Miroslav Stampar
|
cf3b02ee04
|
Proper fix for #1053
|
2014-12-19 09:26:01 +01:00 |
|
Miroslav Stampar
|
35ed668a85
|
Minor improvement of the randomcase tamper script
|
2014-10-07 13:09:37 +02:00 |
|
Miroslav Stampar
|
46480d777a
|
Update for an Issue #835
|
2014-09-20 14:48:36 +02:00 |
|
Mehmet INCE
|
d34a57041e
|
Add random X-Forwarded-For to bypass IP Ban.
|
2014-09-19 20:59:33 +03:00 |
|
Miroslav Stampar
|
fa1cfa21e6
|
Improvement to BlueCoat's tamper script
|
2014-08-28 12:34:15 +02:00 |
|
Miroslav Stampar
|
13bf338f86
|
Implementation for an Issue #806
|
2014-08-28 11:58:22 +02:00 |
|
Miroslav Stampar
|
5d10bae31f
|
Removing trailing blank lines
|
2014-08-20 21:07:19 +02:00 |
|
Miroslav Stampar
|
6c4c82758d
|
Fix for an Issue #768
|
2014-07-29 13:26:58 +02:00 |
|
Miroslav Stampar
|
305ec45fc6
|
Update for an Issue #760
|
2014-07-10 08:52:32 +02:00 |
|
Miroslav Stampar
|
32af0b17b0
|
Update for an Issue #760
|
2014-07-10 08:49:20 +02:00 |
|
securitygeneration
|
5659eeec10
|
Modified regex to be case insensitive
Changed the regular expression to be case insensitive so that it works with the randomcase.py tamper script.
|
2014-06-08 19:14:38 +01:00 |
|
Miroslav Stampar
|
dac386735a
|
Patch for an Issue #713
|
2014-06-08 12:34:12 +02:00 |
|
Miroslav Stampar
|
efa3c3e451
|
Minor improvement of between tamper script
|
2014-04-22 11:04:28 +02:00 |
|
Miroslav Stampar
|
6fd3c27f70
|
Update for an Issue #672
|
2014-04-22 08:48:12 +02:00 |
|
Bernardo Damele
|
43a4e85749
|
updated copyright
|
2014-01-13 17:24:49 +00:00 |
|
Miroslav Stampar
|
3ff01f5777
|
Adding new tamper script
|
2013-11-09 00:23:34 +01:00 |
|
Miroslav Stampar
|
099e931a15
|
Minor fix
|
2013-09-21 12:24:49 +02:00 |
|
Miroslav Stampar
|
7725695f26
|
Fix for an Issue #511
|
2013-08-21 11:25:41 +02:00 |
|
Miroslav Stampar
|
02da417b23
|
Fix for a tamper script (in some cases comments were not inserted)
|
2013-07-31 09:52:10 +02:00 |
|
Miroslav Stampar
|
92dfb0f817
|
Minor patch
|
2013-06-16 12:35:20 +02:00 |
|
Miroslav Stampar
|
351c70b390
|
Locale module screws string.letters, etc. in some cases (e.g. IDLE run)
|
2013-06-01 14:06:58 +02:00 |
|
Miroslav Stampar
|
b8ab37651c
|
Minor update (tested against LAMP - %A0 makes problems)
|
2013-05-12 15:21:56 +02:00 |
|
Miroslav Stampar
|
4cb378ce3e
|
Another update for an Issue #352 and couple of fixes
|
2013-03-13 21:57:09 +01:00 |
|
stamparm
|
ba015608c6
|
Update for special cases
|
2013-02-19 10:12:47 +01:00 |
|
Bernardo Damele
|
4b9d8ed673
|
reverted a previous commit as not all distributions create a link file /usr/bin/python2 to the Python interpreter
|
2013-02-14 11:32:17 +00:00 |
|
Bernardo Damele
|
a67ef4117f
|
make sure to use Python 2 interpreter when default system Python is version 3
|
