Commit Graph

1283 Commits

Author SHA1 Message Date
Miroslav Stampar
a7c135174c Fixes #1579 2015-12-03 02:00:16 +01:00
Miroslav Stampar
f9da29284c Minor bug fix (reported via email) 2015-11-27 18:35:58 +01:00
Miroslav Stampar
768e5da589 Removing leftover (from 5593bf2fee) 2015-11-16 15:04:09 +01:00
Miroslav Stampar
5593bf2fee Another patch related to #1539 (simplifying unicode bad chars and preventing double encoding of safe chars) 2015-11-16 15:02:30 +01:00
Miroslav Stampar
ca933fcf1d Another patch for #1539 2015-11-16 14:08:43 +01:00
Miroslav Stampar
a212f0c240 Another patch for #1539 2015-11-16 12:56:15 +01:00
Miroslav Stampar
9c69f56a34 Proper patch for an Issue #1539 2015-11-16 11:59:09 +01:00
Miroslav Stampar
fb2cb25afe Bug fix for an Issue #1539 2015-11-16 11:56:15 +01:00
Miroslav Stampar
4dc0c05172 Fixes #1505 2015-10-31 10:16:44 +01:00
Miroslav Stampar
04aaa5985b Fixes #1497 2015-10-29 17:02:47 +01:00
Miroslav Stampar
89e36392f7 Fixes #1486 2015-10-25 15:32:02 +01:00
Miroslav Stampar
8bf236ce11 Minor patch for SQLite parsing of schemas 2015-10-07 10:01:48 +02:00
Miroslav Stampar
20c19f33dc Minor update 2015-10-05 15:51:21 +02:00
Miroslav Stampar
1c6e288eb1 Fixes #1447 2015-10-05 15:33:29 +02:00
Miroslav Stampar
acd6b7797f Fixes #1446 2015-10-05 15:18:54 +02:00
Miroslav Stampar
29edb4f75c Fixes #1440 2015-09-30 11:26:56 +02:00
Miroslav Stampar
906cb6d3c2 Removing a hard limit to use --start/--stop only for --dump scenarios 2015-09-28 11:11:39 +02:00
Miroslav Stampar
4774795d8c Fixes #1429 2015-09-25 14:59:21 +02:00
Miroslav Stampar
2cea977e12 Fixes #1415 2015-09-17 14:58:01 +02:00
Miroslav Stampar
ee38574449 Fixes #1411 2015-09-15 13:26:25 +02:00
Miroslav Stampar
c4f9e66a6f Patch related to the #1403 2015-09-10 16:21:31 +02:00
Miroslav Stampar
f494004f44 Switching to the getSafeExString (where it can be used) 2015-09-10 15:51:33 +02:00
Miroslav Stampar
90329a8b01 Minor patch 2015-09-09 11:53:44 +02:00
Miroslav Stampar
7511023bc2 Fixes #1385 2015-09-03 10:11:36 +02:00
Miroslav Stampar
737a37bfda Fixes #1367 2015-08-30 01:58:43 +02:00
Miroslav Stampar
43f3900ffe Fixes #1362 2015-08-27 12:25:25 +02:00
Miroslav Stampar
337eb9861a Fixes #1347 2015-08-23 22:11:59 +02:00
Miroslav Stampar
690347a170 Bug fix (non-ASCII chars in command line caused gibberish in unhandled messages) 2015-08-23 21:48:31 +02:00
Miroslav Stampar
9fb0eb3dd7 Blank removal 2015-08-23 21:41:59 +02:00
Miroslav Stampar
1204141278 Fixes #1350 2015-08-23 21:09:20 +02:00
KingX
3ebb3e6f4f fix removeDynamicContent bug
double re.escape() in "findDynamicContent" function and "removeDynamicContent" function leads an bug in finding dynamic content,
2015-08-22 14:05:03 +08:00
Miroslav Stampar
c9d1c4d7b1 Fixes #1337 2015-08-16 23:29:39 +02:00
Miroslav Stampar
713d5384bc Potential patch for an Issue #1337 2015-08-16 23:15:04 +02:00
Miroslav Stampar
