Miroslav Stampar
|
bbdbe44e3f
|
fuck yea, first tests (MySQL/--tables & --common-prediction) are great :)
|
2010-05-26 10:41:37 +00:00 |
|
Miroslav Stampar
|
7f0db26e99
|
more code updates regarding good samaritan (common output) feature
|
2010-05-26 09:48:20 +00:00 |
|
Miroslav Stampar
|
8ed76b3024
|
minor update regarding good samaritan
|
2010-05-25 14:51:02 +00:00 |
|
Miroslav Stampar
|
065d5b02ec
|
added singleValue parameter for good samaritan (same thing Bernardo wanted :)
|
2010-05-25 13:51:03 +00:00 |
|
Miroslav Stampar
|
056d1ad76e
|
new commit regarding good samaritan feature
|
2010-05-25 13:06:23 +00:00 |
|
Miroslav Stampar
|
dc83f794ea
|
fix regarding proper string isinstance checking (including unicode)
|
2010-05-25 10:09:35 +00:00 |
|
Miroslav Stampar
|
1f07db875d
|
fix for that float() report from Shaohua Pan
|
2010-05-24 20:12:37 +00:00 |
|
Bernardo Damele
|
a43eb64c5d
|
Minor refactoring
|
2010-05-24 15:46:12 +00:00 |
|
Miroslav Stampar
|
f718425cf4
|
minor fix
|
2010-05-24 11:18:47 +00:00 |
|
Miroslav Stampar
|
0197f8db5c
|
code refactoring regarding issue #184
|
2010-05-24 11:12:40 +00:00 |
|
Miroslav Stampar
|
e9be60e1ac
|
added support for proper unicode session(s) storage/retrieval
|
2010-05-24 11:00:49 +00:00 |
|
Miroslav Stampar
|
f34e6badfd
|
removed pdb
|
2010-05-24 09:29:16 +00:00 |
|
Miroslav Stampar
|
f0d3e6c565
|
fix
|
2010-05-24 09:28:20 +00:00 |
|
Miroslav Stampar
|
887352746b
|
some speedup (usage of xrange (virtual range) instead of range)
|
2010-05-23 22:14:57 +00:00 |
|
Miroslav Stampar
|
2c2d6d3623
|
operator fix
|
2010-05-23 21:35:42 +00:00 |
|
Miroslav Stampar
|
7dc1bf0324
|
quick (probably not final) fix for unicode inference (not yet tested)
|
2010-05-23 21:32:51 +00:00 |
|
Bernardo Damele
|
03fb84e29f
|
Minor enhancement to internal --profile function
|
2010-05-21 15:06:05 +00:00 |
|
Miroslav Stampar
|
20d05cc404
|
way to handle re.I (ignore case) while using getCompiledRegex
|
2010-05-21 15:03:40 +00:00 |
|
Miroslav Stampar
|
5d5ebd49b6
|
introducing regex caching mechanism
|
2010-05-21 14:42:59 +00:00 |
|
Miroslav Stampar
|
14cab8527e
|
minor adjustment
|
2010-05-21 14:25:38 +00:00 |
|
Miroslav Stampar
|
3110bb10fc
|
added test for site existance
|
2010-05-21 13:36:49 +00:00 |
|
Bernardo Damele
|
7ee20480a4
|
Added a TODO note
|
2010-05-21 13:24:23 +00:00 |
|
Bernardo Damele
|
319adef8c4
|
Minor adjustment
|
2010-05-21 13:19:50 +00:00 |
|
Miroslav Stampar
|
050015d2bb
|
minor adjustments
|
2010-05-21 13:15:21 +00:00 |
|
Miroslav Stampar
|
5a5b31ad53
|
minor code adjustment
|
2010-05-21 13:03:57 +00:00 |
|
Miroslav Stampar
|
64f2afe585
|
in a mood for more changes
|
2010-05-21 12:44:09 +00:00 |
|
Miroslav Stampar
|
219628aa01
|
quick fixes
|
