Miroslav Stampar
26b33154ab
optimal fix related to the last commit
2012-02-24 14:28:41 +00:00
Miroslav Stampar
9d6fd2e507
bug fix for --schema --technique=BST
2012-02-24 14:12:19 +00:00
Miroslav Stampar
f9d2971474
minor just in case fix
2012-02-23 16:37:06 +00:00
Miroslav Stampar
6e54cb171f
minor code restyling
2012-02-22 15:53:36 +00:00
Miroslav Stampar
61a25418a9
minor update
2012-02-22 10:45:10 +00:00
Miroslav Stampar
b3bd4144f5
removing of unused imports together with some general code refactoring
2012-02-22 10:40:11 +00:00
Bernardo Damele
f55ad46119
Use %TEMP% environment variable as temporary directory (--tmp-path overwrites this btw) folder with direct connection (-d). Via SQL injection, env variables do not work apparently
2012-02-20 11:06:55 +00:00
Miroslav Stampar
08bf8c201f
few minor fixes
2012-02-20 10:24:55 +00:00
Bernardo Damele
121148f27f
There was no point relying on a support table (sqlmapoutput) to get the stdout of executed OS commands when using direct connection (-d) and it saves also number of requests.
...
Also, BULK INSERT apparently does not work on MSSQL when running as Network Service (at least on Windows XP) so one more reason to avoid using support table.
Minor fix also to threat MSSQL's EXEC statements as SELECT ones
2012-02-17 15:54:49 +00:00
Bernardo Damele
ebd40b3933
Minor bug fix to make --file-read and --os-bof syntactically work also with -d (direct connection)
2012-02-17 15:16:05 +00:00
Miroslav Stampar
dcf7277a0f
some more refactorings
2012-02-16 14:42:28 +00:00
Miroslav Stampar
e1f86c97c4
minor refactoring
2012-02-16 09:46:41 +00:00
Miroslav Stampar
7bca926a0b
fixes, updates, patches
2012-02-09 10:16:58 +00:00
Miroslav Stampar
948cf25de4
more consistent
2012-02-09 09:53:40 +00:00
Miroslav Stampar
980367b7b2
minor update
2012-02-09 09:48:47 +00:00
Miroslav Stampar
1d4b10dbd1
bug fix
2012-02-08 13:55:50 +00:00
Miroslav Stampar
2662fe84f7
minor update
2012-02-08 12:02:50 +00:00
Miroslav Stampar
85a4ef6593
minor update
2012-02-08 12:00:03 +00:00
Miroslav Stampar
f7bf1fbe94
upgrade/fixes for direct DBMS access
2012-02-07 10:46:55 +00:00
Miroslav Stampar
e94f86a1ad
minor update
2012-02-03 15:46:28 +00:00
Miroslav Stampar
22f4d5650f
fix for retrieving version of backend OS on MSSQL
2012-02-03 15:42:36 +00:00
Miroslav Stampar
a48fc4efec
minor update
2012-02-03 15:32:23 +00:00
Miroslav Stampar
e3466fa5d8
minor update
2012-02-03 15:28:11 +00:00
Miroslav Stampar
2136b3447d
better solution
2012-02-03 15:22:21 +00:00
Miroslav Stampar
f86c365694
added one more failsafe for MSSQL --tables
2012-02-03 10:56:39 +00:00
Miroslav Stampar
a6c2fc7ecc
some refactoring on MSSQL support
2012-02-01 12:53:07 +00:00
Miroslav Stampar
f79d01183d
minor update
2012-02-01 09:23:52 +00:00
Miroslav Stampar
2face9799a
minor fix
2012-02-01 09:17:38 +00:00
Miroslav Stampar
7d37a650d0
minor fix
2012-01-30 14:41:17 +00:00
Miroslav Stampar
91ebadff75
minor update
2012-01-30 13:32:52 +00:00
Miroslav Stampar
d8c343a88a
minor update
2012-01-30 13:29:43 +00:00
Miroslav Stampar
f8ae0e5272
minor update
2012-01-30 13:20:33 +00:00
Miroslav Stampar
de94bee7b5
minor fix
