Miroslav Stampar
|
ba0facb5eb
|
Removal of unused imports
|
2016-09-27 11:23:31 +02:00 |
|
Miroslav Stampar
|
7151df16f6
|
Adding extra validation step in case of boolean-based blind (e.g. if unexpected 500 occurs)
|
2016-09-27 11:21:12 +02:00 |
|
Miroslav Stampar
|
8994bf2dba
|
Further dealing with time-based SQLi (Issue #1973)
|
2016-09-27 10:32:22 +02:00 |
|
Miroslav Stampar
|
09617c8243
|
Introducing extra validation property in case of time-based SQLi (HTTP code) - Issue #1973
|
2016-09-27 10:20:36 +02:00 |
|
Miroslav Stampar
|
556b4d289e
|
Minor cosmetic patch (removing multiple same content '...appears...' messages)
|
2016-09-26 17:02:40 +02:00 |
|
Miroslav Stampar
|
978f56ad10
|
One more commit for #552 (--passwords)
|
2016-09-26 16:38:03 +02:00 |
|
Miroslav Stampar
|
aa0b97b562
|
Support for Informix --roles/--privileges (Issue #552)
|
2016-09-26 14:20:04 +02:00 |
|
Miroslav Stampar
|
df645d7d3d
|
Update for column types (Issue #552)
|
2016-09-23 18:03:31 +02:00 |
|
Miroslav Stampar
|
035137ef4e
|
Bug fix in detection engine (abstract URI header sometimes caused problems - e.g. when automatic --string used)
|
2016-09-23 17:38:14 +02:00 |
|
Miroslav Stampar
|
484d9a4825
|
Implementation of --dump for Informix (Issue #552)
|
2016-09-23 17:21:48 +02:00 |
|
Miroslav Stampar
|
65c305cff0
|
Fixes #2174
|
2016-09-23 15:41:12 +02:00 |
|
Miroslav Stampar
|
9a5fc5ccf4
|
New auxiliary (extra) file (for administration purposes)
|
2016-09-23 13:57:18 +02:00 |
|
Miroslav Stampar
|
51a1973224
|
Stripping PostgreSQL .so files for size issues (Issue #2173)
|
2016-09-23 13:52:57 +02:00 |
|
Miroslav Stampar
|
2f2a63334a
|
Minor cleanup
|
2016-09-23 13:39:27 +02:00 |
|
Miroslav Stampar
|
23afeb4c7a
|
Fixes #2176
|
2016-09-23 13:37:44 +02:00 |
|
Miroslav Stampar
|
b387fb219d
|
Fixes #2175
|
2016-09-23 12:45:06 +02:00 |
|
Miroslav Stampar
|
1b48ff223d
|
Adding initial support for Informix (Issue #552)
|
2016-09-23 12:33:27 +02:00 |
|
Miroslav Stampar
|
640e605412
|
More CTF friendly (common column and table name flag :)
|
2016-09-23 12:31:28 +02:00 |
|
Miroslav Stampar
|
e10bb42597
|
Minor tweak
|
2016-09-22 10:22:48 +02:00 |
|
Miroslav Stampar
|
9902018cab
|
Implementation for an Issue #2172
|
2016-09-21 15:45:55 +02:00 |
|
Miroslav Stampar
|
56a918c408
|
Minor refactoring
|
2016-09-20 10:03:00 +02:00 |
|
Miroslav Stampar
|
bcd62ecc5b
|
Minor optimization (avoiding unnecessary deepcopies)
|
2016-09-20 09:56:08 +02:00 |
|
Miroslav Stampar
|
e519484230
|
Patching live-testing
|
2016-09-19 15:51:28 +02:00 |
|
Miroslav Stampar
|
a2c8f1deb1
|
Update PgSQL fingerprinting payloads
|
2016-09-19 14:23:51 +02:00 |
|
Miroslav Stampar
|
12dc53f687
|
Minor update
|
2016-09-19 13:54:06 +02:00 |
|
Miroslav Stampar
|
b3b5bd267d
|
Adding new tamper script (on request from @MilanGabor)
|
2016-09-15 17:59:01 +02:00 |
|
Miroslav Stampar
|
921a53e314
|
