Bernardo Damele
|
1d6e642d41
|
fixed url
|
2013-01-17 21:29:00 +00:00 |
|
Bernardo Damele
|
38eb4eb33e
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-17 21:03:11 +00:00 |
|
Bernardo Damele
|
b6e44ae64e
|
fix for #349 (compatible with all others DBMSes too)
|
2013-01-17 21:03:03 +00:00 |
|
Miroslav Stampar
|
a8e3fd58c5
|
Implementation for an Issue #348
|
2013-01-17 21:49:58 +01:00 |
|
Miroslav Stampar
|
8480ceddcb
|
Minor style update
|
2013-01-17 19:55:56 +01:00 |
|
Miroslav Stampar
|
507f185b69
|
Revert of patch for an Issue #347
|
2013-01-17 18:38:37 +01:00 |
|
Miroslav Stampar
|
9dd69042de
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-17 15:31:55 +01:00 |
|
Miroslav Stampar
|
f7eda07d92
|
Patch for an Issue #347
|
2013-01-17 15:30:14 +01:00 |
|
Bernardo Damele
|
5e059ab6db
|
added check for DB2 lib
|
2013-01-17 14:20:34 +00:00 |
|
Miroslav Stampar
|
a38b3e397c
|
Patch for an Issue #286
|
2013-01-17 14:17:39 +01:00 |
|
Miroslav Stampar
|
65273295e3
|
Implementing a check for an Issue #25
|
2013-01-17 13:56:04 +01:00 |
|
Miroslav Stampar
|
9428d1819e
|
Fix for an Issue #346
|
2013-01-17 12:03:02 +01:00 |
|
Miroslav Stampar
|
3ab4a5e36d
|
Fix for an Issue #345
|
2013-01-17 11:50:12 +01:00 |
|
Miroslav Stampar
|
51a77d1fe2
|
Minor update for an Issue #8
|
2013-01-17 11:37:45 +01:00 |
|
Miroslav Stampar
|
14b7e655a9
|
Minor refactoring
|
2013-01-16 16:33:04 +01:00 |
|
Miroslav Stampar
|
053b7d12b4
|
Minor language update
|
2013-01-16 16:07:12 +01:00 |
|
Miroslav Stampar
|
fb7243c237
|
Cleaning a mess where multi-threaded HTTP requests (in log) had sometimes same UIDs
|
2013-01-16 16:04:00 +01:00 |
|
Miroslav Stampar
|
c0a6e1c3a7
|
Finishing first usable prototype for an Issue #8
|
2013-01-16 14:54:37 +01:00 |
|
Miroslav Stampar
|
ff5ec48abd
|
Minor update for an Issue #8
|
2013-01-16 14:16:22 +01:00 |
|
Bernardo Damele
|
3464a70ac2
|
bug fix: without this generic concatenation of strings in concatQuery(), detection of UNION query SQLi only (--technique U) when the page did not disclose any DBMS error message and it was not MySQL (for which there are UNION SQLi specific payloads) was not detected
|
2013-01-16 01:53:33 +00:00 |
|
Bernardo Damele
|
542f6de72e
|
typo fix
|
2013-01-16 01:31:03 +00:00 |
|
Bernardo Damele
|
e16ad38d3e
|
more work on #342
|
2013-01-15 18:15:07 +00:00 |
|
Bernardo Damele
|
329047fc12
|
restored fix for #210 to keep --hex work with --technique B
|
2013-01-15 17:51:40 +00:00 |
|
Bernardo Damele
|
2a751e075d
|
more work on #342
|
2013-01-15 17:14:44 +00:00 |
|
Bernardo Damele
|
ec076f5f8a
|
write console output to temporary folder in any case the test case fails, even if no traceback is raised
|
2013-01-15 15:51:03 +00:00 |
|
Bernardo Damele
|
4eaa0d17aa
|
Fix in forging query to calculate query output length - closes issue #342
|
2013-01-15 15:50:20 +00:00 |
|
Miroslav Stampar
|
7a1d484115
|
Implementation for an Issue #340
|
2013-01-15 16:05:33 +01:00 |
|
Bernardo Damele
|
3f84cefc77
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-15 14:59:22 +00:00 |
|
Bernardo Damele
|
c51358953a
|
add more Oracle system dbs
|
2013-01-15 14:51:29 +00:00 |
|
Miroslav Stampar
|
04aa39f0c6
|
Minor update
|
2013-01-15 13:51:19 +01:00 |
|
Miroslav Stampar
|
5ee653dd89
|
Merging commit 57bcbb458eade2850a6d7623ecddbe49c69cf334 from @morisson
|
2013-01-15 10:14:02 +01:00 |
|
Miroslav Stampar
|
2cac7e860e
|
Minor refactoring
|
2013-01-14 16:27:50 +01:00 |
|
Miroslav Stampar