2012-01-20 00:11:19 +00:00
Miroslav Stampar
b2dad63000
some more refactoring
2012-01-13 22:00:34 +00:00
Miroslav Stampar
8e4b8d345f
refactoring
2012-01-13 21:55:39 +00:00
Bernardo Damele
ec9cc19951
Minor bug fixes for -d
2012-01-13 21:46:21 +00:00
Bernardo Damele
5e853cae64
Minor bug fix so now when the back-end DBMS operating system is Windows 2000, it sets the temporary folder automatically to C:\WINNT\Temp - the user does not need to provide it anymore with --tmp-path C:\\WINNT\\Temp
2012-01-13 18:08:44 +00:00
Bernardo Damele
0043336620
Minor fix and removed leftover debug message
2012-01-13 17:04:59 +00:00
Bernardo Damele
b03f91437b
Minor code refactoring
2012-01-13 16:49:52 +00:00
Miroslav Stampar
accac776fe
some fixes
2012-01-13 14:10:53 +00:00
Miroslav Stampar
95f89ab63a
updating copyright date
2012-01-11 14:59:46 +00:00
Miroslav Stampar
fecdce5801
implemented --tables over information_schema for MSSQL as a failover option for BOOLEAN technique too
2012-01-09 21:09:05 +00:00
Miroslav Stampar
ff52931140
some refactoring (skipping duplicate messages in case that UNION/ERROR techniques failed and BOOLEAN/TIMED/STACKED are not available)
2012-01-07 19:30:35 +00:00
Miroslav Stampar
138b8039b3
better language
2012-01-07 17:35:53 +00:00
Miroslav Stampar
f85c5b3f4d
minor update
2012-01-06 00:23:49 +00:00
Miroslav Stampar
f412706fee
minor update for MSSQL --tables (fallback to other method)
2012-01-03 18:01:14 +00:00
Miroslav Stampar
6f5ef23f28
minor update/patch
2012-01-01 22:55:32 +00:00
Miroslav Stampar
300abc2ba2
minor update regarding unicode unescaping
2012-01-01 22:31:09 +00:00
Miroslav Stampar
6c49af090c
minor language patch
2011-12-28 14:18:17 +00:00
Miroslav Stampar
8750532c3d
minor fix
2011-12-28 14:13:36 +00:00
Miroslav Stampar
1ae413a206
some refactoring/speedup around UNION technique
2011-12-22 10:32:21 +00:00
Miroslav Stampar
526aacb640
code cleanup
2011-12-21 22:59:23 +00:00
Miroslav Stampar
41ccf88990
some more refactoring
2011-12-21 22:09:21 +00:00
Miroslav Stampar
0a039d84e0
some more refactoring
2011-12-21 19:40:42 +00:00
Miroslav Stampar
d9d4e3ea9b
minor fix
2011-12-21 17:43:50 +00:00
Miroslav Stampar
41b60b26fc
minor refactoring
2011-12-21 14:25:39 +00:00
Miroslav Stampar
81bd9a201b
minor refactoring
2011-12-21 11:50:49 +00:00
Miroslav Stampar
d1bfdc6a48
minor fix for --start/--stop mechanism in pivot dumping mode
2011-12-20 13:04:57 +00:00
Miroslav Stampar
641055144a
minor beautification
2011-12-16 11:49:20 +00:00
Miroslav Stampar
ebc04a3d5f
minor fix
2011-12-16 11:44:33 +00:00
Miroslav Stampar
7d2fce16dc
minor fix
2011-12-16 11:40:23 +00:00
Miroslav Stampar
cff21814bb
minor patch for MSSQL 2008
2011-12-16 11:23:41 +00:00
Miroslav Stampar
8793fbc9f5
minor update
2011-12-14 12:59:25 +00:00
Miroslav Stampar
39b406c5c1
fix for --search on Oracle
2011-12-02 18:13:27 +00:00
Miroslav Stampar
96aacbf945
upgrade of --search mechanism (lowest common denominator is now searched for - e.g. if -D -T and -C are given then -C is searched for in -D and -T)
2011-12-02 13:32:30 +00:00
Miroslav Stampar
9697e80013
some more optimizations
2011-11-22 10:54:29 +00:00