Patch for counter in --smoke-test
|
2016-09-09 14:59:22 +02:00 |
|
Miroslav Stampar
|
32dd4a938c
|
Minor patch of message
|
2016-09-09 11:37:16 +02:00 |
|
Miroslav Stampar
|
9930f1b55b
|
Speed optimization(s)
|
2016-09-09 11:06:38 +02:00 |
|
Miroslav Stampar
|
8581d9e2ca
|
Minor improvement of SELECT_FROM_TABLE_REGEX
|
2016-09-09 09:45:48 +02:00 |
|
Miroslav Stampar
|
1a613ed9a8
|
Minor update
|
2016-09-08 14:08:14 +02:00 |
|
Miroslav Stampar
|
78e398d9c4
|
Fixes #2136
|
2016-09-06 15:03:17 +02:00 |
|
Miroslav Stampar
|
e3c3c2c185
|
Fixes #2148
|
2016-09-06 14:25:29 +02:00 |
|
Miroslav Stampar
|
4e36bbaff9
|
Update related to the last commit
|
2016-09-04 03:09:28 +02:00 |
|
Miroslav Stampar
|
603e9739ae
|
Fixes #2146
|
2016-09-04 01:33:52 +02:00 |
|
Miroslav Stampar
|
6b91b7b7fa
|
Minor cosmetics
|
2016-09-02 16:10:11 +02:00 |
|
Miroslav Stampar
|
2e62fda57d
|
Minor update
|
2016-09-02 15:55:33 +02:00 |
|
Miroslav Stampar
|
5ad27264a2
|
Patches #2143
|
2016-09-02 15:52:07 +02:00 |
|
Miroslav Stampar
|
c4d8cab50c
|
Version string bug fix
|
2016-09-02 14:25:56 +02:00 |
|
Miroslav Stampar
|
577e346774
|
Fixes #2144
|
2016-09-02 14:20:17 +02:00 |
|
Miroslav Stampar
|
375abd50ee
|
Minor update for #2134
|
2016-08-30 12:36:32 +02:00 |
|
Miroslav Stampar
|
4a815ab56f
|
Patch for an Issue #1250
|
2016-08-27 23:54:09 +02:00 |
|
Miroslav Stampar
|
6564adc984
|
Minor patch for buffered write into checksum.md5
|
2016-08-27 23:34:12 +02:00 |
|
Miroslav Stampar
|
ad5b8017f5
|
Minor refactoring
|
2016-08-26 12:28:35 +02:00 |
|
Miroslav Stampar
|
72e5a79288
|
Fixes #2106
|
2016-08-19 11:07:42 +02:00 |
|
Miroslav Stampar
|
63f4b3462f
|
Fixes #2105
|
2016-08-15 18:35:04 +02:00 |
|
Miroslav Stampar
|
a45a90df94
|
Adding new WAF script (Yunsuo)
|
2016-08-12 14:32:03 +02:00 |
|
Miroslav Stampar
|
ec1ac81e0a
|
Minor refactoring
|
2016-08-08 16:08:16 +02:00 |
|
Miroslav Stampar
|
6ba46bf7cf
|
Update for #2086 (lowercasing only the command)
|
2016-08-08 15:55:39 +02:00 |
|
Miroslav Stampar
|
b92fc840fe
|
Adding pypi script to the repository
|
2016-08-02 13:21:05 +02:00 |
|
Miroslav Stampar
|
ef79bbf7d2
|
Minor patch
|
2016-08-02 12:38:57 +02:00 |
|
Miroslav Stampar
|
fba1199cd2
|
Minor consistency update
|
2016-08-02 12:05:39 +02:00 |
|
Miroslav Stampar
|
4022a68523
|
Removing last debug commit
|
2016-08-02 12:01:49 +02:00 |
|
Miroslav Stampar
|
67bc3ed359
|
Trying out the last commit
|
2016-08-02 12:01:02 +02:00 |
|
Miroslav Stampar
|
a0ddd99087
|
Minor update for automatic PyPI packaging
|
2016-08-02 12:00:21 +02:00 |
|
Miroslav Stampar
|
2a7ef58c9f
|
Minor refactoring
|
2016-08-02 11:55:11 +02:00 |
|
Miroslav Stampar
|
35010006a1
|
Some cosmetic changes
|
2016-08-02 11:50:42 +02:00 |
|
Miroslav Stampar
|
acfe788c95
|
Preparing for #1250
|
2016-08-02 00:17:59 +02:00 |
|
Miroslav Stampar
|
5ccb73a1ee
|
Minor patch for Python3 check
|