|
31302eb707
|
Minor update
|
2013-01-14 16:26:07 +01:00 |
|
Miroslav Stampar
|
2a86c1cadc
|
Another cosmetics
|
2013-01-14 16:24:55 +01:00 |
|
Miroslav Stampar
|
1e1f560d0c
|
Minor cosmetics
|
2013-01-14 16:24:28 +01:00 |
|
Miroslav Stampar
|
0c2474cc22
|
Minor update
|
2013-01-14 16:21:40 +01:00 |
|
Miroslav Stampar
|
a5a309212a
|
Fix for an Issue #339
|
2013-01-14 16:18:03 +01:00 |
|
Bernardo Damele
|
3e2c3851f3
|
Make --live-test Metasploit integration cases work, added more test cases for PostgreSQL and code refactoring (issue #312)
|
2013-01-14 13:42:50 +00:00 |
|
Bernardo Damele
|
515c1c6205
|
removed leftover
|
2013-01-14 10:26:22 +00:00 |
|
Bernardo Damele
|
83000de9e1
|
improved handling and storing of exceptions with --live-test (#312)
|
2013-01-14 10:23:40 +00:00 |
|
Bernardo Damele
|
8125fe90a7
|
code refactoring
|
2013-01-14 10:22:38 +00:00 |
|
Bernardo Damele
|
036b612bcb
|
bug fix to be able to write unicode chars to debug file
|
2013-01-14 01:11:42 +00:00 |
|
Miroslav Stampar
|
fc560f2b75
|
Minor revert and proper fix
|
2013-01-14 00:47:29 +01:00 |
|
Bernardo Damele
|
b74cfbf336
|
minor enhancements for debug purposes (issue #312)
|
2013-01-13 23:15:56 +00:00 |
|
Bernardo Damele
|
fdd6075859
|
temporary patch to fix UNION query enumeration
|
2013-01-13 23:08:23 +00:00 |
|
Miroslav Stampar
|
92ea8841f8
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-13 16:23:09 +01:00 |
|
Miroslav Stampar
|
03dd958d96
|
Implementation for an Issue #48
|
2013-01-13 16:22:43 +01:00 |
|
Miroslav Stampar
|
81848c723d
|
Minor cleanup (we officially support Python >= 2.6)
|
2013-01-11 16:01:48 +01:00 |
|
Bernardo Damele
|
675e4a026b
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-11 13:31:49 +00:00 |
|
Bernardo Damele
|
41834e7a5b
|
working on #8 - still not usable though
|
2013-01-11 13:31:44 +00:00 |
|
Miroslav Stampar
|
bc4d8d3e02
|
Implementation for an Issue #332
|
2013-01-11 11:17:41 +01:00 |
|
Miroslav Stampar
|
5571d09354
|
Minor revert
|
2013-01-11 11:13:55 +01:00 |
|
Miroslav Stampar
|
4b79269608
|
Minor bug fix
|
2013-01-11 11:10:18 +01:00 |
|
Miroslav Stampar
|
ec4e49d771
|
Minor refactoring
|
2013-01-10 16:09:28 +01:00 |
|
Miroslav Stampar
|
1363f26367
|
Minor refactoring
|
2013-01-10 15:59:02 +01:00 |
|
Miroslav Stampar
|
834be1eddc
|
Restyling redundant 'except Exception' form
|
2013-01-10 15:54:28 +01:00 |
|
Miroslav Stampar
|
acfeeb4f51
|
Restyling old form of urlparse
|
2013-01-10 15:41:07 +01:00 |
|
Miroslav Stampar
|
8686c20fa5
|
Removing one obsolete instantiation line
|
2013-01-10 15:27:35 +01:00 |
|
Miroslav Stampar
|
934d41dac2
|
Minor style update (PEP8)
|
2013-01-10 15:02:28 +01:00 |
|
Miroslav Stampar
|
ca3d35a878
|
Some PEP8 related style cleaning
|
2013-01-10 13:18:44 +01:00 |
|
Miroslav Stampar
|
6cfa9cb0b3
|
Removing unused imports
|
2013-01-10 12:15:12 +01:00 |
|
Miroslav Stampar
|
05705857a9
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-10 12:09:48 +01:00 |
|
Miroslav Stampar
|
ca1c0c2a1d
|
Minor style update
|
2013-01-10 11:54:07 +01:00 |
|
Bernardo Damele
|
ca337159f5
|
added reminder TODO
|
2013-01-10 01:11:22 +00:00 |
|
Bernardo Damele
|
8093f3950d
|
properly distinguish stdout from stderr with a separate pipe (tracebacks go to stderr) - issue #297
|
2013-01-10 00:52:44 +00:00 |
|
Bernardo Damele
|
10f1099944
|
remove logging handler that shows logging messages to stdout - issue #297
|
2013-01-10 00:51:56 +00:00 |
|
Bernardo Damele
|
ccc3c3d1a3
