Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							4bea0e343a 
							
						 
					 
					
						
						
							
							Avoiding md5/sha1 deprecated warning in Python >=2.6  
						
						
						
					 
					
						2010-02-23 08:54:33 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9c014c0fd0 
							
						 
					 
					
						
						
							
							minor change  
						
						
						
					 
					
						2010-02-20 23:11:05 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							cef248a5ea 
							
						 
					 
					
						
						
							
							update for that invalid target url Otavio Augusto reported  
						
						
						
					 
					
						2010-02-10 12:06:23 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							00a23ace9a 
							
						 
					 
					
						
						
							
							some changes regarding web takeover  
						
						
						
					 
					
						2010-02-09 14:27:41 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							d291464cd4 
							
						 
					 
					
						
						
							
							code refactoring regarding path normalization  
						
						
						
					 
					
						2010-02-04 14:50:54 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							ec63fc4036 
							
						 
					 
					
						
						
							
							code refactoring - added functions posixToNtSlashes and ntToPosixSlashes  
						
						
						
					 
					
						2010-02-04 14:37:00 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							e4699f389d 
							
						 
					 
					
						
						
							
							some bug fixes regarding --os-shell usage against windows servers  
						
						
						
					 
					
						2010-02-04 09:49:31 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							ea045eaa2f 
							
						 
					 
					
						
						
							
							fixed serious issue with adding file paths into kb.absFilePaths (dirname was wrongly added, and afterwards getDirs used dirname of dirname)  
						
						... 
						
						
						
						also, fixed some issues with Windows paths 
						
					 
					
						2010-02-03 16:40:12 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							494e014a4a 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2010-02-03 16:04:44 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							894b9f0f80 
							
						 
					 
					
						
						
							
							minor minor update  
						
						
						
					 
					
						2010-02-03 15:15:30 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							25f1a9c7d0 
							
						 
					 
					
						
						
							
							upgrade of web directory parsing for things like C:/xampp/htdocs/sqlmap/mysql/get_int.php (XAMPP uses this)  
						
						
						
					 
					
						2010-02-03 15:06:41 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							c74b920f54 
							
						 
					 
					
						
						
							
							bug fix  
						
						
						
					 
					
						2010-02-03 14:49:28 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							92817159dc 
							
						 
					 
					
						
						
							
							cloaked upx for windows (used mkstemp because of execution and file access rights problem)  
						
						
						
					 
					
						2010-01-29 10:12:09 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							6f5d2ed171 
							
						 
					 
					
						
						
							
							Minor cosmetic adjustments  
						
						
						
					 
					
						2010-01-28 17:07:34 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							732ed48e2b 
							
						 
					 
					
						
						
							
							some refactoring regarding decloaking  
						
						
						
					 
					
						2010-01-28 16:50:34 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							dcbbad642d 
							
						 
					 
					
						
						
							
							Minor self fix, switched to rc6  
						
						
						
					 
					
						2010-01-28 10:27:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							645afee359 
							
						 
					 
					
						
						
							
							some changes  
						
						
						
					 
					
						2010-01-28 00:25:36 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							a4d8234875 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2010-01-24 14:23:19 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							98205cc488 
							
						 
					 
					
						
						
							
							another fix for Bug  #148  
						
						
						
					 
					
						2010-01-23 23:29:34 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							97840535c6 
							
						 
					 
					
						
						
							
							fix for situations where proxy is set in environment, but the user tries to test something on localhost  
						
						
						
					 
					
						2010-01-19 13:47:35 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							5c58747740 
							
						 
					 
					
						
						
							
							More tweaking on --update  
						
						
						
					 
					
						2010-01-18 15:20:50 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							051db588a5 
							
						 
					 
					
						
						
							
							Minor tweaking to --update  
						
						
						
					 
					
						2010-01-18 14:59:24 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							44adbc5776 
							
						 
					 
					
						
						
							
							changes regarding Feature  #125  
						
						
						
					 
					
						2010-01-18 14:05:23 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							2825ab5e4e 
							
						 
					 
					
						
						
							
							Major bug fix in url-encoding  
						
						
						
					 
					
						2010-01-16 21:56:40 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							4ce3abc56d 
							
						 
					 
					
						
						
							
							Minor adjustments  
						
						
						
					 
					
						2010-01-15 17:42:46 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							5f171340f5 
							
						 
					 
					
						
						
							
							introduced safe string formatting  
						
						
						
					 
					
						2010-01-15 16:06:59 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							dcf0b2a3c1 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2010-01-15 11:45:48 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							f5c422efb4 
							
						 
					 
					
						
						
							
							updated and renamed sanitizeCookie to urlEncodeCookieValues because of it's different nature than before  
						
						
						
					 
					
						2010-01-15 11:44:05 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							505647b00f 
							
						 
					 
					
						
						
							
							Minor bug fix to --cookie-urlencode  
						
						
						
					 
					
						2010-01-15 11:24:30 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							c4215ce8d2 
							
						 
					 
					
						
						
							
							Minor code refactoring  
						
						
						
					 
					
						2010-01-14 20:42:45 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							26c7b74e65 
							
						 
					 
					
						
						
							
							changes regarding Data (GET/POST/Cookie) encoding (Bug  #129 )  
						
						
						
					 
					
						2010-01-14 18:05:03 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							50bbb0cf8a 
							
						 
					 
					
						
						
							
							Deprecate sqlmap update code, will use pysvn to update from latest development version from subversion repository.  
						
