Bernardo Damele
|
0efecde248
|
Minor update to properly differentiate Windows 2003 by 2008 via HTTP response headers
|
2010-10-27 10:09:47 +00:00 |
|
Miroslav Stampar
|
749e25a217
|
Implementation of --passwords for Sybase
|
2010-10-26 21:35:30 +00:00 |
|
Miroslav Stampar
|
1b90c1d131
|
added FreeBSD
|
2010-10-26 20:48:52 +00:00 |
|
Miroslav Stampar
|
4da2046492
|
massive update of server fingerprints
|
2010-10-26 20:00:29 +00:00 |
|
Miroslav Stampar
|
080c5aef80
|
minor update
|
2010-10-26 19:08:11 +00:00 |
|
Miroslav Stampar
|
8a9a57c709
|
update for Sybase and major bug fix for --passwords on MSSQL
|
2010-10-25 22:11:38 +00:00 |
|
Miroslav Stampar
|
9b56fbafbe
|
that Sybase is going to be pain in the ass
|
2010-10-25 21:43:13 +00:00 |
|
Miroslav Stampar
|
228ac0cde5
|
refactoring regarding --check-payload
|
2010-10-25 18:38:54 +00:00 |
|
Miroslav Stampar
|
378653a1ec
|
added IDS payload testing
|
2010-10-25 15:37:43 +00:00 |
|
Miroslav Stampar
|
aa931efd4d
|
several MySQL fixes/enhancements pointed out by Anton Mogilin
|
2010-10-24 22:05:14 +00:00 |
|
Miroslav Stampar
|
68d39d5976
|
minor minor fix
|
2010-10-23 09:12:08 +00:00 |
|
Miroslav Stampar
|
32a4350779
|
update for MaxDB
|
2010-10-23 09:03:59 +00:00 |
|
Miroslav Stampar
|
98f5586b87
|
minor update
|
2010-10-23 08:05:24 +00:00 |
|
Miroslav Stampar
|
f8850e3f41
|
update (xml fix and refactoring)
|
2010-10-23 07:44:34 +00:00 |
|
Miroslav Stampar
|
a7a53af924
|
update for Sybase
|
2010-10-23 07:37:43 +00:00 |
|
Miroslav Stampar
|
dec4d858b3
|
fix for Bug #207
|
2010-10-22 14:01:48 +00:00 |
|
Miroslav Stampar
|
e24bff0497
|
nice refactoring
|
2010-10-20 09:46:57 +00:00 |
|
Miroslav Stampar
|
5d3cbec457
|
no more regex. web server independent.
|
2010-10-20 09:35:46 +00:00 |
|
Miroslav Stampar
|
b032fdbf74
|
added randInt to error injection vectors
|
2010-10-20 08:56:58 +00:00 |
|
Miroslav Stampar
|
f2dae98448
|
fix for MySQL error queries
|
2010-10-19 23:30:08 +00:00 |
|
Miroslav Stampar
|
1fce9683f8
|
now --users work for MSSQL too
|
2010-10-19 15:05:32 +00:00 |
|
Miroslav Stampar
|
80505de15b
|
now --users work on Oracle and Postgre (tested)
|
2010-10-19 14:56:57 +00:00 |
|
Miroslav Stampar
|
4bc541ec3c
|
error based update
|
2010-10-19 14:47:13 +00:00 |
|
Miroslav Stampar
|
bf850af2d8
|
fix for Oracle error based query "space" problem
|
2010-10-19 14:10:09 +00:00 |
|
Miroslav Stampar
|
878135fe40
|
minor fix
|
2010-10-19 14:00:27 +00:00 |
|
Miroslav Stampar
|
6a8b1046d4
|
first successfull run of error based sqlmap in history :). tested --banner, --current-user, --current-db on 4 major DBMSes. still hidden from users (turn on flag error in getValue() in inject.py)
|
2010-10-19 12:02:04 +00:00 |
|
Miroslav Stampar
|
d123bb741a
|
added error based queries for MySQL, Postgre, MS SQL and Oracle
|
2010-10-18 21:26:13 +00:00 |
|
Miroslav Stampar
|
f9f79ffbaf
|
basic stuff for sybase
|
2010-10-12 19:05:12 +00:00 |
|
Miroslav Stampar
|
9840d25b55
|
update of MaxDB queries
|
2010-10-12 17:04:20 +00:00 |
|
Miroslav Stampar
|
de0f6b6f72
|
bug fix
|
2010-10-10 17:46:09 +00:00 |
|
Miroslav Stampar
|
18d27cabc5
|
more changes
|
2010-10-07 15:34:17 +00:00 |
|
Miroslav Stampar
|
440ff639bb
|
more refactoring
|
2010-10-07 14:05:34 +00:00 |
|
Miroslav Stampar
|
1e9ae40397
|
major refactoring
|
2010-10-07 12:12:26 +00:00 |
|
Miroslav Stampar
|
de6fa1247b
|
moved injections to xml format
|
2010-10-06 22:29:52 +00:00 |
|
Miroslav Stampar
|
d9d0c971fa
|
new file
|
2010-10-06 14:37:14 +00:00 |
|
Miroslav Stampar
|
10ab6371f2
|
minor update
|
2010-10-06 11:58:55 +00:00 |
|
Miroslav Stampar
|
3cd15960a0
|
more updates
|
2010-09-27 13:26:46 +00:00 |
|
Miroslav Stampar
|
3b9fe3e1c8
|
everything is ready for testing (smoke and live)
|
2010-09-27 11:20:48 +00:00 |
|
Miroslav Stampar
|
dc11ae0d65
|
update
|
2010-09-26 14:56:55 +00:00 |
|
Miroslav Stampar
|
35f35605df
|
changes regarding Feature #160
|
2010-09-26 14:02:13 +00:00 |
|
Miroslav Stampar
|
76233ff5a3
|
added skeleton for live testing
|
2010-09-15 13:55:28 +00:00 |
|
Miroslav Stampar
|
c4040ab297
|
fix for Feature #136
|
2010-08-31 14:25:37 +00:00 |
|
Miroslav Stampar
|
27496b91b2
|
fix
|
2010-08-31 13:08:57 +00:00 |
|
Miroslav Stampar
|
266974829d
|
minor update
|
2010-08-30 22:39:07 +00:00 |
|
Miroslav Stampar
|
48cc87f6a9
|
added support for fingerprinting SAP MaxDB (Issue 143)
|
2010-08-30 13:29:19 +00:00 |
|
Bernardo Damele
|
5bb8e154eb
|
Minor code improvements
|
2010-06-10 14:15:32 +00:00 |
|
Bernardo Damele
|
06af405efd
|
Adapted and merged in patch to support XML output (-x switch) - still in beta.
Minor bug fixes and adjustments.
|
2010-05-28 16:43:04 +00:00 |
|
Bernardo Damele
|
e0e2349529
|
Refactor to --search -C and minor bug fix - See #190.
|
2010-05-17 16:16:49 +00:00 |
|
Bernardo Damele
|
c9ee11e0e4
|
Added support to search for tables (--search with -T). See #190.
|
2010-05-16 20:46:17 +00:00 |
|
Bernardo Damele
|
65a05452f7
|
Added option --search to work in conjunction with -D (done), -T (soon) or -C (replaces --dump -C) - See #190:
* --search -D foobar: searches all database names like the ones provided
* --search -T foobar: searches all databases' table names like the ones provided (soon)
* --search -C foobar: replaces --dump -C
|
2010-05-07 13:40:57 +00:00 |
|