Miroslav Stampar
|
dc11ae0d65
|
update
|
2010-09-26 14:56:55 +00:00 |
|
Miroslav Stampar
|
35f35605df
|
changes regarding Feature #160
|
2010-09-26 14:02:13 +00:00 |
|
Miroslav Stampar
|
99d9f9e624
|
update for smoke testing
|
2010-09-26 10:47:04 +00:00 |
|
Miroslav Stampar
|
2e5f269650
|
update regarding --space option
|
2010-09-24 22:35:32 +00:00 |
|
Miroslav Stampar
|
9cd5d3bde7
|
added new option --space
|
2010-09-24 21:59:03 +00:00 |
|
Miroslav Stampar
|
327bfcbe97
|
update regarding Feature #61
|
2010-09-24 14:34:05 +00:00 |
|
Miroslav Stampar
|
b6ff03690f
|
update regarding Feature #61
|
2010-09-24 13:34:46 +00:00 |
|
Miroslav Stampar
|
abe1289016
|
minor update
|
2010-09-24 13:20:51 +00:00 |
|
Miroslav Stampar
|
48e0261e68
|
update for Feature #61
|
2010-09-24 13:19:35 +00:00 |
|
Miroslav Stampar
|
ff419f7384
|
more changes regarding path (URI) injection
|
2010-09-24 09:19:14 +00:00 |
|
Miroslav Stampar
|
e4925eb3dd
|
update
|
2010-09-23 21:57:11 +00:00 |
|
Miroslav Stampar
|
13bb3a6212
|
minor update
|
2010-09-23 14:07:23 +00:00 |
|
Miroslav Stampar
|
927ad7bf13
|
update
|
2010-09-22 12:21:21 +00:00 |
|
Miroslav Stampar
|
da8ae5578b
|
first commit regarding Feature #144
|
2010-09-22 11:56:35 +00:00 |
|
Miroslav Stampar
|
540a9b391f
|
stripped some trailing spaces
|
2010-09-16 13:19:13 +00:00 |
|
Miroslav Stampar
|
8cf1aa6abe
|
added keepAlive under -o switch too
|
2010-09-16 10:41:52 +00:00 |
|
Miroslav Stampar
|
4fd7db52dd
|
minor update
|
2010-09-16 10:23:51 +00:00 |
|
Miroslav Stampar
|
6259114c02
|
added optimization switch (-o)
|
2010-09-16 10:12:53 +00:00 |
|
Miroslav Stampar
|
bfffd5e333
|
added --null-connection as an experimental option
|
2010-09-16 10:01:33 +00:00 |
|
Miroslav Stampar
|
975b96ae28
|
minor refactoring
|
2010-09-16 09:47:33 +00:00 |
|
Miroslav Stampar
|
1741801ade
|
implementation of HEAD/Range methods
|
2010-09-16 09:32:09 +00:00 |
|
Miroslav Stampar
|
b745331974
|
added null connection check
|
2010-09-16 08:43:10 +00:00 |
|
Miroslav Stampar
|
ecd6b573f7
|
added method parameter to the queryPage function
|
2010-09-15 14:17:17 +00:00 |
|
Miroslav Stampar
|
9a72a25704
|
again minor update
|
2010-09-15 13:59:55 +00:00 |
|
Miroslav Stampar
|
76233ff5a3
|
added skeleton for live testing
|
2010-09-15 13:55:28 +00:00 |
|
Miroslav Stampar
|
53800ef65f
|
more refactoring
|
2010-09-15 13:32:42 +00:00 |
|
Miroslav Stampar
|
abc12bc361
|
more refactoring
|
2010-09-15 13:28:56 +00:00 |
|
Miroslav Stampar
|
682872689a
|
some more refactoring
|
2010-09-15 12:59:51 +00:00 |
|
Miroslav Stampar
|
91a0b5df3c
|
minor update
|
2010-09-15 12:52:28 +00:00 |
|
Miroslav Stampar
|
b699f98cbb
|
minor refactoring
|
2010-09-15 12:51:02 +00:00 |
|
Miroslav Stampar
|
34a8cd75e3
|
added support for setting HTTP method manualy
|
2010-09-15 12:45:41 +00:00 |
|
Miroslav Stampar
|
798ab4989b
|
fix for a Bug #200
|
2010-09-14 10:35:01 +00:00 |
|
Miroslav Stampar
|
77a53228c5
|
changes regarding dynamic content recognition
|
2010-09-13 21:01:46 +00:00 |
|
Miroslav Stampar
|
c886659f82
|
fix
|
2010-09-13 15:24:56 +00:00 |
|
Miroslav Stampar
|
827cd1d56b
|
minor fix
|
2010-09-13 15:22:29 +00:00 |
|
Miroslav Stampar
|
2350a3c74d
|
minor change
|
2010-09-13 15:20:13 +00:00 |
|
Miroslav Stampar