|
minor fix to distinguish stdout from stderr
|
2013-01-10 00:51:05 +00:00 |
|
Bernardo Damele
|
ef40779ad3
|
upgraded to use custom subprocessng for non-blocking send and read functions for spawned processes. Added new method to display range of log messages, just in case and improved parsing/unpickling of read log messages
|
2013-01-10 00:01:28 +00:00 |
|
Bernardo Damele
|
2126a5ba12
|
minor index fix
|
2013-01-10 00:00:00 +00:00 |
|
Bernardo Damele
|
9766f6025e
|
logging is now handled in a separate file descriptor :) - issue #297
|
2013-01-09 22:09:50 +00:00 |
|
Bernardo Damele
|
794700eb37
|
preparing to handle logging calls by a separate file descriptor when sqlmap is executed by the REST API - issue #297
|
2013-01-09 22:08:50 +00:00 |
|
Bernardo Damele
|
d120dc18d1
|
cleanup
|
2013-01-09 22:06:27 +00:00 |
|
Bernardo Damele
|
58a60562ac
|
avoid exiting with a traceback for missing dependency, handle properly at some point
|
2013-01-09 16:05:55 +00:00 |
|
Bernardo Damele
|
7f4ce4afbb
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-09 16:04:29 +00:00 |
|
Bernardo Damele
|
510ceb6e19
|
first attempt to have --os-pwn and other takeover switches work across Windows and Linux - issue #28
|
2013-01-09 16:04:23 +00:00 |
|
Miroslav Stampar
|
bf5544903b
|
Minor style update
|
2013-01-09 16:10:26 +01:00 |
|
Miroslav Stampar
|
9bdcb1176d
|
Update for an Issue #169
|
2013-01-09 15:58:13 +01:00 |
|
Miroslav Stampar
|
25f01a419f
|
Minor style update (for the sake of consistency over the code and our PEP8 adaptation)
|
2013-01-09 15:38:41 +01:00 |
|
Miroslav Stampar
|
bdd2592848
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-09 15:22:30 +01:00 |
|
Miroslav Stampar
|
3d4f381ab5
|
Patch for an Issue #169
|
2013-01-09 15:22:21 +01:00 |
|
Bernardo Damele
|
c44a829b9b
|
pass a pickled options object to sqlmap engine when called from API
|
2013-01-09 12:34:45 +00:00 |
|
Bernardo Damele
|
8457cff278
|
added variable to store the live test traceback if any
|
2013-01-09 12:33:18 +00:00 |
|
Bernardo Damele
|
f11747732e
|
added missing command line options
|
2013-01-09 12:30:13 +00:00 |
|
Miroslav Stampar
|
55a552ddc4
|
Update for an Issue #24
|
2013-01-08 10:55:25 +01:00 |
|
Miroslav Stampar
|
ad85c4c964
|
Minor refactoring for an Issue #295
|
2013-01-08 10:23:02 +01:00 |
|
Bernardo Damele
|
c155c6df84
|
minor bug fix for user's provided LIMIT'd statement when technique is full UNION SQLi
|
2013-01-07 23:31:11 +00:00 |
|
Miroslav Stampar
|
3abe87ac89
|
Minor fix with status update (Issue #305)
|
2013-01-07 18:53:08 +01:00 |
|
Miroslav Stampar
|
a8f02916a9
|
Minor fix (Issue #305)
|
2013-01-07 18:39:35 +01:00 |
|
Miroslav Stampar
|
e219fad8bf
|
Added a short comment
|
2013-01-07 18:19:48 +01:00 |
|
Bernardo Damele
|
1e35b3c8c9
|
proper link
|
2013-01-07 16:59:59 +00:00 |
|
Miroslav Stampar
|
96e5d5d178
|
Some more updates for an Issue #295
|
2013-01-07 16:55:41 +01:00 |
|
Miroslav Stampar
|
74552bea87
|
Cleaning some garbage (hard coded paths with linux native slashes)
|
2013-01-07 16:51:00 +01:00 |
|
Miroslav Stampar
|
425df067eb
|
Fix for an --os-pwn with ICMPsh (it was crashing because methods interleaved with Metasploit ones)
|
2013-01-07 16:44:22 +01:00 |
|
Miroslav Stampar
|
ac407ae4a1
|
Implementation for an Issue #295
|
2013-01-07 15:55:40 +01:00 |
|
Miroslav Stampar
|
76839ff9d6
|
Fix for an Issue #305
|
2013-01-07 12:52:55 +01:00 |
|
Bernardo Damele
|
1e1892c962
|
prep for subprocess..
