries'" console_output="True"/>
</parse>
</case>
@ -3466,7 +3466,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="r'performed 112 queries'" console_output="True"/>
</parse>
</case>
@ -3479,7 +3479,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="r'performed 126 queries'" console_output="True"/>
</parse>
</case>
@ -3511,13 +3511,13 @@
</switches>
<parse>
<item value="Title: MySQL &gt;= 5.0 AND error-based - WHERE or HAVING clause"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.1.12 and &lt; 5.5.0'"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="current user: 'root@%'"/>
<item value="r'back-end DBMS: active fingerprint: MySQL &gt;= 5.5.0'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/>
<item value="hostname: 'debian"/>
<item value="current user is DBA: True"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@''"/>
<item value="r'database management system users \[.+'debian-sys-maint'@'localhost'.+'root'@'"/>
<item value="r'database management system users password hashes:.+root \[.+password hash: \*00E247AC5F9AF26AE0194B41E1E769DEE1429A29'"/>
<item value="r'database management system users privileges:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+privilege: SUPER'"/>
<item value="r'database management system users roles:.+debian-sys-maint.+\(administrator\).+root.+\(administrator\).+role: SUPER'"/>
@ -3536,7 +3536,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="Custom POST data injection mark">
@ -3548,7 +3548,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="Custom HTTP header (UA) injection mark">
@ -3560,7 +3560,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="Custom FROM table in UNION query">
@ -3573,7 +3573,7 @@
</switches>
<parse>
<item value="r'VERSION\(\).+FROM INFORMATION_SCHEMA\.COLLATIONS'" console_output="True"/>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
</parse>
</case>
<case name="Estimated time of arrival">
@ -3585,7 +3585,7 @@
<getBanner value="True"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="r'100\% \[===.+=\] 17\/17'" console_output="True"/>
</parse>
</case>
@ -3597,7 +3597,7 @@
<answers value="Do you want to keep testing the others=Y"/>
</switches>
<parse>
<item value="banner: '5.1.66-0+squeeze1'"/>
<item value="banner: '5.5.33-0+wheezy1'"/>
<item value="testing for SQL injection on GET parameter 'pAram'" console_output="True"/>
<item value="testing for SQL injection on GET parameter 's'" console_output="True"/>
<item value="testing for SQL injection on GET parameter 'id'" console_output="True"/>