b010fda695 Switch --save becomes an option (taking file path where to save config file) 2015-08-14 22:49:32 +02:00
Miroslav Stampar
62f35698ee Bug fix (ML) - when cookies have blank expiration time 2015-08-06 13:07:16 +02:00
Miroslav Stampar
e623ee66ad Better approach for #1320 2015-07-30 23:29:31 +02:00
Miroslav Stampar
bcb25823e6 Fixes #1320 2015-07-30 23:19:38 +02:00
Miroslav Stampar
301aca57e6 Fixes #1319 2015-07-29 10:00:15 +02:00
Miroslav Stampar
e7af081447 Minor patch 2015-07-26 16:08:30 +02:00
Miroslav Stampar
cece2cb12d Minor cosmetics 2015-07-23 00:42:29 +02:00
Miroslav Stampar
358651b19c Fixes #1313 2015-07-23 00:41:03 +02:00
Miroslav Stampar
49212ec920 Fixes #1302 2015-07-17 09:56:24 +02:00
Miroslav Stampar
1aafe85a3a Fixes #1299 2015-07-15 11:15:06 +02:00
Miroslav Stampar
fdc8e664df Updating --beep functionality (ML request) 2015-07-13 23:55:46 +02:00
Miroslav Stampar
16f8e4c8ba Removing unused imports 2015-07-12 12:25:02 +02:00
Miroslav Stampar
a20da7a677 Patch for automatic reporting (GitHub has robots) 2015-07-12 12:05:19 +02:00
Miroslav Stampar
2080fcaa37 Fixes #1293 2015-07-07 09:24:16 +02:00
Miroslav Stampar
8d7e915af7 Minor patch for #1260 2015-06-05 17:02:56 +02:00
Miroslav Stampar
9010e157e9 Conflict fix 2015-05-11 10:11:33 +02:00
Miroslav Stampar
7517db76d1 Minor fix for SQLite's schema parsing 2015-04-16 18:40:43 +02:00
Miroslav Stampar
a19bccc84f Fixes #1205 2015-03-26 15:31:29 +01:00
Miroslav Stampar
770cfb6102 Removing test print 2015-03-26 15:20:54 +01:00
ricterz
50fd6ce7f7 add websocket support for parse url #1198 2015-03-24 10:30:38 +08:00
Miroslav Stampar
05a496c275 Fixes #1196 2015-03-20 00:56:52 +01:00
Bernardo Damele
260643241a prioritized fingerprinted DBMS to error-based and user provided one 2015-02-27 14:19:30 +00:00
Bernardo Damele
475cc8b24b trivial code cleanup 2015-02-21 13:12:30 +00:00
Bernardo Damele
383929c0c2 if the user forces the DBMS, then sort the tests accordingly to perform first the DBMS-specific tests, then the others 2015-02-21 13:12:03 +00:00
Bernardo Damele
8be24d3e9b minor enhancement, prefer intersect() each time DBMS values are comfronted 2015-02-21 12:59:27 +00:00
Bernardo Damele
32ab52b8ca code refactoring: split boundaries and payloads XML files 2015-02-15 16:31:35 +00:00
Miroslav Stampar
2af2aef43e Minor patch for masking sensitive information (when formation -u=... is used) 2015-02-03 09:48:05 +01:00
Miroslav Stampar
bf1c08a8a6 Bug fix 2015-01-30 22:43:40 +01:00
Miroslav Stampar
9563e429d3 Removal of fun code 2015-01-30 21:49:22 +01:00
Miroslav Stampar
9f679a952f Minor update 2015-01-29 10:44:36 +01:00
Miroslav Stampar
fd632e5ada Update for unhandled exception mechanism (BADA) 2015-01-26 09:09:38 +01:00
Miroslav Stampar
f0eac38ab4 Minor fix 2015-01-26 08:48:37 +01:00
Miroslav Stampar
779db7cbc3 Minor enhancement 2015-01-22 09:17:45 +01:00
Miroslav Stampar