|
2013-01-07 11:10:33 +00:00 |
|
Bernardo Damele
|
7fa75792dd
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2013-01-07 11:10:08 +00:00 |
|
Bernardo Damele
|
a30d7014b9
|
removed unused var
|
2013-01-07 11:05:33 +00:00 |
|
Miroslav Stampar
|
87e923613f
|
Minor adjustment (URI (marked with custom injection char) has precedence over GET/POST)
|
2013-01-05 21:16:47 +01:00 |
|
Miroslav Stampar
|
dc21f3ce67
|
Minor just in case filtering of union results
|
2013-01-04 17:09:07 +01:00 |
|
Miroslav Stampar
|
5b77b20e2e
|
Removing trailing whitespaces (PEP8)
|
2013-01-03 23:57:07 +01:00 |
|
Miroslav Stampar
|
82b468211d
|
Minor update
|
2013-01-03 23:38:29 +01:00 |
|
Miroslav Stampar
|
f340ce8b4b
|
Minor style update
|
2013-01-03 23:35:29 +01:00 |
|
Miroslav Stampar
|
1712603dce
|
Replacing deprecated has_key() with operator in (PEP8)
|
2013-01-03 23:28:07 +01:00 |
|
Miroslav Stampar
|
e4a3c015e5
|
Replacing old and deprecated raise Exception style (PEP8)
|
2013-01-03 23:20:55 +01:00 |
|
Bernardo Damele
|
3a11d36c66
|
minor bug fix
|
2013-01-02 21:49:15 +00:00 |
|
Miroslav Stampar
|
cb15fcc8af
|
Fix for an Issue #329
|
2013-01-02 22:17:06 +01:00 |
|
Miroslav Stampar
|
304e52cb4d
|
Minor language update
|
2013-01-02 22:11:59 +01:00 |
|
Miroslav Stampar
|
09f1cdd8e1
|
Minor style update
|
2013-01-02 21:52:50 +01:00 |
|
Miroslav Stampar
|
0795760255
|
Minor fix
|
2012-12-30 11:22:23 +01:00 |
|
Miroslav Stampar
|
75edb84a71
|
Minor update
|
2012-12-30 11:10:32 +01:00 |
|
Miroslav Stampar
|
58ad2f1c5d
|
Revert of last commit and proper fix
|
2012-12-29 10:35:05 +01:00 |
|
Miroslav Stampar
|
0e18fa9c5f
|
Minor fix
|
2012-12-28 23:43:47 +01:00 |
|
Miroslav Stampar
|
648d91d790
|
Distinguishing invalid unicode from safe encoded characters (for proper potential decoding)
|
2012-12-27 22:43:39 +01:00 |
|
Miroslav Stampar
|
3d01890147
|
Patch for an Issue #56 (full target url is now being written to a output .CSV file in multi target mode)
|
2012-12-27 21:15:44 +01:00 |
|
Miroslav Stampar
|
cb91729913
|
Fix for an Issue #324 (crawling when HTML is not well-formed)
|
2012-12-27 20:55:37 +01:00 |
|
Miroslav Stampar
|
127b880577
|
Minor update
|
2012-12-27 15:14:40 +01:00 |
|
Miroslav Stampar
|
6ae4590edc
|
Removing problematic per-MySQL LIMIT prefix
|
2012-12-26 19:48:01 +01:00 |
|
Miroslav Stampar
|
a77b7f00d9
|
Fix for an Issue #323
|
2012-12-23 19:34:35 +01:00 |
|
Bernardo Damele
|
832567ecf6
|
import order
|
2012-12-21 23:34:37 +00:00 |
|
Miroslav Stampar
|
77625e5af7
|
Minor revert
|
2012-12-21 19:31:05 +01:00 |
|
Miroslav Stampar
|
00e55828e4
|
Minor style update
|
2012-12-21 15:06:03 +01:00 |
|
Miroslav Stampar
|
8b3e17ed4d
|
Minor update (better approach for those old NOT IN cases in MsSQL - instead of standard pivot dump table)
|
2012-12-21 14:52:47 +01:00 |
|
Miroslav Stampar