Miroslav Stampar
b117c40aa5
major improvement of HashDB speed in multi-threaded mode
2011-11-22 10:09:35 +00:00
Miroslav Stampar
0ce885e6e6
adding base64encode tampering script
2011-11-21 12:47:23 +00:00
Miroslav Stampar
440b7efe55
minor optimization
2011-11-20 20:14:47 +00:00
Miroslav Stampar
f574760c12
minor update
2011-10-28 13:16:22 +00:00
Miroslav Stampar
bd7da45546
minor update
2011-10-28 13:07:23 +00:00
Miroslav Stampar
f7be0ca4e2
minor fix
2011-10-28 12:49:35 +00:00
Miroslav Stampar
6c0e8b0ea8
returning alphabetically sorted database and table names
2011-10-28 12:40:59 +00:00
Miroslav Stampar
9523da7663
minor optimization
2011-10-25 13:21:01 +00:00
Miroslav Stampar
23bf52e496
minor refactoring
2011-10-24 09:55:50 +00:00
Miroslav Stampar
77e630d89e
replaced longer CHAR form of escaped MySQL strings with more compact hex form
2011-10-23 20:19:42 +00:00
Miroslav Stampar
25f0ec3597
some minor range to xrange conversion (where safe to do)
2011-10-21 22:34:27 +00:00
Miroslav Stampar
b6ccc0cc43
minor update
2011-10-18 14:35:42 +00:00
Miroslav Stampar
7f9f744b87
update regarding last commit
2011-10-12 12:37:05 +00:00
Miroslav Stampar
39e33bea99
important fix (LIMIT m,n should not be considered deterministic in column by column table dumping)
2011-10-12 12:31:47 +00:00
Miroslav Stampar
2d7d84e16b
minor fix
2011-09-25 19:42:24 +00:00
Miroslav Stampar
af94ac7f02
minor fix
2011-09-20 22:16:56 +00:00
Miroslav Stampar
9a1ac96756
bug fix
2011-09-11 17:22:27 +00:00
Miroslav Stampar
8a174248dc
fix for a bug reported by blueBoy
2011-08-20 20:08:11 +00:00
Miroslav Stampar
fb6a84b10b
minor update (when columns are missing from information_schema too)
2011-08-18 07:03:53 +00:00
Miroslav Stampar
262996fc5b
bug fix
2011-08-16 06:14:40 +00:00
Miroslav Stampar
10bdd90e60
minor speed optimizations (as a result of profiling)
2011-08-12 13:40:37 +00:00
Miroslav Stampar
41ae9bc7ff
minor bug fix
2011-08-09 14:20:25 +00:00
Miroslav Stampar
9423d15fb3
ORDER BY technique used for finding proper UNION col count (dramatical improvement of speed and capabilities) and one minor bug fix
2011-08-03 09:08:16 +00:00
Bernardo Damele
c15439ab7f
Minor improvement to --passwords output
2011-08-02 09:04:34 +00:00
Bernardo Damele
ad4584da70
Minor bug fix when dumping tables with UNION query technique on Access, Firebird and MaxDB
2011-08-01 23:44:14 +00:00
Miroslav Stampar
4ca81dd345
quick fix
2011-08-01 23:25:58 +00:00
Miroslav Stampar
e0fda9f985
minor fix
2011-08-01 10:13:25 +00:00
Miroslav Stampar
79b4e26e23
bug fix
2011-08-01 00:17:26 +00:00
Miroslav Stampar
0627bb02cb
minor beautification
2011-07-31 10:21:47 +00:00
Miroslav Stampar
4d923ec375
change in invalid logic regarding --sql-shell (retrieving output for non-query commands did nothing at all)
2011-07-30 21:46:59 +00:00
Miroslav Stampar
a6ade08c28
just in case commit to prevent join string iteration over 'None' values
2011-07-30 13:01:37 +00:00
Miroslav Stampar
4ce93221d1
minor update
2011-07-28 09:24:37 +00:00
Miroslav Stampar
684ddc43e6
minor patch
2011-07-28 08:53:09 +00:00
Bernardo Damele
37de709df2
leftover
2011-07-26 11:20:07 +00:00