02b3eb941f Patch for an Issue #1124 2015-01-21 09:26:30 +01:00
Miroslav Stampar
e73ac6c8e3 Minor patch on request of an user 2015-01-17 21:47:57 +01:00
Miroslav Stampar
7bcb3ce599 Patch for an Issue #1099 2015-01-08 09:22:47 +01:00
Miroslav Stampar
45bdefd29b Update of copyright 2015-01-06 15:02:16 +01:00
Miroslav Stampar
c474c16b4a Removing ML email address 2015-01-06 12:30:49 +01:00
Miroslav Stampar
2985050fce Minor patch 2014-12-30 16:07:08 +00:00
Miroslav Stampar
f93bca4564 Patch for an Issue #1058 2014-12-23 08:23:40 +01:00
Miroslav Stampar
fc7dd2a9b9 Patch for an Issue #1056 2014-12-22 06:02:39 +01:00
Miroslav Stampar
4f122ee008 Bug fix regarding a problem reported by user @blink2014 2014-12-20 00:23:31 +01:00
Miroslav Stampar
cf3b02ee04 Proper fix for #1053 2014-12-19 09:26:01 +01:00
Miroslav Stampar
e6de92ce88 Minor patch (unicode related) 2014-12-15 13:36:08 +01:00
Miroslav Stampar
4c6331daa6 Patch for an Issue #1028 2014-12-15 09:30:54 +01:00
Miroslav Stampar
fb645b90f7 Minor update 2014-12-14 00:14:18 +01:00
Miroslav Stampar
84ba5f35ac Minor update for #1022 2014-12-13 13:41:39 +01:00
Miroslav Stampar
bb4ac41ff7 Patch for an Issue #1016 2014-12-12 04:40:44 +01:00
Miroslav Stampar
785e3d0317 Patch for an Issue #1014 2014-12-11 13:29:42 +01:00
Miroslav Stampar
2bcaae3a0b Another just in case update for an Issue #1011 2014-12-11 00:14:35 +01:00
Miroslav Stampar
763f720675 Patch for an Issue #1011 2014-12-11 00:11:52 +01:00
Miroslav Stampar
ee20d98bca Minor fix for --forms 2014-12-10 12:13:37 +01:00
Miroslav Stampar
0d931a7b09 Fix for an Issue #999 2014-12-07 15:55:22 +01:00
Miroslav Stampar
7673f3e045 Minor style update 2014-12-05 11:15:33 +01:00
Miroslav Stampar
a3507d65fd Minor update 2014-12-04 09:34:37 +01:00
Miroslav Stampar
d3060f20d7 Minor improvement 2014-12-03 13:22:55 +01:00
Miroslav Stampar
aa95a05477 Minor update 2014-12-03 13:14:06 +01:00
Miroslav Stampar
17db587e2c Adding some friendly warning messages (regarding blocking) 2014-12-03 10:06:21 +01:00
Miroslav Stampar
e4b00bdbcb Patch for an Issue #983 2014-12-02 10:57:50 +01:00
Miroslav Stampar
56b6bf72f4 Patch for an Issue #978 2014-11-29 23:33:24 +01:00
Miroslav Stampar
605b126758 Patch for an Issue #976 2014-11-26 13:38:21 +01:00
Miroslav Stampar
2f744139fc Patch for an Issue #968 2014-11-24 10:13:56 +01:00
Miroslav Stampar
2284535267 Update for an Issue #963 2014-11-24 05:44:38 +01:00
Miroslav Stampar
69cdad4148 Patch for an Issue #958 2014-11-23 15:55:12 +01:00
Miroslav Stampar
28d6af6237 Minor update 2014-11-23 15:42:41 +01:00
Miroslav Stampar
f853f8973f Minor refactorign 2014-11-23 15:41:24 +01:00
Miroslav Stampar
080a873922 Patch for an Issue #964 2014-11-23 15:39:08 +01:00
Miroslav Stampar
d3551631c4 Minor update 2014-11-20 16:10:25 +01:00
Miroslav Stampar
bb56eb583a Minor update 2014-11-16 13:34:35 +01:00
Miroslav Stampar