2013-02-14 11:25:04 +00:00 |
|
Miroslav Stampar
|
55a9f91bbf
|
Refactoring between.py script
|
2013-01-29 16:22:19 +01:00 |
|
Miroslav Stampar
|
e150316d97
|
Slight update for a greatest.py (more general approach)
|
2013-01-25 10:37:45 +01:00 |
|
Miroslav Stampar
|
90daef0b9c
|
Update of a doc/THANKS
|
2013-01-25 10:27:57 +01:00 |
|
Bernardo Damele
|
a43202f3c0
|
updated copyright
|
2013-01-18 14:07:51 +00:00 |
|
Miroslav Stampar
|
ca3d35a878
|
Some PEP8 related style cleaning
|
2013-01-10 13:18:44 +01:00 |
|
Miroslav Stampar
|
5b77b20e2e
|
Removing trailing whitespaces (PEP8)
|
2013-01-03 23:57:07 +01:00 |
|
Miroslav Stampar
|
8b7cbe03b0
|
Replacing CRLF with LF in rest of files
|
2012-12-26 17:12:17 +01:00 |
|
Miroslav Stampar
|
c41618416c
|
Removing trailing blanks
|
2012-12-14 12:00:45 +01:00 |
|
Miroslav Stampar
|
ab67344448
|
Removed unused imports and variables (pyflake-ing)
|
2012-12-06 11:15:05 +01:00 |
|
Miroslav Stampar
|
42a8234c6f
|
Update for an Issue #12
|
2012-12-03 14:27:01 +01:00 |
|
Miroslav Stampar
|
6ea07f7ba9
|
Fix of false statement (bluecoat.py was not meant to be used only against MySQL - Issue #261)
|
2012-11-29 15:53:54 +01:00 |
|
Miroslav Stampar
|
bdd819d7f2
|
Improvement of a between.py tamper script
|
2012-11-29 14:41:07 +01:00 |
|
Miroslav Stampar
|
5352b3ebd9
|
Refactoring code in tamper/bluecoat.py
|
2012-11-05 13:09:53 +01:00 |
|
Thanatos
|
60aa7a7cd0
|
Tamper for BlueCoat SGos WAF
|
2012-11-03 19:15:22 +01:00 |
|
Miroslav Stampar
|
12fc9442b9
|
Tamper function(s) refactoring (really no need for returning headers as they are passed by reference)
|
2012-10-25 10:10:23 +02:00 |
|
Miroslav Stampar
|
9451bfccaf
|
Update for Issue #163
|
2012-09-06 13:14:20 +02:00 |
|
Bernardo Damele
|
d492291744
|
working on issue #12
|
2012-07-26 23:11:07 +01:00 |
|
Miroslav Stampar
|
7f4fa7c27d
|
Minor refactoring
|
2012-07-24 01:21:32 +02:00 |
|
Bernardo Damele
|
162da75a04
|
modified homepage address
|
2012-07-12 18:38:03 +01:00 |
|
Miroslav Stampar
|
982fcde1c0
|
Fix for Issue #62
|
2012-07-06 12:24:55 +02:00 |
|
jekil
|
c39e5a85ba
|
Removed $id$ tags
|
2012-06-27 20:56:43 +02:00 |
|
Miroslav Stampar
|
ccd6fb70a8
|
minor refactoring
|
2012-04-15 17:17:30 +00:00 |
|
Miroslav Stampar
|
965c1511a6
|
adding new tamper script
|
2012-04-15 17:10:43 +00:00 |
|
Bernardo Damele
|
4ac2611a56
|
Added another tamper script
|
2012-03-09 12:09:19 +00:00 |
|
Miroslav Stampar
|
b3bd4144f5
|
removing of unused imports together with some general code refactoring
|
2012-02-22 10:40:11 +00:00 |
|
Miroslav Stampar
|
95f89ab63a
|
updating copyright date
|
2012-01-11 14:59:46 +00:00 |
|
Miroslav Stampar
|
526aacb640
|
code cleanup
|
2011-12-21 22:59:23 +00:00 |
|
Miroslav Stampar
|
41b60b26fc
|
minor refactoring
