Miroslav Stampar
|
68e507ea9f
|
Update for an SQLite3 time-based (heavy query) payloads (better timedelay)
|
2013-01-31 18:59:18 +01:00 |
|
Miroslav Stampar
|
410f6ad476
|
Fix for an Issue #380
|
2013-01-31 13:26:38 +01:00 |
|
Miroslav Stampar
|
6b6e36b2ec
|
Continuation of work on fixing DISTINCT/--search issues (Oracle)
|
2013-01-30 18:08:34 +01:00 |
|
Miroslav Stampar
|
838e98192e
|
Consistency update (we are not using DISTINCT in inband counterparts too)
|
2013-01-30 17:25:36 +01:00 |
|
Miroslav Stampar
|
112ff952d4
|
Continuation of cleaning up a mess in Oracle's world of DISTINCT (part of Issue #342 and #372)
|
2013-01-30 17:08:17 +01:00 |
|
Miroslav Stampar
|
fdea8ddea6
|
Starting to clean up a mess in Oracle's world of DISTINCT (part of Issue #342 and #372)
|
2013-01-30 16:55:09 +01:00 |
|
Miroslav Stampar
|
742c66fad2
|
Adding one more test (switch --hex)
|
2013-01-30 11:40:12 +01:00 |
|
Bernardo Damele
|
8519717f25
|
minor fixes to --live-test
|
2013-01-30 10:32:56 +00:00 |
|
Miroslav Stampar
|
f2512d06db
|
Removing unneeded whitespace in inference queries
|
2013-01-29 16:13:49 +01:00 |
|
Bernardo Damele
|
2a9fe62c3f
|
bind payload is preferred if filtering does not allow reverse connection
|
2013-01-26 15:51:47 +00:00 |
|
Miroslav Stampar
|
f9b44d6ff7
|
Adding test cases for using custom injection marks
|
2013-01-25 16:07:27 +01:00 |
|
Bernardo Damele
|
aed833c1d2
|
fixed test case
|
2013-01-24 14:59:55 +00:00 |
|
Bernardo Damele
|
7d01eb79b4
|
minor fix
|
2013-01-24 00:55:45 +00:00 |
|
Bernardo Damele
|
3c0c7f776f
|
minor fix
|
2013-01-23 16:57:51 +00:00 |
|
Bernardo Damele
|
f1534a178a
|
regexp fixes
|
2013-01-23 16:22:01 +00:00 |
|
Bernardo Damele
|
9ceb4839ac
|
added test cases for --common-tables across all DBMSes and supported techniques
|
2013-01-23 15:54:58 +00:00 |
|
Miroslav Stampar
|
c83f468a37
|
Trivial changes
|
2013-01-23 15:34:20 +01:00 |
|
Miroslav Stampar
|
35d76f3da5
|
Adding missing stuff related to the last commit
|
2013-01-23 14:48:31 +01:00 |
|
Miroslav Stampar
|
9825e247db
|
Refactoring search module
|
2013-01-23 14:22:35 +01:00 |
|
Bernardo Damele
|
599ad74a32
|
typo fix
|
2013-01-23 13:05:10 +00:00 |
|
Bernardo Damele
|
7ee07d031a
|
added PostgreSQL stacked queries test case
|
2013-01-23 12:15:20 +00:00 |
|
Bernardo Damele
|
314ed22fc3
|
added preventive cleanup test case
|
2013-01-23 12:12:30 +00:00 |
|
Bernardo Damele
|
f3ff239e62
|
minor fix
|
2013-01-23 00:21:11 +00:00 |
|
Bernardo Damele
|
aafc5b5623
|
added one just in case test case to check if all params are tested as they should be
|
2013-01-23 00:18:54 +00:00 |
|
Bernardo Damele
|
91c00939f7
|
added one more test case
|
2013-01-22 18:28:59 +00:00 |
|
Miroslav Stampar
|
d6a361f859
|
Proper implementation for --technique=Q --dbms=Firebird
|
2013-01-22 16:31:26 +01:00 |
|
Miroslav Stampar
|
5ea45af1c4
|
Warming up for Issue #366 and #367
|
2013-01-22 14:14:20 +01:00 |
|
Bernardo Damele
|
4f081a6a9b
|
typo fixes
|
2013-01-22 13:00:15 +00:00 |
|
Bernardo Damele
|
afa9046e74
|
added Firebird custom enumeration test cases and stricten a few cases to make sure query length calculation function works properly with multi-threading/boolean technique
|
2013-01-22 12:34:11 +00:00 |
|
Bernardo Damele
|
29a65b5cdc
|
added Firebird search test cases
|
2013-01-22 11:23:48 +00:00 |
|
Miroslav Stampar
|
b8318efecc
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-22 11:29:15 +01:00 |
|
Bernardo Damele
|
11413a0f03
|
added Firebird search test cases
|
2013-01-22 10:04:17 +00:00 |
|
Bernardo Damele