671facc6d9 Patch for an Issue #930 2014-11-13 10:28:38 +01:00
Miroslav Stampar
d0afa7f325 Bug fix for not displaying proper version in unhandled exception win cases 2014-11-12 11:53:42 +01:00
Miroslav Stampar
dfa8e0456d Potential patch for an Issue #914 2014-11-10 14:51:31 +01:00
Miroslav Stampar
06bb957d13 Preventing a run of duplicate issues 2014-11-09 22:07:11 +01:00
Miroslav Stampar
de1cf26fe6 Minor patch 2014-11-09 18:58:25 +01:00
Miroslav Stampar
5e9c73f9c1 Just in case update (for unhandled exceptions happening too soon) 2014-11-08 21:44:46 +01:00
Miroslav Stampar
3b06665c9f Patch for an Issue #910 2014-11-08 21:22:03 +01:00
Miroslav Stampar
8fdf9ff746 Probable fix for an Issue #908 2014-11-07 15:47:42 +01:00
Miroslav Stampar
97cc679f9c Fix for an Issue #900 2014-11-04 15:15:58 +01:00
Miroslav Stampar
4d5b48b2ae Patch for an Issue #896 2014-11-04 00:34:35 +01:00
Miroslav Stampar
9652e41226 Path for an Issue #891 2014-11-02 23:32:19 +01:00
Miroslav Stampar
1ef2c4006d Patch for an Issue #892 2014-11-02 11:01:46 +01:00
Miroslav Stampar
a4d058d70c More anonymization of unhanded exception data 2014-11-02 10:55:38 +01:00
Miroslav Stampar
38978c3e54 Fix for an Issue #884 2014-10-31 16:45:26 +01:00
Miroslav Stampar
455ea9922c Minor update 2014-10-28 15:26:28 +01:00
Miroslav Stampar
258a700b2e More anonymization of unhandled exception messages 2014-10-28 15:14:41 +01:00
Miroslav Stampar
725c3a6a95 Minor update 2014-10-28 14:08:06 +01:00
Miroslav Stampar
3b3b8d4ef2 Potential bug fix (escaping formatted regular expressions) 2014-10-28 14:02:55 +01:00
Miroslav Stampar
19aed90ae5 Implementation for an Issue #874 2014-10-27 00:37:46 +01:00
Miroslav Stampar
7fc9e82d28 Minor style update 2014-10-23 11:44:38 +02:00
Miroslav Stampar
34aed7cde0 Bug fix (now it's possible to use multiple parsed requests without mixing associated headers) 2014-10-22 13:49:29 +02:00
Miroslav Stampar
70215a95a1 Patch for an Issue #847 2014-10-07 13:02:47 +02:00
Miroslav Stampar
2ab4558859 Potential fix for an Issue #846 2014-10-07 11:49:53 +02:00
Miroslav Stampar
ddfec1c668 Initial patch for an Issue #846 2014-10-07 11:34:47 +02:00
Miroslav Stampar
fdef53aa67 Minor update of unhandled exception message 2014-10-01 14:23:45 +02:00
Miroslav Stampar
8c9014c39f Adding a dummy (auxiliary) XSS check 2014-10-01 13:31:48 +02:00
Miroslav Stampar
5b0732e9f9 Minor update for Issue #832 2014-09-16 15:17:50 +02:00
Miroslav Stampar
45f5548113 Minor update regarding shell history file 2014-09-16 08:58:25 +02:00
Miroslav Stampar
637d3cbaf7 Fix for cases when parameter name is urlencoded 2014-09-12 13:29:30 +02:00
Miroslav Stampar
112a0cb1ae Patch for output directory (using unicode for international support) 2014-09-03 21:49:30 +02:00
Miroslav Stampar
e501b2a80b Minor patch 2014-08-30 20:58:59 +02:00
Miroslav Stampar
03c8e7b7a2 Patch for an Issue #810 2014-08-30 17:13:02 +02:00
Miroslav Stampar
