| 
							
							
								 Miroslav Stampar | 196131bbca | minor cosmetics | 2010-12-09 10:42:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 71761ba9a5 | another fix for another beautiful heavy query payload which took a few 100 megs and 5 mins to run | 2010-12-09 10:35:18 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 094baadc5b | bug fix (in SELECT based heavy queries COUNT(*) should be used; otherwise multiple row error happens without proper delay) | 2010-12-09 10:17:04 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ec5c08ca7a | cosmetics | 2010-12-09 09:24:20 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 3fd1c37d53 | update | 2010-12-09 07:49:18 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | db39dc32fc | minor update | 2010-12-09 00:59:39 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 0c01be0eeb | Ugly work-around to avoid unescaping WAITFOR DELAY time between single quotes (unescaped CHAR(..) value does not work). | 2010-12-09 00:34:02 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 9c61adb21d | Cosmetics | 2010-12-09 00:26:06 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | b5c6527c72 | Minor fix | 2010-12-09 00:25:48 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 3b293c4ea7 | Added possible stacked queries time-based blind vector for MSSQL | 2010-12-08 23:55:42 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | f5ce739bdf | Added support for time-based blind SQL injection via stacked queries too. Need to add vectors for some DBMS yet. | 2010-12-08 23:52:31 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 10ef2b5de8 | Minor bug fix | 2010-12-08 23:09:42 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 54f6673609 | update | 2010-12-08 22:38:26 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | d6077273e0 | update | 2010-12-08 22:14:42 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5aee1fd8e0 | updated THANKS file | 2010-12-08 21:19:46 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 258e9fb50e | fix for a "bug" reported by Spencer J. McIntyre (os.makedirs(conf.outputPath, 0755) -> permission denied) | 2010-12-08 21:16:18 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 69c4f94980 | update | 2010-12-08 15:40:01 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 81c16926c1 | code refactoring some more | 2010-12-08 14:46:07 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 40fadf2f35 | minor update | 2010-12-08 14:33:10 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 95b48746a6 | cosmetics | 2010-12-08 14:29:09 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ed09c53ee4 | minor minor update | 2010-12-08 14:27:37 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 01cf1394a4 | code refactoring | 2010-12-08 14:26:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | af22679605 | minor update | 2010-12-08 13:09:27 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 6223f25dd9 | code beautification | 2010-12-08 13:04:48 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 64cc2588f1 | now resume is available for time-based blinds too | 2010-12-08 12:49:26 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 537b619165 | removing junk | 2010-12-08 12:30:25 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | b5e45939e3 | sqlmap premiere of blind time based query/bisection | 2010-12-08 12:28:54 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ad00fe13c1 | another fix for MySQL time based payloads | 2010-12-08 12:00:27 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 8227e6d3cf | bug fix for BENCHMARK time-based vectors | 2010-12-08 11:49:55 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 47bb31fb47 | code refactoring | 2010-12-08 11:30:25 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1ae2fa7f1a | update regarding time based payloads | 2010-12-08 11:26:54 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | bdff4aba6a | switching to quick_ratio | 2010-12-07 23:57:43 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c1b82cf09c | ratio() gives a considerable lag on real life cases, as real_quick_ratio() gives almost as good results | 2010-12-07 23:53:44 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | a4a63f5b1e | minor update | 2010-12-07 23:49:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 293ce18fed | two major bug fixes regarding time calculation (previously comparison was also a part of "delta", which screwed results in cases with large pages; other was a standard distribution based one) | 2010-12-07 23:32:33 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | b21eb88905 | minor update | 2010-12-07 22:45:38 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 575e50673b | minor update | 2010-12-07 19:27:01 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 398b82644a | little explanation | 2010-12-07 19:25:26 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | dc651d59ec | little mathematics here and there (used "Rules for normally distributed data") | 2010-12-07 19:19:12 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | ee72838231 | Removed debug print | 2010-12-07 17:19:29 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 5f97312f29 | Minor fix | 2010-12-07 17:17:38 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 8ff7c9a5a1 | Works on Oracle's GROUP BY too | 2010-12-07 17:17:01 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 81e7465ed2 | Cosmetics | 2010-12-07 17:16:21 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ecd4a5a532 | added standard deviation check in time based tests | 2010-12-07 16:39:31 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 294119d2ec | more advanced time technique(s) | 2010-12-07 16:04:53 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 4959da3ce6 | it's a must to double check time based payloads | 2010-12-07 14:59:11 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e53fef546e | update regarding session page templates | 2010-12-07 14:35:31 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | add6235b16 | removed pageTemplate from injection(s), it's not longer stored in session, and it's reloaded when resuming from session | 2010-12-07 14:06:54 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 0dc630203f | code refactoring | 2010-12-07 13:34:06 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 4f01d4c109 | number crunching based time payloads are now affected by conf.timeSec | 2010-12-07 13:24:18 +00:00 |  |