|
e23340f002
|
added support for search for tables on Firebird (issue #365)
|
2013-01-22 09:53:05 +00:00 |
|
Bernardo Damele
|
d2ff9bccbb
|
minor adjustment
|
2013-01-21 21:00:03 +00:00 |
|
Bernardo Damele
|
bc5a7e49e9
|
done with DB2 test cases (issue #312)
|
2013-01-21 20:53:11 +00:00 |
|
Bernardo Damele
|
3cfa6cd191
|
minor adjustments
|
2013-01-21 16:41:47 +00:00 |
|
Bernardo Damele
|
d5de5306d6
|
minor fixes following recent enhancements
|
2013-01-21 16:38:31 +00:00 |
|
Miroslav Stampar
|
472f5e35c2
|
Removing that space char
|
2013-01-21 17:35:23 +01:00 |
|
Miroslav Stampar
|
5d318b4980
|
Fix for a ISNULL mechanism in Firebird
|
2013-01-21 17:33:09 +01:00 |
|
Miroslav Stampar
|
99bc4a9005
|
Generic approach for dealing with that nasty Firebird habit of appending spaces to (tec=EU) varchar casted values
|
2013-01-21 17:17:20 +01:00 |
|
Miroslav Stampar
|
832d95984c
|
IFNULL-like mechanism now works on SQLite 2 too
|
2013-01-21 15:04:27 +01:00 |
|
Miroslav Stampar
|
aebf2c1350
|
Slightly better payload for Firebird delay-based SQLi (adding sligtly more delay)
|
2013-01-20 23:10:58 +01:00 |
|
Bernardo Damele
|
845ec006d7
|
fixed again
|
2013-01-20 01:33:22 +00:00 |
|
Bernardo Damele
|
115be9d7b5
|
minor fixes
|
2013-01-20 01:26:46 +00:00 |
|
Bernardo Damele
|
a24eaffacc
|
fixed --columns on DB2, inline with Oracle and other DBMSes now
|
2013-01-19 16:14:25 +00:00 |
|
Bernardo Damele
|
b05c6cbd13
|
leftover
|
2013-01-19 00:29:42 +00:00 |
|
Bernardo Damele
|
30273e03fe
|
leftover
|
2013-01-19 00:28:48 +00:00 |
|
Bernardo Damele
|
0e78fbef56
|
correctly format SQLi payload for inline query technique
|
2013-01-19 00:28:03 +00:00 |
|
Bernardo Damele
|
89ddd54a75
|
added Firebird inline query payload, requires some work though engine-side for the vector to be usable
|
2013-01-19 00:05:15 +00:00 |
|
Bernardo Damele
|
10d86d042c
|
enough..
|
2013-01-18 23:46:26 +00:00 |
|
Bernardo Damele
|
e76213ef5d
|
more fixes
|
2013-01-18 23:37:13 +00:00 |
|
Bernardo Damele
|
6be7eee8d6
|
more fixes
|
2013-01-18 23:35:16 +00:00 |
|
Bernardo Damele
|
56eaa073ce
|
fixed test cases for Firebird - #312
|
2013-01-18 23:32:39 +00:00 |
|
Bernardo Damele
|
edeb181c4f
|
added first bunch of test cases for Firebird, issue #312
|
2013-01-18 23:17:43 +00:00 |
|
Bernardo Damele
|
b176cdb578
|
layout adjustment
|
2013-01-18 22:10:52 +00:00 |
|
Bernardo Damele
|
2471f325b2
|
minor adjustments
|
2013-01-18 21:47:25 +00:00 |
|
Bernardo Damele
|
1ad9e26a21
|
bug fix for ORDER BY users provided statements (issue #354)
|
2013-01-18 21:40:50 +00:00 |
|
Bernardo Damele
|
ebd1d3095b
|
done with test cases for Oracle - issue #312
|
2013-01-18 21:40:11 +00:00 |
|
Bernardo Damele
|
d594978857
|
typo fix again
|
2013-01-18 20:48:37 +00:00 |
|
Bernardo Damele
|
bab9485561
|
typo fix
|
2013-01-18 20:48:08 +00:00 |
|
Bernardo Damele
|
2550bbc05e
|
fix for #353
|
2013-01-18 20:40:38 +00:00 |
|
Bernardo Damele
|
2463e51e73
|
added one more test case for DB2 and a few search-related cases for Oracle (issue #312)
|
2013-01-18 20:37:20 +00:00 |
|
Bernardo Damele
|
d66f7e22b1
|
more fixes to test cases
|
2013-01-18 09:32:05 +00:00 |
|
Bernardo Damele
|
e4ee4f9557
|
fixed some test cases
|
2013-01-17 23:17:33 +00:00 |
|
Bernardo Damele
|
ce263b794f
|
on DB2 there are no users password hashes to dump
|
2013-01-17 22:17:55 +00:00 |
|
Bernardo Damele
|
d2d3878de1
|
typo fix
|
2013-01-17 21:58:53 +00:00 |
|
Bernardo Damele
|
acac8c359b
|
fixed --current-db query for IBM DB2
|
2013-01-17 20:47:35 +00:00 |
|
Bernardo Damele
|
74286e339f