fce671c899 Patch for an Issue #801 2014-08-28 00:00:16 +02:00
Miroslav Stampar
2a268199d4 Patch for an Issue #798 2014-08-26 23:11:44 +02:00
Miroslav Stampar
decd092b2a Minor patch 2014-08-26 22:40:50 +02:00
Miroslav Stampar
2be0ebd883 Minor fix (e.g. Oracle identifier names can contain character $) 2014-08-26 22:40:15 +02:00
Miroslav Stampar
77513e1de9 Minor style update 2014-08-21 01:19:10 +02:00
Miroslav Stampar
c5b71cff10 Some filtering 2014-08-21 01:12:44 +02:00
Miroslav Stampar
3cfdb5ff0f Removing / from auto directories (it doesn't make sense to auto-test for uploading to /) 2014-08-21 00:43:37 +02:00
Miroslav Stampar
cd92de1702 Adding colorful banner 2014-08-19 22:19:22 +02:00
Miroslav Stampar
0809a61fc3 Bug fix (whole page output as a result of partial union runs) 2014-08-13 15:18:11 +02:00
Miroslav Stampar
0a74ae736f Probable fix for an Issue #788 2014-08-13 14:01:57 +02:00
Miroslav Stampar
1eecabaea8 Patch for an Issue #746 2014-07-02 10:11:31 +02:00
Miroslav Stampar
54be398e83 Patch for an Issue #711 2014-06-04 16:35:07 +02:00
Miroslav Stampar
680ab10ca6 Patch for an Issue #703 2014-05-27 21:41:07 +02:00
Miroslav Stampar
24954776a5 Patch for an Issue #697 2014-05-20 22:00:26 +02:00
Miroslav Stampar
babe49f086 Minor update (added new warning message) 2014-05-20 17:14:40 +02:00
Miroslav Stampar
3a2916724c Minor style update 2014-05-11 17:12:15 +02:00
Miroslav Stampar
a72d73804e Revert of 9255174890 (bug was introduced with it) 2014-05-10 01:31:44 +02:00
Miroslav Stampar
8f0807d7f9 Another fix related to the last commit 2014-05-09 22:55:16 +02:00
Miroslav Stampar
5eae002084 Minor fix 2014-05-09 22:45:43 +02:00
Miroslav Stampar
9255174890 Minor fix 2014-05-09 22:39:56 +02:00
Miroslav Stampar
eb8e31c23f Adding a failsafe output directory 2014-04-27 22:40:41 +02:00
Miroslav Stampar
fd884ec67b Adding another comment 2014-04-12 17:22:47 +02:00
Miroslav Stampar
b5cca742e4 Adding a comment 2014-04-12 17:22:47 +02:00
Miroslav Stampar
7cc4159316 Renaming conf.cDel to conf.cookieDel 2014-04-06 16:50:58 +02:00
Miroslav Stampar
0ae8ac707e Renaming conf.pDel to conf.paramDel 2014-04-06 16:48:46 +02:00
Miroslav Stampar
76b9fad24a Fix for an Issue #656 2014-03-30 16:21:18 +02:00
Miroslav Stampar
d7f0da5599 Minor patch for an Issue #646 2014-03-20 13:08:28 +01:00
Miroslav Stampar
17742df0fa Update for an Issue #636 (to prevent eventual future reports with lack of stack trace) 2014-03-11 21:18:31 +01:00
Miroslav Stampar
291a0d772a Update for an Issue #615 2014-02-27 14:23:14 +01:00
Miroslav Stampar
534c2ee0e6 Minor update 2014-02-01 22:12:00 +01:00
Bernardo Damele
dfa9076a70 fixed and improved web shell upload in MySQL (it was actually broken since fc57b7565d) 2014-01-13 17:12:37 +00:00
Miroslav Stampar
02de2aee6d Patch for an Issue #582 2013-12-26 22:27:04 +01:00
Miroslav Stampar
2c2667b2be Minor patch for an Issue #575 2013-12-18 00:56:24 +01:00
