sqlmap

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 17:46:37 +03:00

Author	SHA1	Message	Date
Bernardo Damele	be81c20298	Minor layout adjustment	2010-03-25 16:26:50 +00:00
Bernardo Damele	2aadc5c939	Added support for --roles (for Oracle ROLE_PRIVS). Enhanced Oracle --privileges to fall-back to USER_SYS_PRIVS if DBA_SYS_PRIVS is not accessible (so session user is not DBA) - Fixes ticket #180 . Minor enhancement to Firebird to determine if a DB user is a DBA. Minor code refactoring.	2010-03-25 15:46:06 +00:00
Bernardo Damele	f4f68218bc	Minor layout adjustment for --threads and --eta output	2010-03-25 11:47:18 +00:00
Bernardo Damele	8e57767c48	Fixes #180 - properly url encode sqlmap payload in POST/Cookie too, like for GET	2010-03-23 10:27:39 +00:00
Bernardo Damele	f9a135e232	Minor bug fix and layout adjustment regarding --threading and standard output	2010-03-22 17:38:19 +00:00
Bernardo Damele	d13ad8b2d7	fixes #181 - proper save/resume information about single entry UNION SQL injection	2010-03-22 15:39:29 +00:00
Bernardo Damele	d00e4a458a	Code cleanup	2010-03-21 00:39:44 +00:00
Bernardo Damele	72f3674844	Minor bug fix	2010-03-18 17:36:58 +00:00
Bernardo Damele	0d559d14df	Initial support for SQLite (90% approx). Initial support for Firebird (30% approx). Initial support for Access (10% approx). Shared libraries code/installation scripts ported to 64bit, directory structure adapted. Minor code adjustments.	2010-03-18 17:20:54 +00:00
Bernardo Damele	d2f86fb0a5	Fixes #172 - also cookies are parsed from burp/webscarab logs (-l) and request file (-r) now	2010-03-16 15:21:42 +00:00
Bernardo Damele	466df89c4a	Fixes #178 and #179 - proper handling of custom redirects	2010-03-16 14:30:57 +00:00
Bernardo Damele	3b3353e05b	Revert last commit	2010-03-16 13:56:36 +00:00
Miroslav Stampar	1dfe558d3d	Fix for Issue #177	2010-03-16 13:11:44 +00:00
Bernardo Damele	323cf2b7f2	Fixes #177 - Don't exit at exception if in "multiple targets" mode (-l or -g)	2010-03-16 12:14:02 +00:00
Bernardo Damele	6d0ea86414	Fixes #59 - proper customizable redirect (302 and 301)	2010-03-15 14:24:43 +00:00
Miroslav Stampar	417f7fae00	Fix for "bug: -g uses wrong session file"	2010-03-15 12:02:04 +00:00
Miroslav Stampar	8af7d6c58b	minor cosmetic update	2010-03-15 11:55:13 +00:00
Miroslav Stampar	a0ec447b7d	fix for Issue #170	2010-03-15 11:33:34 +00:00
Bernardo Damele	7f5bc5e3fe	Increased version to 0.9-dev	2010-03-15 11:04:57 +00:00
Bernardo Damele	5063401130	Minor bug fix, fixes #170	2010-03-15 11:00:14 +00:00
Bernardo Damele	572b6fd920	sqlmap 0.8 stable!	2010-03-15 01:17:27 +00:00
Miroslav Stampar	a6ab42c873	new file with getch() method which we'll use for good samaritan feature	2010-03-13 17:28:23 +00:00
Miroslav Stampar	4c6c91a80b	another --reg-read fix	2010-03-12 23:12:06 +00:00
Bernardo Damele	7d8cc1a482	Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 1. there's kitrap0d (MS10-015) which is far more reliable, just recently fixed 2. works only to priv esc basically on MSSQL when it runs as NETWORK SERVICE and the machine is not patched against MS09-012 which is "rare" (hopefully) nowadays. Now sqlmap relies on kitrap0d and incognito to privilege escalate the database process' user privileges to SYSTEM, both via Meterpreter. Minor layout adjustments.	2010-03-12 22:43:35 +00:00
Miroslav Stampar	6b1ae62753	final fix for reading registry keys (now both parse and non-parse reads work fine)	2010-03-12 22:26:06 +00:00