|
2011-12-21 14:25:39 +00:00 |
|
Miroslav Stampar
|
0ce885e6e6
|
adding base64encode tampering script
|
2011-11-21 12:47:23 +00:00 |
|
Miroslav Stampar
|
088be1b364
|
minor fix
|
2011-11-07 09:02:21 +00:00 |
|
Miroslav Stampar
|
fda27470da
|
minor update
|
2011-11-07 08:43:53 +00:00 |
|
Miroslav Stampar
|
5f08b90b6c
|
commiting new tampering scripts contributed by Roberto Salgado
|
2011-11-03 16:04:34 +00:00 |
|
Miroslav Stampar
|
24d495368e
|
minor update
|
2011-10-25 14:03:11 +00:00 |
|
Miroslav Stampar
|
38e2d0896b
|
new tamper script
|
2011-10-25 13:40:32 +00:00 |
|
Miroslav Stampar
|
8bd3cfdc8e
|
minor update
|
2011-10-24 00:17:38 +00:00 |
|
Miroslav Stampar
|
1cec29925c
|
added new tampering script by request
|
2011-10-19 22:07:23 +00:00 |
|
Bernardo Damele
|
f890b29f81
|
Proper reference to Metasploit Framework as now it's version 4, not 3 anymore
|
2011-09-12 17:26:22 +00:00 |
|
Miroslav Stampar
|
793f1d7774
|
new tampering script
|
2011-08-29 15:42:01 +00:00 |
|
Bernardo Damele
|
eeb4436471
|
renamed
|
2011-07-12 12:48:15 +00:00 |
|
Bernardo Damele
|
42c5bab013
|
renamed
|
2011-07-11 23:37:10 +00:00 |
|
Bernardo Damele
|
4ae71fd5f4
|
Updated docstring
|
2011-07-11 10:39:30 +00:00 |
|
Bernardo Damele
|
2b6b80d7f8
|
Updated docstring
|
2011-07-11 10:04:19 +00:00 |
|
Bernardo Damele
|
c9e6fc7695
|
Added new tamper script, tamper/space2mssqlblank.py from RS
|
2011-07-11 09:49:58 +00:00 |
|
Bernardo Damele
|
e47f873fa4
|
Renamed space2extrarandomblank.py to space2mysqlblank.py
|
2011-07-11 09:49:03 +00:00 |
|
Bernardo Damele
|
1e1f429668
|
Minor minor fix
|
2011-07-11 09:22:47 +00:00 |
|
Miroslav Stampar
|
5014475637
|
minor update (changing form of payload[i+1] with payload[i+1:i+2] which is much safer for not crashing the script with invalid char index)
|
2011-07-11 09:22:29 +00:00 |
|
Miroslav Stampar
|
7a6bddf811
|
minor fixes pointed by RS
|
2011-07-11 09:08:24 +00:00 |
|
Miroslav Stampar
|
b7433011f8
|
new tamper script by request
|
2011-07-08 22:48:03 +00:00 |
|
Bernardo Damele
|
05cb65b106
|
Added one more tamper script from Roberto Salgado and minor adjustment to others
|
2011-07-08 13:43:34 +00:00 |
|
Bernardo Damele
|
062c156fc0
|
Added another tamper script from Roberto Salgado
|
2011-07-08 11:03:14 +00:00 |
|
Bernardo Damele
|
aedcf8c8d7
|
Changed homepage address
|
2011-07-07 20:10:03 +00:00 |
|
Bernardo Damele
|
736327c893
|
Added two tamper scripts contributed by Roberto Salgado
|
2011-07-07 18:45:07 +00:00 |
|
Bernardo Damele
|
9d2aadd4a6
|
missing docstring details
|
2011-07-06 22:53:22 +00:00 |
|
Bernardo Damele
|
23b4efdcaf
|
Revamp of tamper scripts, now supporting dependencies() function as well. Improved a lot the docstring and retested all. Added a new one from Ahmad too.
