Miroslav Stampar
0b54553a76
quick fix for AV engines
2011-12-21 10:22:03 +00:00
Miroslav Stampar
0f5d48ff20
minor update
2011-12-05 09:25:56 +00:00
Miroslav Stampar
408d12dc41
minor fix
2011-12-05 08:26:00 +00:00
Miroslav Stampar
3fb22ef80a
another minor update
2011-12-05 00:03:05 +00:00
Miroslav Stampar
a462a9df43
minor update
2011-12-04 23:59:10 +00:00
Miroslav Stampar
b99c157d0f
patching DNS-leakage of SocksiPy extra module
2011-12-04 23:58:22 +00:00
Miroslav Stampar
ef987c6954
adding compatibility support for using --crawl and --forms together
2011-10-29 09:32:20 +00:00
Miroslav Stampar
25f0ec3597
some minor range to xrange conversion (where safe to do)
2011-10-21 22:34:27 +00:00
Bernardo Damele
50f4c4af52
Minor bug fix to parse also MSSQL 2008 R2 signatures
2011-07-24 23:43:01 +00:00
Bernardo Damele
aedcf8c8d7
Changed homepage address
2011-07-07 20:10:03 +00:00
Miroslav Stampar
b8ffcf9495
few fixes here and there and multi-core processing for dictionary based hash attack
2011-07-04 19:58:41 +00:00
Bernardo Damele
6d606d417b
Preparing for PostgreSQL 9.0 DLL (--os-pwn) compilation on Windows 64-bit
2011-06-28 13:41:15 +00:00
Bernardo Damele
1698630bc0
Added PostgreSQL 9.0 shared object for Linux 64-bit
2011-06-28 13:12:18 +00:00
Miroslav Stampar
7c830c2b1a
removing xmlobject
2011-06-22 14:33:03 +00:00
Miroslav Stampar
2a4a284a29
crawler fix (skip binary files)
2011-06-20 22:41:38 +00:00
Miroslav Stampar
d9015ed800
fix for a bug reported by krasn@deventum.com
2011-06-20 13:25:19 +00:00
Miroslav Stampar
07e2c72943
adding Beautifulsoup (BSD) into extras; adding --crawl to options
2011-06-20 11:32:30 +00:00
Miroslav Stampar
84978f16c9
fix for a "problem" reported by Kirill Morozov (nt authority\\network service)
2011-06-11 07:54:59 +00:00
Miroslav Stampar
0d0f2863af
adding one more tamper script
2011-06-09 09:38:07 +00:00
Bernardo Damele
cce3208b35
Cleanup
2011-06-08 14:15:34 +00:00
Miroslav Stampar
0486d1cdaa
minor module update
2011-05-24 10:32:21 +00:00
Miroslav Stampar
25fff8c135
changes in handling --tor (using SOCKS instead of HTTP for handling Tor - more standard way; doesn't require proxy bundle; fixes problems with default proxy ports on Win/Linux)
2011-05-21 11:46:57 +00:00
Miroslav Stampar
48ac9911c0
more graceful fix related to the last commit
2011-05-11 09:42:35 +00:00
Miroslav Stampar
402c623119
minor fix
2011-05-11 09:40:11 +00:00
Miroslav Stampar
53065ee1fb
adding ordered set for kb.targetUrls (now the order of appereance in multiple targets mode will be respected)
2011-05-11 08:55:48 +00:00
Bernardo Damele
28a4ae8eaf
Minor improvement to cleanup script
2011-05-06 13:53:10 +00:00
Bernardo Damele
eea96c5b8d
code cleanup
2011-05-05 08:50:18 +00:00
Bernardo Damele
f56d135438
Minor code restyling
2011-04-30 13:20:05 +00:00
Miroslav Stampar
6bb4dce3aa
minor refactoring
2011-04-29 15:22:32 +00:00
Bernardo Damele
e35f25b2cb
Major recode of --os-pwn functionality. Now the Metasploit shellcode can not be run as a Metasploit generated payload stager anymore. Instead it can be run on the target system either via sys_bineval() (as it was before, anti-forensics mode, all the same) or via shellcodeexec executable. Advantages are that:
...
* It is stealthier as the shellcode itself does not touch the filesystem, it's an argument passed to shellcodeexec at runtime.
* shellcodeexec is not (yet) recognized as malicious by any (Avast excluded) AV product.
* shellcodeexec binary size is significantly smaller than a Metasploit payload stager (even when packed with UPX).
* UPX now is not needed anymore, so sqlmap package is also way smaller and less likely to be detected itself as malicious by your AV software.
shellcodeexec source code, compilation files and binaries are in extra/shellcodeexec/ folder now - copied over from https://github.com/inquisb/shellcodeexec .
Minor code refactoring.
2011-04-24 23:01:21 +00:00
Miroslav Stampar
41924a6ead
fix for a bug reported by saccurso@skygear.com.ar (UnicodeDecodeError: 'ascii' codec can't decode byte 0xe9 in position 0: ordinal
...
not in range(128))
2011-04-21 23:17:16 +00:00
Bernardo Damele
8e2e06a7a3
layout adjustment
2011-04-21 09:25:42 +00:00
Miroslav Stampar
354a2ce249
'chardet' heuristic engine added to the project
2011-04-18 13:38:46 +00:00
Bernardo Damele
79d5804519
added propset
2011-04-15 16:28:48 +00:00
Bernardo Damele
48f916d5a4
Fixed a minor bug
2011-04-15 16:25:42 +00:00
Miroslav Stampar
c461fdca54
some refactoring
2011-04-15 13:51:06 +00:00
Miroslav Stampar
bf6ea35145
adding new tool safe2bin for decoding safe encoded values
2011-04-15 13:41:50 +00:00
Miroslav Stampar
a883316e22
i was on some heavy drugs (sys.stdout = fpOut)
2011-04-15 12:58:56 +00:00
Miroslav Stampar
0387654166
update of copyright string (until year)
2011-04-15 12:33:18 +00:00
Bernardo Damele
7c61931b96
Added notes on how to compile and get small shared libraries for UDF
2011-04-12 09:53:52 +00:00
Miroslav Stampar
305115a68b
important improvement of data handling (POST data and header values)
2011-04-03 15:02:52 +00:00
Miroslav Stampar
cd7e4f5afc
improvement for lots of multiple-selection forms (now by default the first one is selected - till now it was left unchecked which lead to blank get/post data for the whole form)
2011-04-01 22:12:24 +00:00
Miroslav Stampar
d8f7c4bc4c
minor update regarding support for crypt(3)
2011-03-26 21:41:37 +00:00
Miroslav Stampar
63b8156c00
some update (if header key is non-unicode comformant)
2011-02-25 09:43:04 +00:00
Miroslav Stampar
2bbbc9a41e
few updates
2011-02-25 09:35:24 +00:00
Bernardo Damele
156d8cd99b
Directory restyling
2011-02-08 00:15:02 +00:00
Bernardo Damele
0a81415f2f
Minor code cleanup
2011-02-08 00:02:54 +00:00
Bernardo Damele
6a71629575
Converted from DOS format (\n\r to \n only)
2011-02-06 23:25:55 +00:00
Miroslav Stampar
4df8a03c04
using OrderedDict to store parameters in order of appearance
2011-02-04 18:07:21 +00:00
Miroslav Stampar
a8fea8e4a8
fix for a bug noticed when using --keep-alive --threads on IIS/MSSQL
2011-02-03 15:09:53 +00:00