2010-05-21 12:25:49 +00:00 |
|
Miroslav Stampar
|
78547bb79e
|
quick fix
|
2010-05-21 12:19:20 +00:00 |
|
Bernardo Damele
|
cda8da288c
|
Minor adjustment
|
2010-05-21 12:18:43 +00:00 |
|
Bernardo Damele
|
a21a7fc56d
|
Minor code refactoring
|
2010-05-21 12:09:31 +00:00 |
|
Miroslav Stampar
|
f6bffb61d3
|
minor adjustment
|
2010-05-21 11:51:43 +00:00 |
|
Miroslav Stampar
|
460a1ba872
|
fix for my imperfect calculations :)
|
2010-05-21 11:41:49 +00:00 |
|
Miroslav Stampar
|
9b91b30b69
|
minor refactoring
|
2010-05-21 10:41:30 +00:00 |
|
Miroslav Stampar
|
5f44696530
|
changes regarding putting of gprof2dot script inside extras and its usage
|
2010-05-21 10:30:11 +00:00 |
|
Miroslav Stampar
|
68e13c3872
|
periodical commit
|
2010-05-21 09:35:36 +00:00 |
|
Bernardo Damele
|
9c1d82c9f7
|
Minor bug fix to --proxy with HTTPS target on Python 2.6 - fixes #191.
|
2010-05-20 10:52:14 +00:00 |
|
Bernardo Damele
|
72fda2a3e4
|
Minor bug fix to correctly resuming --union-test results from session file.
|
2010-05-19 14:21:59 +00:00 |
|
Bernardo Damele
|
e0e2349529
|
Refactor to --search -C and minor bug fix - See #190.
|
2010-05-17 16:16:49 +00:00 |
|
Miroslav Stampar
|
e938331d8e
|
better regex used avoiding garbage google images
|
2010-05-15 22:02:28 +00:00 |
|
Miroslav Stampar
|
d20b99ed65
|
fix (google is changing that class r to class "r")
|
2010-05-15 21:51:31 +00:00 |
|
Miroslav Stampar
|
b8a5a54395
|
minor update
|
2010-05-15 20:44:08 +00:00 |
|
Miroslav Stampar
|
4984ceac49
|
some code refactoring and minor speed up (jump prediction rule)
|
2010-05-14 15:20:34 +00:00 |
|
Miroslav Stampar
|
ed20f1cf33
|
some more speed up (one time compilation of popular regexes)
|
2010-05-14 14:48:54 +00:00 |
|
Miroslav Stampar
|
3ead88c364
|
minor tweak
|
2010-05-14 14:36:54 +00:00 |
|
Miroslav Stampar
|
131789a6e4
|
some code refactoring
|
2010-05-14 14:21:13 +00:00 |
|
Miroslav Stampar
|
19a82e151c
|
minor cleanup
|
2010-05-14 14:03:33 +00:00 |
|
Miroslav Stampar
|
7107e8fd6a
|
optimization of CPU intensive sanitizeAsciiString
|
2010-05-14 13:55:25 +00:00 |
|
Miroslav Stampar
|
5396f13bab
|
added CPU throttling for lowering sqlmap's CPU intensivity
|
2010-05-13 15:19:28 +00:00 |
|
Miroslav Stampar
|
d96723a135
|
fix for Feature #157
|
2010-05-13 11:17:24 +00:00 |
|
Miroslav Stampar
|
ca3e12ae73
|
added calculateDeltaSeconds method for dealing with non-deterministic time behaviour in some cases (e.g. WAITFOR DELAY in case of MSSQL)
|
2010-05-13 11:05:35 +00:00 |
|
Miroslav Stampar
|
0a4c1f8aec
|
unfix (conf.timeSec is an integer - my fault)
|
2010-05-13 09:34:08 +00:00 |
|
Miroslav Stampar
|
2fdac83607
|
minor fix
|
2010-05-13 08:27:51 +00:00 |
|
Bernardo Damele
|
9efe001515
|
SQLite does not support BETWEEN