2016-07-29 15:30:59 +02:00 |
|
Miroslav Stampar
|
6ac5b6b759
|
Minor refactoring
|
2016-07-28 17:04:15 +02:00 |
|
Miroslav Stampar
|
d82f20abc4
|
Fixes #2068
|
2016-07-28 17:02:27 +02:00 |
|
Miroslav Stampar
|
10eafa35fd
|
Adding CloudFlare CAPTCHA warning
|
2016-07-23 23:02:15 +02:00 |
|
Miroslav Stampar
|
9105f259cd
|
Fixes #2060 (ParseError has been added in Python 2.7)
|
2016-07-23 15:27:25 +02:00 |
|
Miroslav Stampar
|
7cca56edfa
|
Fixes #2052
|
2016-07-21 09:38:52 +02:00 |
|
Miroslav Stampar
|
e21d751834
|
Fixes #2049
|
2016-07-20 20:04:44 +02:00 |
|
Miroslav Stampar
|
ebb73b71fa
|
Fixes #2045
|
2016-07-20 16:49:27 +02:00 |
|
Miroslav Stampar
|
1ca633ae64
|
Fixes #2031
|
2016-07-17 23:30:40 +02:00 |
|
Miroslav Stampar
|
3e22cbfed7
|
Minor update
|
2016-07-17 00:34:14 +02:00 |
|
Miroslav Stampar
|
c7f615f707
|
Renaming payload files (consistency with the rest of the project)
|
2016-07-17 00:21:16 +02:00 |
|
Miroslav Stampar
|
b83ee92cd1
|
Minor modification
|
2016-07-17 00:09:09 +02:00 |
|
Miroslav Stampar
|
571d669a09
|
Minor modification
|
2016-07-17 00:07:58 +02:00 |
|
Miroslav Stampar
|
e485531b71
|
Adding integrity checks in case of unhandled exceptions
|
2016-07-17 00:04:30 +02:00 |
|
Miroslav Stampar
|
7427b554e3
|
Adding support for integrity checks
|
2016-07-16 23:25:13 +02:00 |
|
Miroslav Stampar
|
d565740b8a
|
Update of copyright string
|
2016-01-06 00:07:49 +01:00 |
|
Miroslav Stampar
|
9641e84dd9
|
Bug fixes for HSQLDB
|
2015-10-09 16:52:13 +02:00 |
|
Miroslav Stampar
|
45bdefd29b
|
Update of copyright
|
2015-01-06 15:02:16 +01:00 |
|
Igor Elias
|
e6916bdbc6
|
updated copyright
|
2014-07-02 21:16:35 -03:00 |
|
Bernardo Damele
|
a5aa1c2f94
|
some more common output for Oracle banner
|
2014-04-09 12:20:52 +00:00 |
|
Bernardo Damele
|
7f5ea24590
|
added a few common outputs for --predict-output
|
2014-04-09 12:14:33 +00:00 |
|
Miroslav Stampar
|
ae4cd2ebed
|
Minor update
|
2013-11-07 08:29:32 +01:00 |
|
Zaki Akhmad
|
3f71c77601
|
adding more words at site:id common-columns
|
2013-10-07 10:26:16 +07:00 |
|
Zaki Akhmad
|
53a2fc23a0
|
add site:id common-columns
|
2013-09-26 20:32:58 +07:00 |
|
Miroslav Stampar
|
7190205a46
|
Revert of previous commit (substrings are checked too)
|
2013-03-05 18:26:47 +01:00 |
|
Miroslav Stampar
|
e050efa3e2
|
Minor fix (common outputs are whole string values - not partial)
|
2013-03-05 18:09:26 +01:00 |
|
Bernardo Damele
|
a43202f3c0
|
updated copyright
|
2013-01-18 14:07:51 +00:00 |
|
Miroslav Stampar
|
8b7cbe03b0
|
Replacing CRLF with LF in rest of files
|
2012-12-26 17:12:17 +01:00 |
|
Miroslav Stampar
|
45d6fdcdc8
|
Trivial update
|
2012-12-17 17:16:11 +01:00 |
|
Miroslav Stampar
|
175cb245cb
|
Adding common data type to txt/common-outputs (--columns --predict-output)
|
2012-12-17 17:13:51 +01:00 |
|
Miroslav Stampar
|
1ec9422fa2
|
Minor cleanup of standard wordlist (html entities, etc.)