|
cdc6bdcbe8
|
changes
|
2010-09-13 15:19:47 +00:00 |
|
Miroslav Stampar
|
19fb2e3dcf
|
fix for Bug #165
|
2010-09-13 13:31:01 +00:00 |
|
Miroslav Stampar
|
61120b0bac
|
minor comment added
|
2010-09-09 14:08:53 +00:00 |
|
Miroslav Stampar
|
53289c6a42
|
fix for bug reported by Marek Sarvas (unicode)
|
2010-09-09 14:03:45 +00:00 |
|
Miroslav Stampar
|
1b3d287a09
|
fix for a bug reported by shaohua pan (and one other bug)
|
2010-09-07 10:21:42 +00:00 |
|
Miroslav Stampar
|
27d76847fe
|
fix for bug reported by Truong Duc Luong
|
2010-09-01 08:46:21 +00:00 |
|
Miroslav Stampar
|
e810fe7b0b
|
no need for obsolete (and hard to find) sqlite module when sqlite3 handles both database versions
|
2010-08-31 13:37:53 +00:00 |
|
Miroslav Stampar
|
f5953bacc0
|
fix for direct connection parsing (now on windows machines python sqlmap.py -d access://C:\testdb.mdb is valid, while before it wasn't)
|
2010-08-30 16:35:28 +00:00 |
|
Miroslav Stampar
|
48cc87f6a9
|
added support for fingerprinting SAP MaxDB (Issue 143)
|
2010-08-30 13:29:19 +00:00 |
|
Miroslav Stampar
|
436b7d82fb
|
fixed a bug reported by Marek Sarvas
|
2010-08-22 08:52:15 +00:00 |
|
Miroslav Stampar
|
2cd8f31003
|
some doc test samples included
|
2010-08-20 21:27:47 +00:00 |
|
Miroslav Stampar
|
4edf6ebe00
|
update for smoke tests
|
2010-08-20 21:01:51 +00:00 |
|
Miroslav Stampar
|
8aa12db425
|
added option --proxy-cred for setting proxy credentials (Feature #195)
|
2010-08-18 22:45:00 +00:00 |
|
Miroslav Stampar
|
70197affa0
|
little update (--ratio has a bigger priority then resumed value)
|
2010-08-10 19:57:59 +00:00 |
|
Miroslav Stampar
|
057ec8a6b2
|
added --ratio option for direct manipulation of conf.matchRatio parameter
|
2010-08-10 19:53:29 +00:00 |
|
Miroslav Stampar
|
02523dbfb5
|
fix of fix
|
2010-08-09 22:13:56 +00:00 |
|
Miroslav Stampar
|
6eab7997d1
|
fix for bug reported by dragoun dash (TypeError: sequence item 0: expected string, NoneType found)
|
2010-08-08 22:25:33 +00:00 |
|
Miroslav Stampar
|
e0fe5d1504
|
bug fix for error reported by Marek Sarvas (error data)
|
2010-08-08 21:48:22 +00:00 |
|
Miroslav Stampar
|
0cab4a5355
|
fix for bug reported by m4l1c3 (UnicodeEncodeError)
|
2010-08-08 21:22:37 +00:00 |
|
Miroslav Stampar
|
8cb95583e3
|
some more adjustments
|
2010-07-30 12:59:44 +00:00 |
|
Miroslav Stampar
|
7dcc2031ac
|
smoke test adjustments
|
2010-07-30 12:57:58 +00:00 |
|
Miroslav Stampar
|
092829c189
|
implemented basic smoke testing mechanism
|
2010-07-30 12:49:25 +00:00 |
|
Miroslav Stampar
|
28d9115373
|
fix for Feature #187 (Skip duplicates parameters in -g)
|
2010-07-29 20:01:04 +00:00 |
|
Miroslav Stampar
|
6a6ff09c9a
|
fix for a bug reported by Marek Sarvas
|
2010-07-26 08:11:28 +00:00 |
|
Miroslav Stampar
|
c39d819dd2
|
fix for a resume bug reported by Augusto Urbieta
|
2010-07-20 08:13:02 +00:00 |
|
Miroslav Stampar
|
d2f88b6ebe
|
detecting infinite redirect loops (Feature #192)
|
2010-07-19 12:38:30 +00:00 |
|
Miroslav Stampar
|
b37dca1c2c
|
minor adjustment
|
2010-07-19 09:06:19 +00:00 |
|
Miroslav Stampar
|
9edd468caf
|
multithreading save to session on abort
|
2010-07-19 08:37:45 +00:00 |
|
Miroslav Stampar
|
48a67d6d51
|
fix for "unknown charset 'windows-874'" reported by Phat R.
