sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-29 21:13:51 +03:00
Code Issues Packages Projects Releases Wiki Activity

adding live test cases for --technique=1 too

Browse Source
This commit is contained in:
Miroslav Stampar 2011-03-24 12:19:40 +00:00
parent e42cdfd138
commit cef2c0879d
1 changed files with 115 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

142
xml/livetests.xml
View File

@ -6,45 +6,25 @@
<batch value="True"/> <batch value="True"/>
<verbose value="0"/> <verbose value="0"/>
</global> </global>
<case name="Postgres (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)"> <case name="MySQL (--technique=1 --is-dba --banner --current-user --current-db --dbs --tables -D testdb -o)">
<switches> <switches>
<url value="http://debianenv/sqlmap/pgsql/get_int.php?id=1"/> <url value="http://debianenv/sqlmap/mysql/get_int.php?id=1"/>
<isDba value="True"/> <isDba value="True"/>
<technique value="2"/> <technique value="1"/>
<getBanner value="True"/> <getBanner value="True"/>
<getCurrentUser value="True"/> <getCurrentUser value="True"/>
<getCurrentDb value="True"/> <getCurrentDb value="True"/>
<getDbs value="True"/> <getDbs value="True"/>
<getTables value="True"/> <getTables value="True"/>
<db value="testdb"/> <db value="testdb"/>
<optimize value="True"/>
</switches> </switches>
<log> <log>
<item value="current user is DBA: 'True'"/> <item value="current user is DBA: 'True'"/>
<item value="PostgreSQL 8.3.9 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2"/> <item value="banner: '5.1.41-3~bpo50+1'"/>
<item value="current user: 'testuser'"/> <item value="current user: 'root@localhost'"/>
<item value="current database: 'testdb'"/> <item value="current database: 'testdb'"/>
<item value="r'postgres.+template0.+template1.+testdb'"/> <item value="r'information_schema.+mysql.+owasp10.+testdb'"/>
<item value="r'1 table.+users'"/>
</log>
</case>
<case name="Postgres (--technique=3 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)">
<switches>
<url value="http://debianenv/sqlmap/pgsql/get_int.php?id=1"/>
<isDba value="True"/>
<technique value="3"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="testdb"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="PostgreSQL 8.3.9 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2"/>
<item value="current user: 'testuser'"/>
<item value="current database: 'testdb'"/>
<item value="r'postgres.+template0.+template1.+testdb'"/>
<item value="r'1 table.+users'"/> <item value="r'1 table.+users'"/>
</log> </log>
</case> </case>
@ -90,6 +70,92 @@
<item value="r'1 table.+users'"/> <item value="r'1 table.+users'"/>
</log> </log>
</case> </case>
<case name="Postgres (--technique=1 --is-dba --banner --current-user --current-db --dbs --tables -D testdb -o)">
<switches>
<url value="http://debianenv/sqlmap/pgsql/get_int.php?id=1"/>
<isDba value="True"/>
<technique value="1"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="testdb"/>
<optimize value="True"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="PostgreSQL 8.3.9 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2"/>
<item value="current user: 'testuser'"/>
<item value="current database: 'testdb'"/>
<item value="r'postgres.+template0.+template1.+testdb'"/>
<item value="r'1 table.+users'"/>
</log>
</case>
<case name="Postgres (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)">
<switches>
<url value="http://debianenv/sqlmap/pgsql/get_int.php?id=1"/>
<isDba value="True"/>
<technique value="2"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="testdb"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="PostgreSQL 8.3.9 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2"/>
<item value="current user: 'testuser'"/>
<item value="current database: 'testdb'"/>
<item value="r'postgres.+template0.+template1.+testdb'"/>
<item value="r'1 table.+users'"/>
</log>
</case>
<case name="Postgres (--technique=3 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)">
<switches>
<url value="http://debianenv/sqlmap/pgsql/get_int.php?id=1"/>
<isDba value="True"/>
<technique value="3"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="testdb"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="PostgreSQL 8.3.9 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2"/>
<item value="current user: 'testuser'"/>
<item value="current database: 'testdb'"/>
<item value="r'postgres.+template0.+template1.+testdb'"/>
<item value="r'1 table.+users'"/>
</log>
</case>
<case name="Oracle (--technique=1 --is-dba --banner --current-user --current-db --dbs --tables -D SCOTT -o)">
<switches>
<url value="http://debianenv/sqlmap/oracle/get_int.php?id=1"/>
<isDba value="True"/>
<technique value="1"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="SCOTT"/>
<optimize value="True"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="banner: 'Oracle Database 10g Enterprise Edition Release 10.2.0.1.0 - Prod'"/>
<item value="current user: 'SYS'"/>
<item value="'TESTDB.REGRESS.RDBMS.DEV.US.ORACLE.COM'"/>
<item value="r'available databases.+15.+CTXSYS.+DBSNMP.+SCOTT.+SYS.+SYSMAN'"/>
<item value="r'5 tables.+BONUS.+DEPT.+EMP.+SALGRADE.+USERS'"/>
</log>
</case>
<case name="Oracle (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D SCOTT)"> <case name="Oracle (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D SCOTT)">
<switches> <switches>
<url value="http://debianenv/sqlmap/oracle/get_int.php?id=1"/> <url value="http://debianenv/sqlmap/oracle/get_int.php?id=1"/>
@ -132,6 +198,28 @@
<item value="r'5 tables.+BONUS.+DEPT.+EMP.+SALGRADE.+USERS'"/> <item value="r'5 tables.+BONUS.+DEPT.+EMP.+SALGRADE.+USERS'"/>
</log> </log>
</case> </case>
<case name="MSSQL (--technique=1 --is-dba --banner --current-user --current-db --dbs --tables -D testdb -o)">
<switches>
<url value="http://windowsenv/sqlmap/mssql/iis/get_int.asp?id=1"/>
<isDba value="True"/>
<technique value="1"/>
<getBanner value="True"/>
<getCurrentUser value="True"/>
<getCurrentDb value="True"/>
<getDbs value="True"/>
<getTables value="True"/>
<db value="testdb"/>
<optimize value="True"/>
</switches>
<log>
<item value="current user is DBA: 'True'"/>
<item value="r'Microsoft SQL Server 2005.+Oct 14 2005 00:33:37'"/>
<item value="current user: 'sa'"/>
<item value="current database: 'testdb'"/>
<item value="r'available databases.+5.+master.+model.+msdb.+tempdb.+testdb'"/>
<item value="r'dbo\.sysdiagrams.+dbo\.users'"/>
</log>
</case>
<case name="MSSQL (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)"> <case name="MSSQL (--technique=2 --is-dba --banner --current-user --current-db --dbs --tables -D testdb)">
<switches> <switches>
<url value="http://windowsenv/sqlmap/mssql/iis/get_int.asp?id=1"/> <url value="http://windowsenv/sqlmap/mssql/iis/get_int.asp?id=1"/>