|
2012-09-12 16:06:32 +02:00 |
|
Miroslav Stampar
|
5f11f9e176
|
Refreshing wordlist with a yahoo dump dict
|
2012-07-24 10:28:15 +02:00 |
|
Miroslav Stampar
|
dcf8a27f12
|
Implementation for an Issue #67
|
2012-07-18 14:24:10 +02:00 |
|
Miroslav Stampar
|
1da6ae660c
|
adding a few more common tables
|
2012-06-25 16:39:36 +00:00 |
|
Miroslav Stampar
|
a0e4d27bad
|
replacing leftovers of sqlmap.sourceforge.net with www.sqlmap.org
|
2012-01-11 15:32:30 +00:00 |
|
Miroslav Stampar
|
95f89ab63a
|
updating copyright date
|
2012-01-11 14:59:46 +00:00 |
|
Miroslav Stampar
|
e1a92d59de
|
implementing WordPress phpass hash cracking routine
|
2011-11-20 19:10:46 +00:00 |
|
Miroslav Stampar
|
24bda96d9e
|
adding items from John the Ripper's word list to the dictionary for Oracle cracking
|
2011-11-02 11:21:49 +00:00 |
|
Bernardo Damele
|
c6a0b84242
|
Some more common tables and columns
|
2011-07-07 00:23:54 +00:00 |
|
Miroslav Stampar
|
7c537f6896
|
adding Chrome to the user-agents.txt
|
2011-06-18 10:12:06 +00:00 |
|
Miroslav Stampar
|
0c5d7d4535
|
removing crawling random agent strings as some sites appear different to them (minor possibility to screw blind engine)
|
2011-06-18 09:56:21 +00:00 |
|
Miroslav Stampar
|
2171c64213
|
update by request
|
2011-06-16 15:05:04 +00:00 |
|
Miroslav Stampar
|
8485827352
|
adding already cracked words from http://freerainbowtables.com/en/hashcracking/
|
2011-06-13 14:39:59 +00:00 |
|
Miroslav Stampar
|
87c58c29ef
|
little update for wordlist file (pron, singles, porn-unknown, rockyou-75)
|
2011-06-13 13:30:56 +00:00 |
|
Miroslav Stampar
|
39f131162f
|
adding very useful tampering script
|
2011-05-28 15:42:47 +00:00 |
|
Miroslav Stampar
|
0387654166
|
update of copyright string (until year)
|
2011-04-15 12:33:18 +00:00 |
|
Miroslav Stampar
|
b6af80bab3
|
refactoring, cleanup and improvement
|
2011-03-29 21:54:15 +00:00 |
|
Miroslav Stampar
|
d2ce647113
|
one of my stupidest commits (just in case)
|
2011-01-15 18:17:46 +00:00 |
|
Miroslav Stampar
|
7f97f3ea52
|
adding user agent strings for opera >= 9.10 and safari >= 4.0
|
2011-01-03 15:26:42 +00:00 |
|
Miroslav Stampar
|
6936ebb9e6
|
adding new user agent strings for firefox >= 3.0 and MSIE >= 7.0
|
2011-01-03 15:17:18 +00:00 |
|
Miroslav Stampar
|
252ef7626f
|
removing too old user-agents (some sites just reject those because of possible rendering issues)
|
2011-01-02 15:57:52 +00:00 |
|
Miroslav Stampar
|
5c6c870db4
|
removed some problematic user agents (google won't work with them) and added page rank next to tested item in multi target mode
|
2011-01-02 08:43:38 +00:00 |
|
Miroslav Stampar
|
fcd01b3018
|
minor update
|
2010-12-26 11:24:41 +00:00 |
|
Miroslav Stampar
|
22ce464efc
|
minor update with local names
|
2010-12-26 10:16:00 +00:00 |
|
Miroslav Stampar
|
64523212a4
|
added site:cn
|
2010-12-26 00:06:47 +00:00 |
|
Miroslav Stampar
|
f85bb96221
|
columns updated with localized items
|
2010-12-25 16:26:05 +00:00 |
|
Miroslav Stampar
|
561121b536
|
major update adding new table names (based on site:? localization)