|
2010-07-15 08:44:42 +00:00 |
|
Bernardo Damele
|
49af0c43a5
|
Forgot
|
2010-07-01 15:26:18 +00:00 |
|
Bernardo Damele
|
7349f3a70f
|
Closes #197
|
2010-07-01 15:25:57 +00:00 |
|
Miroslav Stampar
|
bb9401ba52
|
minor minor fixup
|
2010-07-01 14:14:43 +00:00 |
|
Miroslav Stampar
|
9d28ae23ca
|
fixup for situations with unexpected LENGTHs in multithreaded mode (e.g. UTF8 data retrieval)
|
2010-07-01 14:11:45 +00:00 |
|
Bernardo Damele
|
8dfe08a353
|
Minor bug fix to -d
|
2010-07-01 10:44:31 +00:00 |
|
Miroslav Stampar
|
0d08903bc3
|
some charset fix up
|
2010-06-30 12:09:33 +00:00 |
|
Bernardo Damele
|
24428c1a1b
|
Added warning message if both --proxy and --keep-alive are provided
|
2010-06-30 11:41:42 +00:00 |
|
Bernardo Damele
|
d40a238335
|
Make --keep-alive public
|
2010-06-30 11:29:35 +00:00 |
|
Bernardo Damele
|
8625763c07
|
Minor code refactoring
|
2010-06-30 11:22:25 +00:00 |
|
Bernardo Damele
|
c33f3ef844
|
Minor adjustment to HTTP headers handling
|
2010-06-29 23:51:44 +00:00 |
|
Bernardo Damele
|
fb9f669544
|
More verbose comments
|
2010-06-29 21:10:33 +00:00 |
|
Bernardo Damele
|
8576817a2b
|
Added support for SOAP requests: fixed, extended and tested a user's patch - closes #196.
|
2010-06-29 21:07:23 +00:00 |
|
Bernardo Damele
|
ea45d75f2d
|
Major bug fix to parse and store all HTTP headers from the request file (-r)
|
2010-06-29 21:06:03 +00:00 |
|
Bernardo Damele
|
7cad3cbda6
|
Minor code refactoring
|
2010-06-28 13:47:20 +00:00 |
|
Bernardo Damele
|
9ea72f9640
|
Minor bug fixes to -d
|
2010-06-25 13:24:43 +00:00 |
|
Miroslav Stampar
|
ccfc9b0fec
|
fix for that bug linux man reported (UnicodeEncodeError inside raw_input)
|
2010-06-23 07:30:15 +00:00 |
|
Bernardo Damele
|
17e228024b
|
Minor enhancements and bug fixes to "good samaritan" feature - see #4
|
2010-06-21 14:40:12 +00:00 |
|
Bernardo Damele
|
b98f6ac71c
|
Minor layout adjustment
|
2010-06-17 13:27:43 +00:00 |
|
Bernardo Damele
|
fd76f048b6
|
Added common pattern value support to bisection algorithm
|
2010-06-17 11:38:32 +00:00 |
|
Bernardo Damele
|
9bce22683b
|
Minor bug fix and adjustment to deal with Keep-Alive also against Google (-g)
|
2010-06-11 10:08:19 +00:00 |
|
Bernardo Damele
|
c23ea4c749
|
--keep-alive is not compatible with --proxy
|
2010-06-10 21:19:45 +00:00 |
|
Bernardo Damele
|
75dc44deb8
|
Minor adjustments
|
2010-06-10 15:34:28 +00:00 |
|
Miroslav Stampar
|
35642a0450
|
some more adjustments
|
2010-06-10 15:03:08 +00:00 |
|
Miroslav Stampar
|
1b30c46348
|
fix for an bug reported by David Guimaraes
|
2010-06-10 14:52:33 +00:00 |
|
Bernardo Damele
|
fea2414759
|
Display HTTP request in -v>=3 even if connection failed
|
2010-06-10 14:42:17 +00:00 |
|
Bernardo Damele
|
5bb8e154eb
|
Minor code improvements
|
2010-06-10 14:15:32 +00:00 |
|
Bernardo Damele
|
d3c8e461cf
|
Minor layout adjustments
|
2010-06-10 14:14:56 +00:00 |
|
Miroslav Stampar
|
ac55e1b75f
|
fix for localhost firebird direct db access
|
2010-06-10 12:02:48 +00:00 |
|
Miroslav Stampar
|
36953221f8
|
few quick changes
|
2010-06-10 11:34:17 +00:00 |
|
Miroslav Stampar
|
c398353e06
|
support for loading 'faulty character set' session files
|
2010-06-09 16:07:47 +00:00 |
|
Miroslav Stampar
|
eaef068c90
|
major bug fix (different HTTP content charsets are now properly handled)
|
2010-06-09 14:40:36 +00:00 |
|
Miroslav Stampar
|
38e5e342f8
|
added prettyprint module with fixed toprettyxml() method
|
2010-06-07 09:03:03 +00:00 |
|
Miroslav Stampar
|
9e76b847b3
|
fix regarding bug discovered by Andreas Constantinides
|
2010-06-04 17:07:17 +00:00 |
|
Miroslav Stampar
|
7fbeebc4d9
|
grammar fix
|
2010-06-03 08:55:13 +00:00 |
|
Miroslav Stampar
|
464f171a8c
|
added reusage of xml output and removed toprettyxml which has lots and lots of problems (output once stored is not usable any more from any xml parser/reader because it adds whitespaces all over the output just to be more 'human' readable)
|
2010-06-03 07:36:30 +00:00 |
|