Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							e50d64546f 
							
						 
					 
					
						
						
							
							minor fix  
						
						
						
					 
					
						2012-02-07 14:57:48 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							2b05ded9c3 
							
						 
					 
					
						
						
							
							just a makeup  
						
						
						
					 
					
						2012-02-07 12:05:23 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							95f89ab63a 
							
						 
					 
					
						
						
							
							updating copyright date  
						
						
						
					 
					
						2012-01-11 14:59:46 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							18930539cd 
							
						 
					 
					
						
						
							
							more concise language  
						
						
						
					 
					
						2012-01-07 17:45:45 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9f68e54fff 
							
						 
					 
					
						
						
							
							minor cleanup  
						
						
						
					 
					
						2011-12-22 10:59:28 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							4a1a0773b7 
							
						 
					 
					
						
						
							
							speedup of UNION dumping  
						
						
						
					 
					
						2011-12-22 10:44:14 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							1ae413a206 
							
						 
					 
					
						
						
							
							some refactoring/speedup around UNION technique  
						
						
						
					 
					
						2011-12-22 10:32:21 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							73a500833d 
							
						 
					 
					
						
						
							
							minor bug fix  
						
						
						
					 
					
						2011-12-12 14:38:06 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							65b2b0ad87 
							
						 
					 
					
						
						
							
							adding switch --eval  
						
						
						
					 
					
						2011-11-21 16:41:02 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							440b7efe55 
							
						 
					 
					
						
						
							
							minor optimization  
						
						
						
					 
					
						2011-11-20 20:14:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							34738129c9 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2011-09-25 21:27:58 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							6bbb8139a0 
							
						 
					 
					
						
						
							
							update (smaller memory footprint in postprocessing phase because of safecharencode part)  
						
						
						
					 
					
						2011-07-25 20:40:31 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							2033a28ae7 
							
						 
					 
					
						
						
							
							minor update regarding last commit (cleaner code)  
						
						
						
					 
					
						2011-07-24 20:44:17 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							ec1bc0219c 
							
						 
					 
					
						
						
							
							hello big tables, this is sqlmap, sqlmap this is big tables  
						
						
						
					 
					
						2011-07-24 09:19:33 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							aedcf8c8d7 
							
						 
					 
					
						
						
							
							Changed homepage address  
						
						
						
					 
					
						2011-07-07 20:10:03 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							f8c32cf6b9 
							
						 
					 
					
						
						
							
							Moved folder  
						
						
						
					 
					
						2011-06-18 12:34:41 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9e5856caf8 
							
						 
					 
					
						
						
							
							improvement for recognition of scalar vs multiple-row commands  
						
						
						
					 
					
						2011-05-19 16:45:05 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							9a4ae7d9e2 
							
						 
					 
					
						
						
							
							More code refactoring of Backend class methods used  
						
						
						
					 
					
						2011-04-30 14:54:29 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							930872cf3b 
							
						 
					 
					
						
						
							
							fix  
						
						
						
					 
					
						2011-04-21 14:20:09 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							0387654166 
							
						 
					 
					
						
						
							
							update of copyright string (until year)  
						
						
						
					 
					
						2011-04-15 12:33:18 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							04986be4b9 
							
						 
					 
					
						
						
							
							update regarding safe character output together with a small fix for newlines  
						
						
						
					 
					
						2011-04-14 09:31:45 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							723a7447b2 
							
						 
					 
					
						
						
							
							minor refactoring  
						
						
						
					 
					
						2011-04-10 07:16:19 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							c714ac6421 
							
						 
					 
					
						
						
							
							added support for handling binary data values (no more garbish chars)  
						
						
						
					 
					
						2011-04-09 23:13:16 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							228cc68747 
							
						 
					 
					
						
						
							
							fix for those ugly DEBUG messages in brute mode  
						
						
						
					 
					
						2011-04-08 11:02:21 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							5b21352656 
							
						 
					 
					
						
						
							
							cosmeticados ;)  
						
						
						
					 
					
						2011-04-08 10:39:07 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							60605b6e7c 
							
						 
					 
					
						
						
							
							Major bug fix to make --first and --last apply only to --dump's entries dump phase (in either of the blind SQL injection techs only)  
						
						
						
					 
					
						2011-02-27 12:14:13 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							0c57f2af0f 
							
						 
					 
					
						
						
							
							minor fix  
						
						
						
					 
					
						2011-02-20 12:20:44 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							429ab631fe 
							
						 
					 
					
						
						
							
							Minor refactoring  
						
						
						
					 
					
						2011-02-13 21:25:01 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							1cd483f42f 
							
						 
					 
					
						
						
							
							one more update  
						
						
						
					 
					
						2011-02-12 10:24:09 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							25a3a64327 
							
						 
					 
					
						
						
							
							we need this because of one pesky little bug going around (when union is recognized and the dbmses are fingerprinted, for those who don't have proper unescaping false TRUE is recognized in form of retrieved: %27%2B%28SELECT%20CAST...). tested on all major DBMSes.  
						