						
						
					 
					
						2010-01-13 14:52:23 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							3434a22872 
							
						 
					 
					
						
						
							
							HTTP header HOST is now mandatory in a HTTP request file  
						
						
						
					 
					
						2010-01-12 14:07:58 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							a193205323 
							
						 
					 
					
						
						
							
							minor update regarding requestFile option  
						
						
						
					 
					
						2010-01-12 14:01:58 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							8817b2884f 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2010-01-12 13:16:30 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							a58b36fe07 
							
						 
					 
					
						
						
							
							code commit regarding Feature  #119  
						
						
						
					 
					
						2010-01-12 13:11:26 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							12f371cd65 
							
						 
					 
					
						
						
							
							Minor bug fix and improvement in displaying of enumerated columns in --dump -C  
						
						
						
					 
					
						2010-01-09 21:37:44 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							dc04fa7f06 
							
						 
					 
					
						
						
							
							Minor layout adjustments  
						
						
						
					 
					
						2010-01-09 21:08:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							d58ba7ee6d 
							
						 
					 
					
						
						
							
							added --scope feature regarding Feature  #105  
						
						
						
					 
					
						2010-01-09 20:44:50 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							f316e722c1 
							
						 
					 
					
						
						
							
							sqlmap 0.8-rc4: --dump option now can also accept only -C: user can provide a string column and sqlmap will enumerate all databases, tables and columns that contain the 'provided_string' or '%provided_string%' then ask the user to dump the entries of only those columns.  
						
						... 
						
						
						
						--columns now accepts also -C option: user can provide a string column and sqlmap will enumerate all columns of a specific table like '%provided_string%'.
Minor enhancements.
Minor bug fixes. 
						
					 
					
						2010-01-09 00:05:00 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							6a62a78b0a 
							
						 
					 
					
						
						
							
							More generic  
						
						
						
					 
					
						2010-01-08 23:50:06 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							067cc07fb9 
							
						 
					 
					
						
						
							
							Make 'field' parameter in limitQuery() method to be option  
						
						
						
					 
					
						2010-01-08 23:23:15 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							d07f60578c 
							
						 
					 
					
						
						
							
							implementation of Feature  #17  
						
						
						
					 
					
						2010-01-07 12:59:09 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							80df1fdcf9 
							
						 
					 
					
						
						
							
							Minor bug fix with --sql-query/shell when providing a statement with DISTINCT  
						
						
						
					 
					
						2010-01-05 16:15:31 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							954a927cee 
							
						 
					 
					
						
						
							
							Minor bug fix to properly execute --time-test also on MySQL >= 5.0.12  
						
						
						
					 
					
						2010-01-05 11:43:16 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							71547a3496 
							
						 
					 
					
						
						
							
							getDocRoot changes  
						
						
						
					 
					
						2010-01-05 11:30:33 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							ce022a3b6e 
							
						 
					 
					
						
						
							
							sqlmap 0.8-rc3: Merge from Miroslav Stampar's branch fixing a bug when verbosity > 2, another major bug with urlencoding/urldecoding of POST data and Cookies, adding --drop-set-cookie option, implementing support to automatically decode gzip and deflate HTTP responses, support for Google dork page result (--gpage) and a minor code cleanup.  
						
						
						
					 
					
						2010-01-02 02:02:12 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							e4e081cdc6 
							
						 
					 
					
						
						
							
							sqlmap 0.8-rc2: minor enhancement based on msfencode 3.3.3-dev -t exe-small so that also PostgreSQL supports again the out-of-band via Metasploit payload stager optionally to shellcode execution in-memory via sys_bineval() UDF. Speed up OOB connect back. Cleanup target file system after --os-pwn too. Minor bug fix to correctly forge file system paths with os.path.join() all around. Minor code refactoring and user's manual update.  
						
						
						
					 
					
						2009-12-17 22:04:01 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							b363f1c5ab 
							
						 
					 
					
						
						
							
							Added support for NTLM authentication  
						
						
						
					 
					
						2009-12-02 22:54:39 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							89c43893d4 
							
						 
					 
					
						
						
							
							Merged back from personal branch to trunk (svn merge -r846:940 ...)  
						
						... 
						
						
						
						Changes:
* Major enhancement to the Microsoft SQL Server stored procedure
heap-based buffer overflow exploit (--os-bof) to automatically bypass
DEP memory protection.
* Added support for MySQL and PostgreSQL to execute Metasploit shellcode
via UDF 'sys_bineval' (in-memory, anti-forensics technique) as an
option instead of uploading the standalone payload stager executable.
* Added options for MySQL, PostgreSQL and Microsoft SQL Server to
read/add/delete Windows registry keys.
* Added options for MySQL and PostgreSQL to inject custom user-defined
functions.
* Added support for --first and --last so the user now has even more
granularity in what to enumerate in the query output.
* Minor enhancement to save the session by default in
'output/hostname/session' file if -s option is not specified.
* Minor improvement to automatically remove sqlmap created temporary
files from the DBMS underlying file system.
* Minor bugs fixed.
* Major code refactoring. 
						
					 
					
						2009-09-25 23:03:45 +00:00