|
2010-12-25 15:15:03 +00:00 |
|
Miroslav Stampar
|
017ea9e686
|
update
|
2010-12-23 14:06:22 +00:00 |
|
Miroslav Stampar
|
fb75d0636b
|
minor update
|
2010-12-21 23:42:59 +00:00 |
|
Miroslav Stampar
|
a876fcedfb
|
minor update
|
2010-12-21 00:13:50 +00:00 |
|
Miroslav Stampar
|
36999a07c4
|
some filtering
|
2010-12-20 17:41:41 +00:00 |
|
Miroslav Stampar
|
19d8733e9a
|
this is strictly for educational purposes
|
2010-12-20 17:30:47 +00:00 |
|
Miroslav Stampar
|
5114c887ea
|
minor minor update
|
2010-12-09 13:51:44 +00:00 |
|
Miroslav Stampar
|
b80a86a669
|
that's it for common stuff today
|
2010-12-09 12:59:22 +00:00 |
|
Miroslav Stampar
|
b26e09fc71
|
another minor update
|
2010-12-09 12:49:29 +00:00 |
|
Miroslav Stampar
|
f712d2477e
|
removed duplicate entries inside common wordlists (tables & columns) and added a script which does that automatically
|
2010-12-09 12:41:16 +00:00 |
|
Miroslav Stampar
|
c5b1f336ee
|
another update
|
2010-12-09 12:07:06 +00:00 |
|
Miroslav Stampar
|
06395b5408
|
update
|
2010-12-09 12:03:10 +00:00 |
|
Miroslav Stampar
|
aa5d038f18
|
more code refactoring
|
2010-11-23 14:50:47 +00:00 |
|
Miroslav Stampar
|
ba4ea32603
|
first working version of dictionary attack
|
2010-11-23 13:24:02 +00:00 |
|
Miroslav Stampar
|
52c722dab5
|
renaming of dicts.zip to wordlists.zip (more proper name)
|
2010-11-20 13:17:13 +00:00 |
|
Miroslav Stampar
|
1f8a9fe033
|
foundations for dictionary attack support combined with the sqlmap's password/hash retrieval functionality (--password switch)
|
2010-11-20 13:14:13 +00:00 |
|
Miroslav Stampar
|
da7eb329bb
|
removing file
|
2010-11-19 16:04:07 +00:00 |
|
Miroslav Stampar
|
1fa567e14d
|
new file added (dictionary attack on password hashes - MySQL, MSSQL, Oracle and Posgres - is soon going to be a part of sqlmap)
|
2010-11-19 15:51:56 +00:00 |
|
Miroslav Stampar
|
ca06db8f28
|
now, this is the real deal
|
2010-11-11 00:20:47 +00:00 |
|
Miroslav Stampar
|
5034868b36
|
cleaning up of common tables and new common columns
|
2010-11-10 23:31:23 +00:00 |
|
Miroslav Stampar
|
759433f0f1
|
fix of my mistake
|
2010-11-09 16:54:40 +00:00 |
|
Miroslav Stampar
|
b43334165d
|
update regarding brute forcing
|
2010-11-09 16:53:33 +00:00 |
|
Miroslav Stampar
|
45f2d8f5d2
|
trival update
|
2010-11-09 15:46:09 +00:00 |
|
Miroslav Stampar
|
8d93bdfa4b
|
minor update (optimization) regarding -a switch
|
2010-11-07 08:11:56 +00:00 |
|
Miroslav Stampar
|
857a2a4521
|
minor minor update
|
2010-11-07 01:29:05 +00:00 |
|
Miroslav Stampar
|
bc83d92144
|
update
|
2010-11-07 01:27:34 +00:00 |
|
Miroslav Stampar
|
d75578c81f
|
some update regarding common tables
|
2010-10-29 09:00:51 +00:00 |
|
Miroslav Stampar
|
762c2a1781
|
one more update for common tables
|
2010-10-28 22:30:59 +00:00 |
|
Miroslav Stampar
|
1e5e4bbe34
|
update for common table names
|
2010-10-27 09:15:18 +00:00 |
|
Miroslav Stampar
|
162d01abed
|
commit of all sorts (bug fix for heuristics and URI injections, fine tunning of tampering modules with SQL keywords,...)