						
						
					 
					
						2011-02-12 10:15:42 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							864eade744 
							
						 
					 
					
						
						
							
							Fixed store and resume of brute-forced tables/columns for MSSQL/Sybase  
						
						
						
					 
					
						2011-02-10 11:14:05 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							d9af01d73d 
							
						 
					 
					
						
						
							
							imporant fix for boolean expression which return [None]  
						
						
						
					 
					
						2011-02-09 16:53:22 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							71d1b72e0e 
							
						 
					 
					
						
						
							
							minor adjustment  
						
						
						
					 
					
						2011-02-07 12:51:38 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							0800d9e49b 
							
						 
					 
					
						
						
							
							Major bug fix for semi-centralize unescape() and cleanupPayload() into prefixQuery() and suffixQuery()  
						
						
						
					 
					
						2011-02-06 22:58:12 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							a37f5e05b9 
							
						 
					 
					
						
						
							
							Refactoring  
						
						
						
					 
					
						2011-02-01 22:27:36 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							9b342a4c95 
							
						 
					 
					
						
						
							
							Bug fixes and proper packing/unpacking of custom statements and predefined queries for both error-based and UNION query techniques.  
						
						... 
						
						
						
						Now it deals in UNION query also with --start and --stop and resume has been enhanced for both techniques too. 
						
					 
					
						2011-02-01 22:07:42 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							2fd9621499 
							
						 
					 
					
						
						
							
							Minor adjustments  
						
						... 
						
						
						
						Cosmetics 
						
					 
					
						2011-01-31 21:22:39 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							367d0639f0 
							
						 
					 
					
						
						
							
							refactoring (class names should always be Capital cased)  
						
						
						
					 
					
						2011-01-28 16:36:09 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							bade0e3124 
							
						 
					 
					
						
						
							
							Major code refactoring - centralized all kb.dbms* info for both retrieval and set.  
						
						
						
					 
					
						2011-01-19 23:06:15 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							daebb0010b 
							
						 
					 
					
						
						
							
							Major bug fix to properly process custom queries (--sql-query/--sql-shell) when technique in use is error-based.  
						
						... 
						
						
						
						Alignment of SQL statement payload packing/unpacking between all of the techniques.
Minor bug fix to use the proper charset (2, numbers) when dealing with COUNT() in custom queries too.
Minor code cleanup. 
						
					 
					
						2011-01-18 23:02:11 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							3822b494ea 
							
						 
					 
					
						
						
							
							Major bug fix to properly deal with EXISTS() when forging query or retrieving the query columns.  
						
						
						
					 
					
						2011-01-17 23:43:37 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							30d6791968 
							
						 
					 
					
						
						
							
							update regarding time based data retrieval  
						
						
						
					 
					
						2011-01-16 17:52:42 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							6e4b65a822 
							
						 
					 
					
						
						
							
							Minor refactoring  
						
						
						
					 
					
						2011-01-15 23:28:31 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							2ac8debea0 
							
						 
					 
					
						
						
							
							Major code refactoring - moved to one location only (getIdentifiedDBMS() in common.py) the retrieval of identified/fingerprinted DBMS.  
						
						... 
						
						
						
						Minor bug fixes thanks to previous refactoring too. 
						
					 
					
						2011-01-13 17:36:54 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							af9725214a 
							
						 
					 
					
						
						
							
							Properly deal with partial (single entry) UNION injections.  
						
						... 
						
						
						
						Got rid of kb.union*, now it's all stored/used from kb.injection.
Minor bug fix with where=2 detection phase. 
						
					 
					
						2011-01-12 12:01:32 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							300128042c 
							
						 
					 
					
						
						
							
							First big commit to move UNION query tests to detection phase - there are some improvements and tuning to do yet though.  
						
						... 
						
						
						
						Major refactoring to Agent.payload() method.
Minor bug fixes, some code refactoring and a lot of core adjustments here and there.
Added more checks for injection in GROUP BY and ORDER BY. 
						
					 
					
						2011-01-11 22:18:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							b313a20a3f 
							
						 
					 
					
						
						
							
							some fixes  
						
						
						
					 
					
						2011-01-07 16:39:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							281d124fa6 
							
						 
					 
					
						
						
							
							minor bug fix  
						
						
						
					 
					
						2010-12-31 12:04:39 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9fb0e0fc85 
							
						 
					 
					
						
						
							
							resume of brute forced data is now available  
						
						
						
					 
					
						2010-12-27 14:17:20 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							cd337d9f39 
							
						 
					 
					
						
						
							
							minor fix  
						
						
						
					 
					
						2010-12-26 09:46:09 +00:00