Miroslav Stampar	0a2fe651ab	some fixes regarding registry reading	2010-03-12 22:09:58 +00:00
Bernardo Damele	25f8a72414	Minor layout adjustment	2010-03-12 14:48:33 +00:00
Miroslav Stampar	17d0b82fee	two dots instead of three	2010-03-12 14:31:14 +00:00
Bernardo Damele	e8d76994ba	Minor bug fix to avoid resuming data filled into the sqlmap support tables	2010-03-12 14:30:21 +00:00
Miroslav Stampar	15c638ac52	some beautification	2010-03-12 13:07:07 +00:00
Miroslav Stampar	7ec04281dd	minor adjustments	2010-03-12 12:46:26 +00:00
Miroslav Stampar	fffda32f76	fix for Bug #167	2010-03-12 12:38:19 +00:00
Bernardo Damele	f6adb431e6	Minor layout adjustment and typo fix	2010-03-12 12:23:05 +00:00
Bernardo Damele	b50a2288f4	Minor layout adjustments	2010-03-11 23:54:07 +00:00
Miroslav Stampar	ec43419ad1	minor makeup fix	2010-03-11 11:20:52 +00:00
Miroslav Stampar	2c053d5cfb	fix for Bug #166 (Keyboard interrupt in Python threading)	2010-03-11 11:14:20 +00:00
Bernardo Damele	fdf417f57e	Minor adjustment and bug fix	2010-03-10 22:08:11 +00:00
Miroslav Stampar	91dd609e26	fixed threading bug (difflib :)	2010-03-10 14:14:27 +00:00
Bernardo Damele	cc611c0010	Minor layout adjustments	2010-03-09 22:14:26 +00:00
Miroslav Stampar	3f3ddd5437	fix for that SELECT DISTINCT(LENGTH(...)) "misbehavior"	2010-03-09 13:14:43 +00:00
Bernardo Damele	8593741358	Minor bug fix	2010-03-05 15:25:53 +00:00
Bernardo Damele	7136c17f19	Minor log adjustments	2010-03-05 14:59:33 +00:00
Miroslav Stampar	6fd1f7f77c	update	2010-03-05 14:06:03 +00:00
Miroslav Stampar	58d54b6515	added new option --flush-session	2010-03-04 13:01:18 +00:00
Miroslav Stampar	b544405878	fixed some issue involving banner parsing	2010-03-04 09:15:26 +00:00
Bernardo Damele	ef7666c12b	Minor code cleanup	2010-03-03 19:23:43 +00:00
Bernardo Damele	9adeaa6191	Code cleanup	2010-03-03 18:57:09 +00:00
Bernardo Damele	a654a426ef	Minor adjustments	2010-03-03 16:19:17 +00:00
Bernardo Damele	156fdd96ef	Updated copyright	2010-03-03 15:26:27 +00:00
Miroslav Stampar	759b720425	documentation update	2010-03-03 13:59:29 +00:00
Miroslav Stampar	415d5f2b44	minor update	2010-03-03 13:49:24 +00:00
Miroslav Stampar	5d792feffd	minor update	2010-03-03 10:57:54 +00:00
Bernardo Damele	2f452480b3	Minor bug fix in syntax	2010-03-01 14:40:18 +00:00
Miroslav Stampar	c93e265269	fix for that banner fetching issue reported by Daniel Huckmann	2010-03-01 10:33:36 +00:00
Bernardo Damele	dd3f65f0fb	Updated ChangeLog	2010-02-26 15:37:24 +00:00
Bernardo Damele	f53ef947f1	Slightly stealthier	2010-02-26 13:14:57 +00:00
Bernardo Damele	694356821d	sqlmap does not save nor leave back in temporary folder any file named 'sqlmapRANDOM', only random names now, less suspicious	2010-02-26 13:13:50 +00:00
Miroslav Stampar	1f2a1bb24c	removed some redundant code	2010-02-26 12:36:41 +00:00
Bernardo Damele	8c68d25b39	Major bug fix, be careful when editing isWindowsPath() and normalizePath() in common.py, they can break all	2010-02-26 12:00:47 +00:00
Miroslav Stampar	89e919f07a	fixing my mistake	2010-02-26 10:01:23 +00:00
Miroslav Stampar	5ebf572cae	added option --ignore-proxy	2010-02-25 20:55:10 +00:00
Bernardo Damele	98496fd173	Show also site in the banner	2010-02-25 17:37:46 +00:00
Bernardo Damele	404927d04a	Adjusted banner, increased release candidate to rc7	2010-02-25 17:34:54 +00:00