|
2010-10-14 11:06:28 +00:00 |
|
Miroslav Stampar
|
51beafc32c
|
minor fix
|
2010-09-30 09:01:34 +00:00 |
|
Miroslav Stampar
|
c5908b56ed
|
new file
|
2010-09-30 08:35:34 +00:00 |
|
Miroslav Stampar
|
f14485da6b
|
fix
|
2010-09-30 06:09:35 +00:00 |
|
Bernardo Damele
|
82bce81e28
|
Minor improvements
|
2010-07-02 13:38:52 +00:00 |
|
Bernardo Damele
|
17e228024b
|
Minor enhancements and bug fixes to "good samaritan" feature - see #4
|
2010-06-21 14:40:12 +00:00 |
|
Bernardo Damele
|
6df2d98fc9
|
Minor bug fix in common.py goGoodSamaritan().
Minor code cleanup and adjustments.
|
2010-05-31 15:05:29 +00:00 |
|
Miroslav Stampar
|
bb6e3c6cc2
|
added some more common outputs
|
2010-05-31 13:52:13 +00:00 |
|
Miroslav Stampar
|
db7ede96fd
|
more updates/fixes
|
2010-05-31 11:11:53 +00:00 |
|
Miroslav Stampar
|
4bb5885413
|
some changes regarding --common-outputs feature
|
2010-05-31 09:41:41 +00:00 |
|
Bernardo Damele
|
06af405efd
|
Adapted and merged in patch to support XML output (-x switch) - still in beta.
Minor bug fixes and adjustments.
|
2010-05-28 16:43:04 +00:00 |
|
Miroslav Stampar
|
4eccf1a25d
|
quick fix
|
2010-05-28 10:01:19 +00:00 |
|
Miroslav Stampar
|
1a3dfd8ced
|
some more changes
|
2010-05-26 11:01:26 +00:00 |
|
Miroslav Stampar
|
bbdbe44e3f
|
fuck yea, first tests (MySQL/--tables & --common-prediction) are great :)
|
2010-05-26 10:41:37 +00:00 |
|
Miroslav Stampar
|
7f0db26e99
|
more code updates regarding good samaritan (common output) feature
|
2010-05-26 09:48:20 +00:00 |
|
Miroslav Stampar
|
056d1ad76e
|
new commit regarding good samaritan feature
|
2010-05-25 13:06:23 +00:00 |
|
Miroslav Stampar
|
9d0bf42270
|
added new file (samaritan common outputs)
|
2010-05-21 13:41:45 +00:00 |
|
Bernardo Damele
|
66fb3c3033
|
Minor enhancement to show the DBMS operating system (if fingerprinted)
also when only -b option is provided since it's an information that
sqlmap get parsing the DBMS banner.
Got rid completely of useless passive fuzzing.
|
2008-11-17 11:22:03 +00:00 |
|
Bernardo Damele
|
8e3eb45510
|
After the storm, a restore..
|
2008-10-15 15:38:22 +00:00 |
|