160 Commits

Author	SHA1	Message	Date
Miroslav Stampar	25f0ec3597	some minor range to xrange conversion (where safe to do)	2011-10-21 22:34:27 +00:00
Bernardo Damele	50f4c4af52	Minor bug fix to parse also MSSQL 2008 R2 signatures	2011-07-24 23:43:01 +00:00
Bernardo Damele	aedcf8c8d7	Changed homepage address	2011-07-07 20:10:03 +00:00
Miroslav Stampar	b8ffcf9495	few fixes here and there and multi-core processing for dictionary based hash attack	2011-07-04 19:58:41 +00:00
Bernardo Damele	6d606d417b	Preparing for PostgreSQL 9.0 DLL (--os-pwn) compilation on Windows 64-bit	2011-06-28 13:41:15 +00:00
Bernardo Damele	1698630bc0	Added PostgreSQL 9.0 shared object for Linux 64-bit	2011-06-28 13:12:18 +00:00
Miroslav Stampar	7c830c2b1a	removing xmlobject	2011-06-22 14:33:03 +00:00
Miroslav Stampar	2a4a284a29	crawler fix (skip binary files)	2011-06-20 22:41:38 +00:00
Miroslav Stampar	d9015ed800	fix for a bug reported by krasn@deventum.com	2011-06-20 13:25:19 +00:00
Miroslav Stampar	07e2c72943	adding Beautifulsoup (BSD) into extras; adding --crawl to options	2011-06-20 11:32:30 +00:00
Miroslav Stampar	84978f16c9	fix for a "problem" reported by Kirill Morozov (nt authority\\network service)	2011-06-11 07:54:59 +00:00
Miroslav Stampar	0d0f2863af	adding one more tamper script	2011-06-09 09:38:07 +00:00
Bernardo Damele	cce3208b35	Cleanup	2011-06-08 14:15:34 +00:00
Miroslav Stampar	0486d1cdaa	minor module update	2011-05-24 10:32:21 +00:00
Miroslav Stampar	25fff8c135	changes in handling --tor (using SOCKS instead of HTTP for handling Tor - more standard way; doesn't require proxy bundle; fixes problems with default proxy ports on Win/Linux)	2011-05-21 11:46:57 +00:00
Miroslav Stampar	48ac9911c0	more graceful fix related to the last commit	2011-05-11 09:42:35 +00:00
Miroslav Stampar	402c623119	minor fix	2011-05-11 09:40:11 +00:00
Miroslav Stampar	53065ee1fb	adding ordered set for kb.targetUrls (now the order of appereance in multiple targets mode will be respected)	2011-05-11 08:55:48 +00:00
Bernardo Damele	28a4ae8eaf	Minor improvement to cleanup script	2011-05-06 13:53:10 +00:00
Bernardo Damele	eea96c5b8d	code cleanup	2011-05-05 08:50:18 +00:00
Bernardo Damele	f56d135438	Minor code restyling	2011-04-30 13:20:05 +00:00
Miroslav Stampar	6bb4dce3aa	minor refactoring	2011-04-29 15:22:32 +00:00
Bernardo Damele	e35f25b2cb	Major recode of --os-pwn functionality. Now the Metasploit shellcode can not be run as a Metasploit generated payload stager anymore. Instead it can be run on the target system either via sys_bineval() (as it was before, anti-forensics mode, all the same) or via shellcodeexec executable. Advantages are that: ... * It is stealthier as the shellcode itself does not touch the filesystem, it's an argument passed to shellcodeexec at runtime. * shellcodeexec is not (yet) recognized as malicious by any (Avast excluded) AV product. * shellcodeexec binary size is significantly smaller than a Metasploit payload stager (even when packed with UPX). * UPX now is not needed anymore, so sqlmap package is also way smaller and less likely to be detected itself as malicious by your AV software. shellcodeexec source code, compilation files and binaries are in extra/shellcodeexec/ folder now - copied over from https://github.com/inquisb/shellcodeexec. Minor code refactoring.	2011-04-24 23:01:21 +00:00
Miroslav Stampar	41924a6ead	fix for a bug reported by saccurso@skygear.com​.ar (UnicodeDecodeError: 'ascii' codec can't decode byte 0xe9 in position 0: ordinal ... not in range(128))	2011-04-21 23:17:16 +00:00
Bernardo Damele	8e2e06a7a3	layout adjustment	2011-04-21 09:25:42 +00:00
Miroslav Stampar	354a2ce249	'chardet' heuristic engine added to the project	2011-04-18 13:38:46 +00:00
Bernardo Damele	79d5804519	added propset	2011-04-15 16:28:48 +00:00
Bernardo Damele	48f916d5a4	Fixed a minor bug	2011-04-15 16:25:42 +00:00
Miroslav Stampar	c461fdca54	some refactoring	2011-04-15 13:51:06 +00:00
Miroslav Stampar	bf6ea35145	adding new tool safe2bin for decoding safe encoded values	2011-04-15 13:41:50 +00:00
Miroslav Stampar	a883316e22	i was on some heavy drugs (sys.stdout = fpOut)	2011-04-15 12:58:56 +00:00
Miroslav Stampar	0387654166	update of copyright string (until year)	2011-04-15 12:33:18 +00:00
Bernardo Damele	7c61931b96	Added notes on how to compile and get small shared libraries for UDF	2011-04-12 09:53:52 +00:00
Miroslav Stampar	305115a68b	important improvement of data handling (POST data and header values)	2011-04-03 15:02:52 +00:00
Miroslav Stampar	cd7e4f5afc	improvement for lots of multiple-selection forms (now by default the first one is selected - till now it was left unchecked which lead to blank get/post data for the whole form)	2011-04-01 22:12:24 +00:00
Miroslav Stampar	d8f7c4bc4c	minor update regarding support for crypt(3)	2011-03-26 21:41:37 +00:00
Miroslav Stampar	63b8156c00	some update (if header key is non-unicode comformant)	2011-02-25 09:43:04 +00:00
Miroslav Stampar	2bbbc9a41e	few updates	2011-02-25 09:35:24 +00:00
Bernardo Damele	156d8cd99b	Directory restyling	2011-02-08 00:15:02 +00:00
Bernardo Damele	0a81415f2f	Minor code cleanup	2011-02-08 00:02:54 +00:00
Bernardo Damele	6a71629575	Converted from DOS format (\n\r to \n only)	2011-02-06 23:25:55 +00:00
Miroslav Stampar	4df8a03c04	using OrderedDict to store parameters in order of appearance	2011-02-04 18:07:21 +00:00
Miroslav Stampar	a8fea8e4a8	fix for a bug noticed when using --keep-alive --threads on IIS/MSSQL	2011-02-03 15:09:53 +00:00
Bernardo Damele	06bb369da5	GCC 4.3 makes Linux/MySQL shared objects smaller	2011-02-03 14:59:31 +00:00
Bernardo Damele	8cf88dd0da	Ready with PgSQL/Linux/32bit shared object too now	2011-02-03 12:28:00 +00:00
Miroslav Stampar	6393495eb0	comment added	2011-01-31 11:58:35 +00:00
Miroslav Stampar	1b4d68c844	minor update	2011-01-31 11:56:20 +00:00
Miroslav Stampar	fb3513650d	adding ID properties	2011-01-31 11:41:28 +00:00
Miroslav Stampar	f9eac97fe8	refactoring of MSSQL XML banner parsing	2011-01-31 11:38:00 +00:00
Miroslav Stampar	367d0639f0	refactoring (class names should always be Capital cased)	2011-01-28 16:36:09 +00:00