Miroslav Stampar
5b2ded0b18 Fix for an Issue #577 2013-12-13 21:00:26 +01:00
Miroslav Stampar
437278e32d Fix for an Issue #580 2013-12-13 19:48:05 +01:00
Miroslav Stampar
bf3fbb0ae0 Ignore Google analytics cookies 2013-12-04 09:56:37 +01:00
Miroslav Stampar
3c67ba08c5 Minor fix 2013-11-12 14:53:05 +01:00
Miroslav Stampar
d84ddf23bd Replacing os.sep constructs with os.path.join 2013-11-12 14:08:41 +01:00
Miroslav Stampar
48bd2e75e9 Minor patch 2013-10-28 13:59:38 +01:00
Miroslav Stampar
7ed05f01b3 Minor update 2013-10-27 00:24:57 +02:00
Miroslav Stampar
9e975210ac Implementation for an Issue #515 2013-08-30 10:22:43 +02:00
Miroslav Stampar
28eca2116f Fix for an Issue #513 2013-08-27 13:55:38 +02:00
Miroslav Stampar
bc19f40d09 Minor update 2013-08-22 10:44:21 +02:00
Miroslav Stampar
23f2c5f166 Finishing implementation for an Issue #58 2013-08-20 19:35:49 +02:00
Miroslav Stampar
1f2c8fbf59 Fix for an Issue #500 2013-08-13 20:40:36 +02:00
Miroslav Stampar
b2855e0281 Minor patch 2013-08-12 14:25:51 +02:00
Miroslav Stampar
a711c9ed36 Minor cleanup and initial work for #58 2013-08-09 14:13:48 +02:00
Miroslav Stampar
6b826ef64d Reintroducing option --cookie-del 2013-07-31 20:41:19 +02:00
Miroslav Stampar
eaacbe0b12 Minor language fix 2013-07-31 09:24:34 +02:00
Miroslav Stampar
4f58e0af0c Minor fix 2013-07-31 08:45:04 +02:00
stamparm
8d3435ab0b Removing reflective warning for parsing heuristic test 2013-07-08 11:48:33 +02:00
stamparm
f7d15cb465 Official naming is HSQLDB (and/or HyperSQL) 2013-07-01 11:57:47 +02:00
Miroslav Stampar
aeb83ba651 Merge pull request #475 from Meatballs1/hsql_clean
HSQL Payloads and Query Support
2013-07-01 02:38:04 -07:00
Meatballs
4595b2c287 decodeHexValue 2013-06-24 23:45:39 +01:00
Miroslav Stampar
0355e29b7c Minor fix (NoneType has no attribute split) 2013-06-24 14:49:53 +02:00
Miroslav Stampar
3583f45ee7 Fix for an Issue #461 2013-06-10 11:44:56 +02:00
Miroslav Stampar
c1592e8508 Code refactoring (moving import ctypes to be used only when needed) 2013-06-04 22:23:44 +02:00
Miroslav Stampar
351c70b390 Locale module screws string.letters, etc. in some cases (e.g. IDLE run) 2013-06-01 14:06:58 +02:00
Miroslav Stampar
ed8f16e754 Minor update on user's request 2013-05-30 12:01:13 +02:00
Miroslav Stampar
793a8ad349 Minor fix 2013-05-30 11:38:24 +02:00
stamparm
c3038fcb65 Minor cosmetic update 2013-05-29 15:46:59 +02:00
stamparm
dfd6ee20bb Patch for an Issue #454 2013-05-29 15:26:11 +02:00
stamparm
60df3e9d1e Minor cosmetic update (displaying 'Technique: DIRECT' instead of 'Technique: None' in case of direct access) 2013-05-29 15:04:14 +02:00
Miroslav Stampar
e7ddc2fcab Minor fix 2013-05-23 12:57:33 +04:00
Miroslav Stampar
b2b3b3b5a6 Minor bug fix (level names not properly used in non-logger output) 2013-05-18 16:44:21 +02:00
stamparm
936815128d Minor fix 2013-05-13 13:42:43 +02:00