mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-28 20:43:49 +03:00
Updated
This commit is contained in:
parent
893bc04fe4
commit
b2c5807109
|
@ -279,9 +279,9 @@ bug fixes.</LI>
|
||||||
|
|
||||||
<P>
|
<P>
|
||||||
<UL>
|
<UL>
|
||||||
<LI><B>December 18</B>, Miroslav Stampar replies to my public call
|
<LI><B>December 18</B>, Miroslav Stampar replies to the call for
|
||||||
for developers. He contributes actively in the development of sqlmap from
|
developers. Along with Bernardo, he actively develops sqlmap from version
|
||||||
version <B>0.8 release candidate 2</B>.
|
<B>0.8 release candidate 2</B>.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>December 12</B>, Bernardo writes to the mailing list a post
|
<LI><B>December 12</B>, Bernardo writes to the mailing list a post
|
||||||
titled
|
titled
|
||||||
|
@ -289,7 +289,7 @@ titled
|
||||||
achieved during these first three years of the project and launches a call
|
achieved during these first three years of the project and launches a call
|
||||||
for developers.
|
for developers.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged
|
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged into
|
||||||
sqlmap-users
|
sqlmap-users
|
||||||
<A HREF="http://sqlmap.sourceforge.net/#ml">mailing list</A>.
|
<A HREF="http://sqlmap.sourceforge.net/#ml">mailing list</A>.
|
||||||
</LI>
|
</LI>
|
||||||
|
@ -313,7 +313,7 @@ inject custom user-defined functions.
|
||||||
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule">present</A> their research (
|
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule">present</A> their research (
|
||||||
<A HREF="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">slides</A>) at SOURCE Conference 2009 in Barcelona, Spain.
|
<A HREF="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">slides</A>) at SOURCE Conference 2009 in Barcelona, Spain.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>August</B>, Bernardo is accepted as a speaker to two others IT
|
<LI><B>August</B>, Bernardo is accepted as a speaker at two others IT
|
||||||
security conferences,
|
security conferences,
|
||||||
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009">SOURCE Barcelona 2009</A> and
|
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009">SOURCE Barcelona 2009</A> and
|
||||||
<A HREF="http://200902.confidence.org.pl/">CONfidence 2009 Warsaw</A>.
|
<A HREF="http://200902.confidence.org.pl/">CONfidence 2009 Warsaw</A>.
|
||||||
|
@ -329,7 +329,7 @@ an updated version of his
|
||||||
<A HREF="http://www.digitalsecurityforum.eu/">2nd Digital Security Forum</A> in
|
<A HREF="http://www.digitalsecurityforum.eu/">2nd Digital Security Forum</A> in
|
||||||
Lisbon, Portugal.
|
Lisbon, Portugal.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made it way to
|
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made its way to
|
||||||
the official Ubuntu repository too.
|
the official Ubuntu repository too.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>May</B>, Bernardo presents again his research on operating
|
<LI><B>May</B>, Bernardo presents again his research on operating
|
||||||
|
@ -424,9 +424,10 @@ away from SourceForge and goes private for a while.</LI>
|
||||||
<UL>
|
<UL>
|
||||||
<LI><B>November 4</B>, release <B>0.5</B> marks the end of the OWASP
|
<LI><B>November 4</B>, release <B>0.5</B> marks the end of the OWASP
|
||||||
Spring of Code 2007 contest participation. Bernardo has
|
Spring of Code 2007 contest participation. Bernardo has
|
||||||
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include initial support
|
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include also initial
|
||||||
for Oracle, enhanced support for UNION query SQL injection and support to
|
support for Oracle, enhanced support for UNION query SQL injection and
|
||||||
test and exploit injections on HTTP Cookie and User-Agent headers.
|
support to test and exploit SQL injections in HTTP Cookie and User-Agent
|
||||||
|
headers.