|
test if boolean also works correctly for --os-cmd
|
2013-01-16 15:36:35 +00:00 |
|
Bernardo Damele
|
6f08d10d07
|
leftover
|
2013-01-16 15:16:18 +00:00 |
|
Bernardo Damele
|
1c8bd95e68
|
more work on Oracle test cases (#312)
|
2013-01-16 15:13:47 +00:00 |
|
Bernardo Damele
|
6b0ed1c581
|
fixed parsing reg exps to work with Oracle XE (#312)
|
2013-01-16 15:00:45 +00:00 |
|
Bernardo Damele
|
a3493769ca
|
minor fix
|
2013-01-16 00:45:18 +00:00 |
|
Bernardo Damele
|
983593510c
|
ported Oracle checks to express edition
|
2013-01-15 23:59:29 +00:00 |
|
Miroslav Stampar
|
7a1d484115
|
Implementation for an Issue #340
|
2013-01-15 16:05:33 +01:00 |
|
Bernardo Damele
|
3f84cefc77
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-15 14:59:22 +00:00 |
|
Bernardo Damele
|
1cafe605af
|
added more Oracle test cases
|
2013-01-15 14:59:15 +00:00 |
|
Miroslav Stampar
|
02f0e72cc6
|
Minor update of other/corner case titles
|
2013-01-15 11:10:03 +01:00 |
|
Miroslav Stampar
|
498a576e39
|
Removing obsolete data
|
2013-01-15 10:59:46 +01:00 |
|
Bernardo Damele
|
3fa720e699
|
added first Oracle test cases
|
2013-01-14 17:30:42 +00:00 |
|
Bernardo Damele
|
8a2b994b94
|
added SQLite test cases (issue #312)
|
2013-01-14 16:50:24 +00:00 |
|
Bernardo Damele
|
e555c2be30
|
added support for --search -T for SQLite
|
2013-01-14 16:26:11 +00:00 |
|
Bernardo Damele
|
48e0154fc3
|
added SQLite inline queries payload
|
2013-01-14 15:30:01 +00:00 |
|
Bernardo Damele
|
3e2c3851f3
|
Make --live-test Metasploit integration cases work, added more test cases for PostgreSQL and code refactoring (issue #312)
|
2013-01-14 13:42:50 +00:00 |
|
Bernardo Damele
|
bd89ade02f
|
minor bug fix for PostgreSQL --file-read
|
2013-01-14 12:22:00 +00:00 |
|
Bernardo Damele
|
c6d4b89869
|
minor bug fix for PostgreSQL (issue #338)
|
2013-01-14 11:41:30 +00:00 |
|
Bernardo Damele
|
b35b8a4835
|
fixed regexps for --live-test (issue #312)
|
2013-01-14 10:24:11 +00:00 |
|
Bernardo Damele
|
4acb281414
|
added first test cases for PostgreSQL
|
2013-01-14 01:11:57 +00:00 |
|
Bernardo Damele
|
b74cfbf336
|
minor enhancements for debug purposes (issue #312)
|
2013-01-13 23:15:56 +00:00 |
|
Miroslav Stampar
|
bc4d8d3e02
|
Implementation for an Issue #332
|
2013-01-11 11:17:41 +01:00 |
|
Miroslav Stampar
|
7ea846e111
|
Removing some junk from queries.xml
|
2013-01-10 11:46:51 +01:00 |
|
Miroslav Stampar
|
ebde4b190e
|
Minor update
|
2013-01-10 11:42:37 +01:00 |
|
Miroslav Stampar
|
55a552ddc4
|
Update for an Issue #24
|
2013-01-08 10:55:25 +01:00 |
|
Miroslav Stampar
|
614f4657f1
|
Removing timedelay tags inside queries.xml as we don't use those outside the payloads.xml anymore (Update for an Issue #24)
|
2013-01-08 10:30:01 +01:00 |
|
Bernardo Damele
|
ec7508ec4f
|
test case to reproduce bug introduced at 76839ff
|
2013-01-07 17:39:13 +00:00 |
|
Miroslav Stampar
|
a3f9741d6e
|
Fixed unneeded trimming in --hex for MsSQL
|
2012-12-21 11:40:18 +01:00 |
|
Bernardo Damele
|
a56e384abb
|
updated VM..
|
2012-12-20 13:18:45 +00:00 |
|
Bernardo Damele
|
e39ac0f092
|
added OR boolean-based test case
|
2012-12-20 12:52:26 +00:00 |
|
Bernardo Damele
|
d019f75e63
|
for this test case verbose has to be set to 2 as we parse a DEBUG message
|
2012-12-20 11:48:34 +00:00 |
|
Bernardo Damele
|
190e317992
|
fixed test case and added new one, commented out metasploit integration case as it cannot be handled easily
|
2012-12-20 11:05:11 +00:00 |
|
Miroslav Stampar
|
19e2f3bb76
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2012-12-20 10:43:54 +01:00 |
|