Miroslav Stampar	e4c34ff86c	changed default web server language behaviour	2010-02-25 16:55:02 +00:00
Miroslav Stampar	d95a8850c8	fix	2010-02-25 16:38:39 +00:00
Miroslav Stampar	0913d700a8	important update regarding default directories	2010-02-25 15:22:41 +00:00
Bernardo Damele	a10adcfe08	Minor code cleanup	2010-02-25 15:16:41 +00:00
Miroslav Stampar	4a3fa69f9d	minor adjustment	2010-02-25 15:07:54 +00:00
Miroslav Stampar	3721451cd6	default dirs update	2010-02-25 14:51:39 +00:00
Bernardo Damele	0df5b5fed9	Minor bug fix and code adjustments	2010-02-25 14:06:44 +00:00
Miroslav Stampar	a0f5c3d885	minor update	2010-02-25 13:45:28 +00:00
Miroslav Stampar	3e152f8b20	minor code refactoring	2010-02-25 13:33:52 +00:00
Miroslav Stampar	28d5248c04	one more fix regarding localhost/global proxy issue	2010-02-25 13:30:22 +00:00
Miroslav Stampar	24d3e24db0	more updates regarding --os-shell feature	2010-02-25 12:16:49 +00:00
Miroslav Stampar	b558712a47	more feature updates	2010-02-25 11:40:49 +00:00
Miroslav Stampar	15d1fcbb7f	now runcmd exe has random name too	2010-02-25 10:47:12 +00:00
Miroslav Stampar	2cafd5697b	new changes regarding --os-shell	2010-02-25 10:33:41 +00:00
Miroslav Stampar	858cb25975	update	2010-02-24 23:40:56 +00:00
Miroslav Stampar	4bea0e343a	Avoiding md5/sha1 deprecated warning in Python >=2.6	2010-02-23 08:54:33 +00:00
Miroslav Stampar	9c014c0fd0	minor change	2010-02-20 23:11:05 +00:00
Miroslav Stampar	2a07af2294	removed pdb tracing	2010-02-20 22:36:17 +00:00
Miroslav Stampar	0debc95ad4	some fixes	2010-02-20 22:31:54 +00:00
Bernardo Damele	d1e3596382	Minor UPX adjustment	2010-02-20 19:02:55 +00:00
Miroslav Stampar	0ed5ba5559	minor update	2010-02-16 13:24:09 +00:00
Miroslav Stampar	c4951fd631	some updates regarding --os-shell option	2010-02-16 13:20:34 +00:00
Bernardo Damele	8131f9c77c	Added and fixed README files	2010-02-12 00:20:53 +00:00
Bernardo Damele	dc06b40ddc	Minor exception message fix	2010-02-11 23:07:33 +00:00
Bernardo Damele	89dc99188d	--read-file on PostgreSQL now relies on the new sys_fileread() UDF so that also binary files can be read. Fixed a minor bug in custom UDF injection feature --udf-inject. Major code refactoring.	2010-02-11 22:57:50 +00:00
Miroslav Stampar	cef248a5ea	update for that invalid target url Otavio Augusto reported	2010-02-10 12:06:23 +00:00
Miroslav Stampar	203cfd114f	changed raised exception type	2010-02-10 09:39:36 +00:00
Miroslav Stampar	8e8f6f842c	fix for that md5 error reported by Dani (lgrecol@gmail.com)	2010-02-10 09:27:34 +00:00
Miroslav Stampar	00a23ace9a	some changes regarding web takeover	2010-02-09 14:27:41 +00:00
Miroslav Stampar	542b01993e	minor fix regarding exception handling of multi-part post handler	2010-02-09 14:02:47 +00:00
Miroslav Stampar	a6674edf8a	regular expressions revisited	2010-02-09 13:01:08 +00:00
Bernardo Damele	5c92fad5dc	Avoid to check for existence of not needed UDFs and minor code adjustment for cleanup() method	2010-02-05 23:14:16 +00:00
Bernardo Damele	b08a4efb4b	Minor layout adjustments	2010-02-04 17:45:56 +00:00
Miroslav Stampar	d291464cd4	code refactoring regarding path normalization	2010-02-04 14:50:54 +00:00
Miroslav Stampar	dbd52c52e4	minor fix	2010-02-04 14:39:24 +00:00
Miroslav Stampar	ec63fc4036	code refactoring - added functions posixToNtSlashes and ntToPosixSlashes	2010-02-04 14:37:00 +00:00
Miroslav Stampar	87239476af	more fixes :)	2010-02-04 10:10:41 +00:00

1 2 3 4 5 ...

386 Commits