|
||||||
</LI>
|
</LI>
|
||||||
<LI><B>June 15</B>, Bernardo releases version <B>0.4</B> as a
|
<LI><B>June 15</B>, Bernardo releases version <B>0.4</B> as a
|
||||||
result of the first OWASP Spring of Code 2007 milestone. This release
|
result of the first OWASP Spring of Code 2007 milestone. This release
|
||||||
|
@ -677,7 +678,7 @@ Metasploit's <CODE>getsystem</CODE> command which include, among others,
|
||||||
the
|
the
|
||||||
<A HREF="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html">kitrap0d</A> technique (
|
<A HREF="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html">kitrap0d</A> technique (
|
||||||
<A HREF="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx">MS10-015</A>) or via
|
<A HREF="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx">MS10-015</A>) or via
|
||||||
<A HREF="http://www.argeniss.com/research/TokenKidnapping.pdf">Windows Access Tokens kidnapping</A> by using Meterpreter's
|
<A HREF="http://labs.mwrinfosecurity.com/files/Publications/mwri_security-implications-of-windows-access-tokens_2008-04-14.pdf">Windows Access Tokens insecure design</A> by using Meterpreter's
|
||||||
<CODE>incognito</CODE> extension.
|
<CODE>incognito</CODE> extension.
|
||||||
</LI>
|
</LI>
|
||||||
<LI>Support to access (read/add/delete) Windows registry hives.</LI>
|
<LI>Support to access (read/add/delete) Windows registry hives.</LI>
|
||||||
|
|
BIN
doc/README.pdf
BIN
doc/README.pdf
Binary file not shown.
|
@ -226,9 +226,9 @@ name="AthCon" url="http://www.athcon.org"> conference in Greece on June
|
||||||
|
|
||||||
<p>
|
<p>
|
||||||
<itemize>
|
<itemize>
|
||||||
<item><bf>December 18</bf>, Miroslav Stampar replies to my public call
|
<item><bf>December 18</bf>, Miroslav Stampar replies to the call for
|
||||||
for developers. He contributes actively in the development of sqlmap from
|
developers. Along with Bernardo, he actively develops sqlmap from version
|
||||||
version <bf>0.8 release candidate 2</bf>.
|
<bf>0.8 release candidate 2</bf>.
|
||||||
|
|
||||||
<item><bf>December 12</bf>, Bernardo writes to the mailing list a post
|
<item><bf>December 12</bf>, Bernardo writes to the mailing list a post
|
||||||
titled <htmlurl url="http://bernardodamele.blogspot.com/2009/12/sqlmap-state-of-art-3-years-later.html"
|
titled <htmlurl url="http://bernardodamele.blogspot.com/2009/12/sqlmap-state-of-art-3-years-later.html"
|
||||||
|
@ -236,7 +236,7 @@ name="sqlmap state of art - 3 years later"> highlighting the goals
|
||||||
achieved during these first three years of the project and launches a call
|
achieved during these first three years of the project and launches a call
|
||||||
for developers.
|
for developers.
|
||||||
|
|
||||||
<item><bf>December 4</bf>, sqlmap-devel mailing list has been merged
|
<item><bf>December 4</bf>, sqlmap-devel mailing list has been merged into
|
||||||
sqlmap-users <htmlurl name="mailing list" url="http://sqlmap.sourceforge.net/#ml">.
|
sqlmap-users <htmlurl name="mailing list" url="http://sqlmap.sourceforge.net/#ml">.
|
||||||
|
|
||||||
<item><bf>November 20</bf>, Bernardo and Guido present again their
|
<item><bf>November 20</bf>, Bernardo and Guido present again their
|
||||||
|
@ -259,7 +259,7 @@ url="http://www.pornosecurity.org"> <htmlurl name="present"
|
||||||
url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule"> their research (<htmlurl name="slides"
|
url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule"> their research (<htmlurl name="slides"
|
||||||
url="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">) at SOURCE Conference 2009 in Barcelona, Spain.
|
url="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">) at SOURCE Conference 2009 in Barcelona, Spain.