|
6c1ec9b54f
|
Fix for an Issue #318
|
2012-12-21 11:10:05 +01:00 |
|
Miroslav Stampar
|
35728fa443
|
Fix (and some hidden bug fixes/improvements) regarding an Issue #317
|
2012-12-21 10:51:35 +01:00 |
|
Miroslav Stampar
|
352e516400
|
Bottle is a 3rd party tool (not going to extra folder)
|
2012-12-21 10:18:30 +01:00 |
|
Miroslav Stampar
|
b94a5d42d4
|
Removing a leftover
|
2012-12-21 09:49:09 +01:00 |
|
Miroslav Stampar
|
0a122ccce4
|
Related to an Issue #319
|
2012-12-21 09:47:58 +01:00 |
|
Miroslav Stampar
|
0d5d84edc7
|
Minor cleanup
|
2012-12-20 21:03:41 +01:00 |
|
Miroslav Stampar
|
712cf4e4db
|
Fix for an Issue #316
|
2012-12-20 20:55:59 +01:00 |
|
Miroslav Stampar
|
1073ebc697
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2012-12-20 20:51:41 +01:00 |
|
Bernardo Damele
|
89d8c58fd1
|
poor attempt at forking a child process for sqlmap engine execution, output is not handled yet
|
2012-12-20 17:56:53 +00:00 |
|
Bernardo Damele
|
912323c12d
|
minor bug fix (#297)
|
2012-12-20 17:05:44 +00:00 |
|
Bernardo Damele
|
7adaffa71b
|
fixed options initiation
|
2012-12-20 16:53:43 +00:00 |
|
Miroslav Stampar
|
1c4d438aff
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2012-12-20 16:37:03 +01:00 |
|
Bernardo Damele
|
b0635bddcc
|
adjustments
|
2012-12-20 15:29:23 +00:00 |
|
Miroslav Stampar
|
8efe056671
|
Minor refactoring
|
2012-12-20 15:51:03 +01:00 |
|
Bernardo Damele
|
e9ab33e9dd
|
standalone REST API, code cleanup (#297)
|
2012-12-20 14:35:02 +00:00 |
|
Bernardo Damele
|
5632279bf7
|
removed deprecated feature (#287)
|
2012-12-20 13:21:07 +00:00 |
|
Miroslav Stampar
|
63d9b7a1f8
|
No character shall be left forgotten (no more ? in case that character was not properly being decoded by used charset)
|
2012-12-20 12:23:37 +01:00 |
|
Miroslav Stampar
|
c2c4601d6e
|
Minor restyling
|
2012-12-20 11:06:52 +01:00 |
|
Bernardo Damele
|
076b4063e6
|
these edits got overwritten from last commits
|
2012-12-20 09:42:44 +00:00 |
|
Miroslav Stampar
|
3cbe60b586
|
Proper fix
|
2012-12-20 10:37:20 +01:00 |
|
Miroslav Stampar
|
0d1ea7f05a
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
Conflicts:
lib/core/testing.py
|
2012-12-20 10:37:11 +01:00 |
|
Miroslav Stampar
|
da93e77eb2
|
Proper fix
|
2012-12-20 10:34:51 +01:00 |
|
Bernardo Damele
|
ac77724970
|
attempt to handle standard input from --live-test
|
2012-12-20 09:30:48 +00:00 |
|
Bernardo Damele
|
2b6ee06de0
|
minor bug fix to correctly parse unicode chars
|
2012-12-20 09:30:13 +00:00 |
|
Miroslav Stampar
|
69310e47ce
|
Merge branch 'master' of github.com:sqlmapproject/sqlmap
|
2012-12-20 09:54:39 +01:00 |
|
Miroslav Stampar
|
06d8213ffd
|
minor fix (reading of unicode xml files)
|
2012-12-20 09:53:08 +01:00 |
|
Bernardo Damele
|
86872956d5
|
minor bug fix (for PostgreSQL)
|
2012-12-19 22:55:31 +00:00 |
|