|
2011-07-06 21:04:45 +00:00 |
|
Miroslav Stampar
|
366c2d279d
|
minor update
|
2011-06-30 08:02:52 +00:00 |
|
Miroslav Stampar
|
d063ae91eb
|
propset update
|
2011-06-30 07:55:07 +00:00 |
|
Miroslav Stampar
|
b361f60644
|
minor changes
|
2011-06-30 07:52:13 +00:00 |
|
Miroslav Stampar
|
f3013e4a29
|
minor update
|
2011-06-30 06:39:32 +00:00 |
|
Miroslav Stampar
|
caf22b58bc
|
new tamper script
|
2011-06-30 06:34:24 +00:00 |
|
Miroslav Stampar
|
4b784b03fd
|
adding new tamper script
|
2011-06-09 12:14:14 +00:00 |
|
Miroslav Stampar
|
0d0f2863af
|
adding one more tamper script
|
2011-06-09 09:38:07 +00:00 |
|
Miroslav Stampar
|
083a5535eb
|
added new tamper script by request
|
2011-06-09 09:01:54 +00:00 |
|
Miroslav Stampar
|
03ef53f00a
|
update regarding mysql function resolution and versionedkeywords
|
2011-05-28 17:34:43 +00:00 |
|
Miroslav Stampar
|
bfd923fe29
|
minor update
|
2011-05-28 16:16:20 +00:00 |
|
Miroslav Stampar
|
25f3143d92
|
minor update (to be concise with between)
|
2011-05-28 16:04:49 +00:00 |
|
Miroslav Stampar
|
7578795c96
|
adding one more tamper script
|
2011-05-28 16:02:14 +00:00 |
|
Miroslav Stampar
|
fef9a015da
|
minor update
|
2011-05-28 15:44:24 +00:00 |
|
Miroslav Stampar
|
39f131162f
|
adding very useful tampering script
|
2011-05-28 15:42:47 +00:00 |
|
Miroslav Stampar
|
0387654166
|
update of copyright string (until year)
|
2011-04-15 12:33:18 +00:00 |
|
Miroslav Stampar
|
3253882071
|
minor cosmetics on tamper scripts
|
2011-04-04 08:18:26 +00:00 |
|
Miroslav Stampar
|
33d987805d
|
minor revisit of encoding tampering scripts
|
2011-04-04 08:11:11 +00:00 |
|
Miroslav Stampar
|
e957c4400c
|
minor revisit of tampering script(s) functionality (urlencode one is removed as it's currently obsolete regarding the whole process of automatic urlencoding)
|
2011-04-04 08:04:47 +00:00 |
|
Bernardo Damele
|
6a71629575
|
Converted from DOS format (\n\r to \n only)
|
2011-02-06 23:25:55 +00:00 |
|
Miroslav Stampar
|
862395ced1
|
further refactoring (all enumerations are now put into enums.py)
|
2010-11-08 09:20:02 +00:00 |
|
Miroslav Stampar
|
18aea251b3
|
added concept of tamper script priority
|
2010-11-04 10:29:40 +00:00 |
|
Miroslav Stampar
|
d5fcc9d8b5
|
few updates/fixes here and there
|
2010-11-04 08:03:59 +00:00 |
|
Miroslav Stampar
|
5fc480a4c0
|
doubleencode.py renamed to urlencode.py
|
2010-11-04 07:47:31 +00:00 |
|
Bernardo Damele
|
27cea68bb8
|
No more need for 'place' parameter
|
2010-10-31 14:17:28 +00:00 |
|
Bernardo Damele
|
79c3a5e527
|
Reverted to r2206
|
2010-10-31 11:22:14 +00:00 |
|
Bernardo Damele
|
5ba36f89df
|
Fixed MySQL BETWEEN tamper script
|
2010-10-29 23:03:02 +00:00 |
|
Miroslav Stampar
|
5a38ac7ea9
|