|
2010-05-12 22:02:47 +00:00 |
|
Miroslav Stampar
|
893bc04fe4
|
changes regarding Feature #157 (Evaluate BETWEEN for inference algorithm)
|
2010-05-12 11:30:32 +00:00 |
|
Bernardo Damele
|
8b74c405f5
|
Minor output bug fix
|
2010-05-11 14:15:03 +00:00 |
|
Bernardo Damele
|
457d32c73e
|
Proper displaying of debug messages (-v >= 2)
|
2010-05-11 13:58:53 +00:00 |
|
Miroslav Stampar
|
1a8beebc8c
|
minor fix
|
2010-05-11 13:55:30 +00:00 |
|
Miroslav Stampar
|
1e5ecbaa97
|
speedup of initial session file handling
|
2010-05-11 13:36:30 +00:00 |
|
Miroslav Stampar
|
6752e66164
|
added charsetType=2 (integer) to queryOutputLength
|
2010-05-11 12:23:38 +00:00 |
|
Miroslav Stampar
|
430a25407b
|
fixed that thread partial output problem (one character behind) reported by Kasper Fons
|
2010-05-11 11:06:21 +00:00 |
|
Bernardo Damele
|
4c91b5a896
|
Minor fix
|
2010-05-10 14:18:41 +00:00 |
|
Bernardo Damele
|
65a05452f7
|
Added option --search to work in conjunction with -D (done), -T (soon) or -C (replaces --dump -C) - See #190:
* --search -D foobar: searches all database names like the ones provided
* --search -T foobar: searches all databases' table names like the ones provided (soon)
* --search -C foobar: replaces --dump -C
|
2010-05-07 13:40:57 +00:00 |
|
Bernardo Damele
|
44ea8f1861
|
Minor adjustment
|
2010-05-06 11:00:58 +00:00 |
|
Bernardo Damele
|
147e14356d
|
Major bug fix (reported by Thierry Zoller)
|
2010-05-06 10:52:40 +00:00 |
|
Miroslav Stampar
|
4928c684b3
|
one more thing
|
2010-05-04 08:45:10 +00:00 |
|
Miroslav Stampar
|
789dd6c66f
|
more quick fixes
|
2010-05-04 08:43:14 +00:00 |
|
Miroslav Stampar
|
af701cdaa2
|
better way to handle that last commit problem
|
2010-05-04 08:36:35 +00:00 |
|
Miroslav Stampar
|
5bc07426e0
|
added exception handler around block reported by Thierry Zoller
|
2010-05-04 08:03:48 +00:00 |
|
Bernardo Damele
|
90d9900371
|
Minor bug fix to consider --start and --stop also in partial UNION query SQL injection
|
2010-04-30 15:48:40 +00:00 |
|
Bernardo Damele
|
4d46f997a7
|
Minor bug fix
|
2010-04-29 13:34:03 +00:00 |
|
Miroslav Stampar
|
d8e5585c66
|
fixed a bug reported by Mosk Dmitri (infoMsg UnboundLocalError)
|
2010-04-29 08:30:29 +00:00 |
|
Bernardo Damele
|
fa48d26f95
|
Minor cosmetic fix
|
2010-04-26 12:34:21 +00:00 |
|
Miroslav Stampar
|
7eef76f1b0
|
added basic option validation for start/stop values regarding David Guimaraes mail
|
2010-04-26 11:23:12 +00:00 |
|
Bernardo Damele
|
a1b1f960cc
|
Finally fixed and adapted all code around to the new isWindowsDriveLetterPath() function
|
2010-04-23 16:34:20 +00:00 |
|
Bernardo Damele
|
0f80768e66
|
Reverted
|
2010-04-22 16:35:22 +00:00 |
|
Bernardo Damele
|
7b070acd17
|
Reimported needed imports!
