| 
							
							
								 Miroslav Stampar | 6177317a17 | minor update | 2012-05-09 10:06:23 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 37f2709197 | making a generic solution for all "Generic comment"/MsAccess cases (it's the only DBMS which doesn't accept --, hence replacing generic comment with %00 for it) | 2012-05-09 09:08:23 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | fdf61015ad | minor patch | 2012-05-09 08:41:05 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e419177871 | minor update | 2012-05-08 17:28:19 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | deec97dfe3 | adding Frontbase to error message regexes | 2012-05-08 17:02:58 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | eccd4da00f | minor fix | 2012-05-08 15:03:33 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 938d9ff23e | doing all the work for the users so they wouldn't strain their little hands | 2012-05-08 15:00:23 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 524dd75ff2 | that query variable hasn't been used anywhere (obsolete for some time) | 2012-05-08 14:34:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 6af110d631 | avoiding --no-cast/--hex warning message before a DBMS is fingerprinted | 2012-05-08 14:06:41 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 64c241fe92 | limiting original UNION query results to only 1 result (potentially speeding things up in some cases) | 2012-05-08 13:45:53 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e00f4a8934 | minor cosmetics | 2012-05-08 10:50:04 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | a121339395 | automatically writing uncracked hashes to a file for eventual further processing | 2012-05-08 10:46:05 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 80ee687b41 | minor beauty patch | 2012-05-07 13:51:31 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e9f6b00e26 | minor fix in a KeepAlive library | 2012-05-07 13:36:36 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 57234e1ff5 | fix for proper (international character) inference on MsAccess | 2012-05-03 23:13:48 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 96299d3d5d | minor refactoring | 2012-05-03 22:34:18 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | cc28f6db6b | minor update | 2012-05-01 20:43:16 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 8013a64f8c | minor refactoring | 2012-05-01 19:57:30 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c71d435d9f | making "id"-like columns prioritized for ORDER BY in MySQL | 2012-05-01 19:52:02 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 17efeaae7f | causing too much confusion among dummy users | 2012-05-01 09:04:11 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 458a73c9b4 | few consistency fixes | 2012-04-29 23:09:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 694b14111f | skipping suffix if comment is used in agent.suffixQuery (and --suffix not explicitly set) | 2012-04-27 13:16:51 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c7a606637f | switching few readInput defaults for brute forcing when no table/column found | 2012-04-27 12:59:22 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1e45ee9ab6 | reverting back to smaller UNION ranges as that mechanism for automatic extending was implemented few days ago | 2012-04-25 20:37:39 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 6f67dc85ee | adding --invalid-bignum (Havij like bignum style for invalidating/negating values); renaming --logical-negate to --invalid-logical | 2012-04-25 20:29:07 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 4da03d898e | Added support to create files with a visual basic script - no longer reliant on debug.exe so works on Windows 64-bit too. Fixes #236 | 2012-04-25 07:40:42 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 6116853025 | Minor layout adjustments | 2012-04-24 17:01:24 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | cec432f94d | minor update | 2012-04-23 14:43:59 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 697768c01a | adding --purge-output to be one of mandatory switches | 2012-04-23 14:42:24 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | d57d5e4b2c | minor update | 2012-04-23 14:33:36 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1eecfb3dce | adding new file related to the last commit | 2012-04-23 14:25:16 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 095b25e1d1 | adding option '--purge' | 2012-04-23 14:24:23 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 3532d23933 | automatically extending ranges for UNION tests in case where at least one other injection technique is usable (boundaries has been established) | 2012-04-23 13:41:36 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | eb73cab636 | increased UNION test ranges | 2012-04-23 11:54:52 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | be2da77bf8 | minor update | 2012-04-23 10:15:04 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 21c6b52198 | minor fix | 2012-04-23 10:11:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 775134639d | minor update | 2012-04-20 20:33:15 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 072e08836f | Falling back to unionReadFile() when --file-read does not work against MySQL. This happens when the session user does not have INSERT privilege, required to run LOAD DATA INFILE | 2012-04-19 14:05:45 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 2b1b4c0742 | minor fix | 2012-04-18 10:01:04 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 6ebb621228 | adding support for (custom) POST injection (marking injection point with '*' in conf.data) | 2012-04-17 14:23:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | efd27d7ade | minor renaming | 2012-04-17 08:41:19 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ccd6fb70a8 | minor refactoring | 2012-04-15 17:17:30 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 965c1511a6 | adding new tamper script | 2012-04-15 17:10:43 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 601d118c68 | reverting back to UNION ALL scheme (UNION is doing another DISTINCT on data causing problems on some column types) | 2012-04-15 16:59:03 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 71b0acc16f | minor fix (checking for full inband should be done with ORIGINAL - more concise) | 2012-04-15 16:43:18 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5772c52f46 | minor refactoring/fix (randQuery is just a part (e.g. abc) of phrase (def🔤ghi) - phrase should be searched for, not just randQuery); both phrases should be inside the content for it to be full-inband injectable (...UNION ALL SELECT phrase UNION ALL SELECT phrase2....) | 2012-04-15 16:33:47 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ae8c70e895 | another cosmetics | 2012-04-13 15:11:44 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | d765cdc3a3 | minor cosmetics | 2012-04-13 15:10:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 54576ab3a6 | making a random choice from candidates | 2012-04-13 10:54:30 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | bbbcc95fe5 | use it only if page is stable | 2012-04-13 10:19:26 +00:00 |  |