important update regarding (Bug #209) - probably more will be needed
|
2010-10-29 16:11:50 +00:00 |
|
Miroslav Stampar
|
e4089e86e8
|
new tamper script (reference: http://hakipedia.com/index.php/SQL_Injection)
|
2010-10-22 18:57:04 +00:00 |
|
Miroslav Stampar
|
351a7f5769
|
setting property Id
|
2010-10-18 11:43:00 +00:00 |
|
Miroslav Stampar
|
3570b4a705
|
minor fix
|
2010-10-18 11:41:17 +00:00 |
|
Miroslav Stampar
|
fff7fe83c1
|
new tamper script
|
2010-10-18 11:39:28 +00:00 |
|
Bernardo Damele
|
1a9aabf49d
|
Minor fix
|
2010-10-18 10:40:05 +00:00 |
|
Bernardo Damele
|
c6cd8ae72b
|
Added another tamper script
|
2010-10-18 10:34:38 +00:00 |
|
Bernardo Damele
|
a2997a6dce
|
Minor bug fix to --tamper
|
2010-10-16 21:55:34 +00:00 |
|
Bernardo Damele
|
2dae934a2b
|
Minor bug fixes, code refactoring and enhanced --tamper functionality
|
2010-10-16 21:33:15 +00:00 |
|
Miroslav Stampar
|
1336b97c2c
|
removed --useBetween switch and added new tampering module ./tamper/between.py
|
2010-10-15 23:48:07 +00:00 |
|
Miroslav Stampar
|
4f7f20b94f
|
sorry, cosmetics
|
2010-10-14 23:18:29 +00:00 |
|
Miroslav Stampar
|
581cc8d29c
|
reverting due to unsuccesfull test results
|
2010-10-14 15:13:36 +00:00 |
|
Miroslav Stampar
|
c14905cd6e
|
only testing
|
2010-10-14 15:04:42 +00:00 |
|
Miroslav Stampar
|
8b48833136
|
large commit with copyright header modifications
|
2010-10-14 14:41:14 +00:00 |
|
Miroslav Stampar
|
780486306b
|
forgot to put "#!/usr/bin/env python"
|
2010-10-14 14:05:05 +00:00 |
|
Miroslav Stampar
|
d970e260b9
|
introducing new style for copyright header
|
2010-10-14 14:02:43 +00:00 |
|
Miroslav Stampar
|
255b21f2f4
|
minor bug fix
|
2010-10-14 11:12:03 +00:00 |
|
Miroslav Stampar
|
162d01abed
|
commit of all sorts (bug fix for heuristics and URI injections, fine tunning of tampering modules with SQL keywords,...)
|
2010-10-14 11:06:28 +00:00 |
|
Miroslav Stampar
|
cf73d9c799
|
minor update
|
2010-10-14 06:40:56 +00:00 |
|
Miroslav Stampar
|
058e1aecb4
|
minor update
|
2010-10-14 06:20:32 +00:00 |
|
Miroslav Stampar
|
120d6a4a7c
|
update
|
2010-10-13 20:59:06 +00:00 |
|
Miroslav Stampar
|
43a3ac2c3a
|
some bug fixes
|
2010-10-13 20:54:18 +00:00 |
|
Miroslav Stampar
|
1b3b916587
|
update of tampering modules
|
2010-10-13 19:51:10 +00:00 |
|
Miroslav Stampar
|
4b641afc46
|
minor update
|
2010-10-13 14:37:11 +00:00 |
|
Miroslav Stampar
|
a71fcfbcc9
|
one more tampering module
|
2010-10-13 14:29:53 +00:00 |
|
Miroslav Stampar
|
e81a293d20
|
new tampering module
|
2010-10-13 14:27:35 +00:00 |
|
Miroslav Stampar
|
2dc297530a
|
implemented first usable tamper module
|
2010-10-13 13:07:44 +00:00 |
|
Miroslav Stampar
|
34580f56fc
|
added --tamper option
|
2010-10-12 22:45:25 +00:00 |
|