|
2010-04-22 16:13:22 +00:00 |
|
Miroslav Stampar
|
1bcec80e95
|
fix for that takeover bug Ethan Robish posted (Windows/PHP)
|
2010-04-22 10:31:33 +00:00 |
|
Miroslav Stampar
|
7d3a200ab8
|
fix for Bug #183
|
2010-04-19 15:25:52 +00:00 |
|
Bernardo Damele
|
2840f20605
|
Minor bug fix
|
2010-04-17 15:43:08 +00:00 |
|
Miroslav Stampar
|
915d3441e9
|
some code refactoring
|
2010-04-16 19:57:00 +00:00 |
|
Miroslav Stampar
|
1bdf94f236
|
fix for Bug #164 (Proper usage of special characters in paths)
|
2010-04-16 15:46:31 +00:00 |
|
Miroslav Stampar
|
bece99908c
|
fix regarding Bug #164 (Proper usage of special characters in paths) - not clear if that's all
|
2010-04-16 15:12:42 +00:00 |
|
Miroslav Stampar
|
938a3ab0b9
|
fix for Bug #183 (--threads dot output)
|
2010-04-16 13:40:02 +00:00 |
|
Miroslav Stampar
|
1aeaa5db47
|
implementation of Feature #176 (Safe URL: avoid being kicked out after N unsuccessful requests)
|
2010-04-16 12:44:47 +00:00 |
|
Bernardo Damele
|
a0c8adc266
|
Minor bug fix to add the "hinted" request to the total number of requests performed
Minor layout adjustments.
|
2010-04-15 10:08:27 +00:00 |
|
Bernardo Damele
|
5e86087cb1
|
Minor bug fix for -d to avoid resuming queries when they're SELECT on sqlmap own tables, aligned to same resume of -u now.
|
2010-04-15 10:06:38 +00:00 |
|
Miroslav Stampar
|
17554759b7
|
implemented feature request from Ole Rasmussen regarding table name retrieval speedup
|
2010-04-15 09:36:13 +00:00 |
|
Bernardo Damele
|
1ab78ce60e
|
Added support to directly connect also to SQLite 2 db file
|
2010-04-13 22:43:38 +00:00 |
|
Bernardo Damele
|
fee062781f
|
Minor adjustment
|
2010-04-13 11:13:01 +00:00 |
|
Miroslav Stampar
|
da1ea48947
|
added some nagging for connection details
|
2010-04-13 11:00:15 +00:00 |
|
Bernardo Damele
|
eecee3b274
|
Added resume functionality to -d and fixed logging with -d
|
2010-04-12 09:35:20 +00:00 |
|
Bernardo Damele
|
b72ddb6f1e
|
Fixes non-deterministic unsorted results for most of the DBMSes - see #185
|
2010-04-09 15:48:53 +00:00 |
|
Miroslav Stampar
|
fcceceed45
|
fix for bug reported by shiftzwei@gmail.com regarding formatDBMSfp with unknown DBMS version
|
2010-04-09 10:40:08 +00:00 |
|
Miroslav Stampar
|
63c70018ca
|
fix for that update (conf.cj) problem mentioned by shiftzwei@gmail.com
|
2010-04-09 10:16:15 +00:00 |
|
Bernardo Damele
|
effc7dc41c
|
Minor adjustment to notify the user that the --auth-cred format for NTLM authentication is "DOMAIN\user:password"
|
2010-04-07 09:47:14 +00:00 |
|
Bernardo Damele
|
758a858785
|
Minor adjustments
|
2010-04-06 20:40:14 +00:00 |
|
Miroslav Stampar
|
6e7be5edb0
|
another fix
|
2010-04-06 15:51:36 +00:00 |
|
Miroslav Stampar
|
3fe9f9cac9
|
another fix
|
2010-04-06 15:28:34 +00:00 |
|
Miroslav Stampar
|
a6a2e993cc
|
minor update
|
2010-04-06 15:24:56 +00:00 |
|
Miroslav Stampar
|
c303feab17
|
fix
|
2010-04-06 15:14:32 +00:00 |
|