|
||||||
|
|
||||||
<item><bf>August</bf>, Bernardo is accepted as a speaker to two others IT
|
<item><bf>August</bf>, Bernardo is accepted as a speaker at two others IT
|
||||||
security conferences, <htmlurl url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009" name="SOURCE Barcelona 2009"> and <htmlurl url="http://200902.confidence.org.pl/"
|
security conferences, <htmlurl url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009" name="SOURCE Barcelona 2009"> and <htmlurl url="http://200902.confidence.org.pl/"
|
||||||
name="CONfidence 2009 Warsaw">.
|
name="CONfidence 2009 Warsaw">.
|
||||||
This new research is titled <em>Expanding the control over the operating
|
This new research is titled <em>Expanding the control over the operating
|
||||||
|
@ -274,7 +274,7 @@ an updated version of his
|
||||||
Digital Security Forum" url="http://www.digitalsecurityforum.eu/"> in
|
Digital Security Forum" url="http://www.digitalsecurityforum.eu/"> in
|
||||||
Lisbon, Portugal.
|
Lisbon, Portugal.
|
||||||
|
|
||||||
<item><bf>June 2</bf>, sqlmap version <bf>0.6.4</bf> has made it way to
|
<item><bf>June 2</bf>, sqlmap version <bf>0.6.4</bf> has made its way to
|
||||||
the official Ubuntu repository too.
|
the official Ubuntu repository too.
|
||||||
|
|
||||||
<item><bf>May</bf>, Bernardo presents again his research on operating
|
<item><bf>May</bf>, Bernardo presents again his research on operating
|
||||||
|
@ -372,9 +372,10 @@ away from SourceForge and goes private for a while.
|
||||||
<item><bf>November 4</bf>, release <bf>0.5</bf> marks the end of the OWASP
|
<item><bf>November 4</bf>, release <bf>0.5</bf> marks the end of the OWASP
|
||||||
Spring of Code 2007 contest participation. Bernardo has <htmlurl
|
Spring of Code 2007 contest participation. Bernardo has <htmlurl
|
||||||
url="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page"
|
url="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page"
|
||||||
name="accomplished"> all the propsed objects which include initial support
|
name="accomplished"> all the propsed objects which include also initial
|
||||||
for Oracle, enhanced support for UNION query SQL injection and support to
|
support for Oracle, enhanced support for UNION query SQL injection and
|
||||||
test and exploit injections on HTTP Cookie and User-Agent headers.
|
support to test and exploit SQL injections in HTTP Cookie and User-Agent
|
||||||
|
headers.
|
||||||
|
|
||||||
<item><bf>June 15</bf>, Bernardo releases version <bf>0.4</bf> as a
|
<item><bf>June 15</bf>, Bernardo releases version <bf>0.4</bf> as a
|
||||||
result of the first OWASP Spring of Code 2007 milestone. This release
|
result of the first OWASP Spring of Code 2007 milestone. This release
|
||||||
|
@ -624,8 +625,8 @@ url="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html"
|
||||||
name="kitrap0d"> technique (<htmlurl
|
name="kitrap0d"> technique (<htmlurl
|
||||||
url="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx"
|
url="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx"
|
||||||
name="MS10-015">) or via <htmlurl
|
name="MS10-015">) or via <htmlurl
|
||||||
url="http://www.argeniss.com/research/TokenKidnapping.pdf"
|
url="http://labs.mwrinfosecurity.com/files/Publications/mwri_security-implications-of-windows-access-tokens_2008-04-14.pdf"
|
||||||
name="Windows Access Tokens kidnapping"> by using Meterpreter's
|
name="Windows Access Tokens insecure design"> by using Meterpreter's
|
||||||
<tt>incognito</tt> extension.
|
<tt>incognito</tt> extension.
|
||||||
|
|
||||||
<item>Support to access (read/add/delete) Windows registry hives.
|
<item>Support to access (read/add/delete) Windows registry hives.
|
||||||
|
|
Loading…
Reference in New Issue
Block a user