sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 09:36:35 +03:00
Code Issues Packages Projects Releases Wiki Activity

Updated

Browse Source
This commit is contained in:
Bernardo Damele 2010-05-12 22:02:18 +00:00
parent 893bc04fe4
commit b2c5807109
3 changed files with 23 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
doc/README.html
View File

@ -279,9 +279,9 @@ bug fixes.</LI>
<P>
<UL>
<LI><B>December 18</B>, Miroslav Stampar replies to my public call
for developers. He contributes actively in the development of sqlmap from
version <B>0.8 release candidate 2</B>.
<LI><B>December 18</B>, Miroslav Stampar replies to the call for
developers. Along with Bernardo, he actively develops sqlmap from version
<B>0.8 release candidate 2</B>.
</LI>
<LI><B>December 12</B>, Bernardo writes to the mailing list a post
titled
@ -289,7 +289,7 @@ titled
achieved during these first three years of the project and launches a call
for developers.
</LI>
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged into
sqlmap-users
<A HREF="http://sqlmap.sourceforge.net/#ml">mailing list</A>.
</LI>
@ -313,7 +313,7 @@ inject custom user-defined functions.
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule">present</A> their research (
<A HREF="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">slides</A>) at SOURCE Conference 2009 in Barcelona, Spain.
</LI>
<LI><B>August</B>, Bernardo is accepted as a speaker to two others IT
<LI><B>August</B>, Bernardo is accepted as a speaker at two others IT
security conferences,
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009">SOURCE Barcelona 2009</A> and
<A HREF="http://200902.confidence.org.pl/">CONfidence 2009 Warsaw</A>.
@ -329,7 +329,7 @@ an updated version of his
<A HREF="http://www.digitalsecurityforum.eu/">2nd Digital Security Forum</A> in
Lisbon, Portugal.
</LI>
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made it way to
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made its way to
the official Ubuntu repository too.
</LI>
<LI><B>May</B>, Bernardo presents again his research on operating
@ -424,9 +424,10 @@ away from SourceForge and goes private for a while.</LI>
<UL>
<LI><B>November 4</B>, release <B>0.5</B> marks the end of the OWASP
Spring of Code 2007 contest participation. Bernardo has
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include initial support
for Oracle, enhanced support for UNION query SQL injection and support to
test and exploit injections on HTTP Cookie and User-Agent headers.
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include also initial
support for Oracle, enhanced support for UNION query SQL injection and
support to test and exploit SQL injections in HTTP Cookie and User-Agent
headers.
</LI>
<LI><B>June 15</B>, Bernardo releases version <B>0.4</B> as a
result of the first OWASP Spring of Code 2007 milestone. This release
@ -677,7 +678,7 @@ Metasploit's <CODE>getsystem</CODE> command which include, among others,
the
<A HREF="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html">kitrap0d</A> technique (
<A HREF="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx">MS10-015</A>) or via
<A HREF="http://www.argeniss.com/research/TokenKidnapping.pdf">Windows Access Tokens kidnapping</A> by using Meterpreter's
<A HREF="http://labs.mwrinfosecurity.com/files/Publications/mwri_security-implications-of-windows-access-tokens_2008-04-14.pdf">Windows Access Tokens insecure design</A> by using Meterpreter's
<CODE>incognito</CODE> extension.
</LI>
<LI>Support to access (read/add/delete) Windows registry hives.</LI>

BIN
doc/README.pdf
View File

Binary file not shown.

23
doc/README.sgml
View File

@ -226,9 +226,9 @@ name="AthCon" url="http://www.athcon.org"> conference in Greece on June
<p>
<itemize>
<item><bf>December 18</bf>, Miroslav Stampar replies to my public call
for developers. He contributes actively in the development of sqlmap from
version <bf>0.8 release candidate 2</bf>.
<item><bf>December 18</bf>, Miroslav Stampar replies to the call for
developers. Along with Bernardo, he actively develops sqlmap from version
<bf>0.8 release candidate 2</bf>.
<item><bf>December 12</bf>, Bernardo writes to the mailing list a post
titled <htmlurl url="http://bernardodamele.blogspot.com/2009/12/sqlmap-state-of-art-3-years-later.html"
@ -236,7 +236,7 @@ name="sqlmap state of art - 3 years later"> highlighting the goals
achieved during these first three years of the project and launches a call
for developers.
<item><bf>December 4</bf>, sqlmap-devel mailing list has been merged
<item><bf>December 4</bf>, sqlmap-devel mailing list has been merged into
sqlmap-users <htmlurl name="mailing list" url="http://sqlmap.sourceforge.net/#ml">.
<item><bf>November 20</bf>, Bernardo and Guido present again their
@ -259,7 +259,7 @@ url="http://www.pornosecurity.org"> <htmlurl name="present"
url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule"> their research (<htmlurl name="slides"
url="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">) at SOURCE Conference 2009 in Barcelona, Spain.
<item><bf>August</bf>, Bernardo is accepted as a speaker to two others IT
<item><bf>August</bf>, Bernardo is accepted as a speaker at two others IT
security conferences, <htmlurl url="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009" name="SOURCE Barcelona 2009"> and <htmlurl url="http://200902.confidence.org.pl/"
name="CONfidence 2009 Warsaw">.
This new research is titled <em>Expanding the control over the operating
@ -274,7 +274,7 @@ an updated version of his
Digital Security Forum" url="http://www.digitalsecurityforum.eu/"> in
Lisbon, Portugal.
<item><bf>June 2</bf>, sqlmap version <bf>0.6.4</bf> has made it way to
<item><bf>June 2</bf>, sqlmap version <bf>0.6.4</bf> has made its way to
the official Ubuntu repository too.
<item><bf>May</bf>, Bernardo presents again his research on operating
@ -372,9 +372,10 @@ away from SourceForge and goes private for a while.
<item><bf>November 4</bf>, release <bf>0.5</bf> marks the end of the OWASP
Spring of Code 2007 contest participation. Bernardo has <htmlurl
url="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page"
name="accomplished"> all the propsed objects which include initial support
for Oracle, enhanced support for UNION query SQL injection and support to
test and exploit injections on HTTP Cookie and User-Agent headers.
name="accomplished"> all the propsed objects which include also initial
support for Oracle, enhanced support for UNION query SQL injection and
support to test and exploit SQL injections in HTTP Cookie and User-Agent
headers.
<item><bf>June 15</bf>, Bernardo releases version <bf>0.4</bf> as a
result of the first OWASP Spring of Code 2007 milestone. This release
@ -624,8 +625,8 @@ url="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html"
name="kitrap0d"> technique (<htmlurl
url="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx"
name="MS10-015">) or via <htmlurl
url="http://www.argeniss.com/research/TokenKidnapping.pdf"
name="Windows Access Tokens kidnapping"> by using Meterpreter's
url="http://labs.mwrinfosecurity.com/files/Publications/mwri_security-implications-of-windows-access-tokens_2008-04-14.pdf"
name="Windows Access Tokens insecure design"> by using Meterpreter's
<tt>incognito</tt> extension.
<item>Support to access (read/add/delete) Windows registry hives.