Bernardo Damele
|
702ed73a65
|
Added --code switch to match in boolean-based tests against the HTTP response code
|
2011-08-12 16:48:11 +00:00 |
|
Bernardo Damele
|
e34787db99
|
update
|
2011-08-12 16:06:41 +00:00 |
|
Bernardo Damele
|
fff4c34e33
|
Search for --string and --regexp matches also in HTTP response headers
|
2011-08-12 15:33:37 +00:00 |
|
Bernardo Damele
|
6d22d09a61
|
doc updated
|
2011-08-12 15:03:39 +00:00 |
|
Bernardo Damele
|
5e5133b8e7
|
Should be fixed now
|
2011-08-12 15:00:11 +00:00 |
|
Bernardo Damele
|
1505cb2a80
|
typo
|
2011-08-12 14:51:39 +00:00 |
|
Bernardo Damele
|
702ca22d54
|
Minor bug fix for URI injections
|
2011-08-12 14:48:44 +00:00 |
|
Bernardo Damele
|
28bba9f5e6
|
More verbose warning message
|
2011-08-12 13:47:38 +00:00 |
|
Miroslav Stampar
|
10bdd90e60
|
minor speed optimizations (as a result of profiling)
|
2011-08-12 13:40:37 +00:00 |
|
Bernardo Damele
|
36280b33fa
|
Ask the user wheather or not to adjust the time delay - there have been a case where the forcing of conf.timeSec screwed the result in an extremely lagged and unreliable site
|
2011-08-12 13:06:40 +00:00 |
|
Bernardo Damele
|
997c9ba1e8
|
Minor adjustments to user's manual
|
2011-08-12 12:56:55 +00:00 |
|
Miroslav Stampar
|
41ae9bc7ff
|
minor bug fix
|
2011-08-09 14:20:25 +00:00 |
|
Miroslav Stampar
|
2ad267132a
|
minor update for empty normal responses (like AJAX requests)
|
2011-08-05 10:55:21 +00:00 |
|
Miroslav Stampar
|
e849b71027
|
minor typo
|
2011-08-03 14:31:42 +00:00 |
|
Miroslav Stampar
|
538b49bcc5
|
removing word "dramatically". i was too excited at the moment :). it is cool and all but we shouldn't put "highly subjective" attribs in reports
|
2011-08-03 13:26:38 +00:00 |
|
Miroslav Stampar
|
f7562da754
|
from now on proper union column count should be displayed in injection info output
|
2011-08-03 10:34:50 +00:00 |
|
Miroslav Stampar
|
13eb20cea1
|
minor beautification
|
2011-08-03 10:12:06 +00:00 |
|
Bernardo Damele
|
2e20eb1a88
|
Minor fix
|
2011-08-03 10:08:59 +00:00 |
|
Miroslav Stampar
|
a3a649ed03
|
minor update
|
2011-08-03 09:11:50 +00:00 |
|
Miroslav Stampar
|
9423d15fb3
|
ORDER BY technique used for finding proper UNION col count (dramatical improvement of speed and capabilities) and one minor bug fix
|
2011-08-03 09:08:16 +00:00 |
|
Miroslav Stampar
|
07afcd5440
|
fix for a bug reported by Ahmed Shawky (when user uses --suffix intermixing test default comments with the provided suffix is a big no no)
|
2011-08-02 18:20:21 +00:00 |
|
Miroslav Stampar
|
07c3d4fb18
|
minor adjustment
|
2011-08-02 17:35:43 +00:00 |
|
Miroslav Stampar
|
edab7d01a5
|
minor fix
|
2011-08-02 17:31:13 +00:00 |
|
Bernardo Damele
|
c15439ab7f
|
Minor improvement to --passwords output
|
2011-08-02 09:04:34 +00:00 |
|
Miroslav Stampar
|
cb0981d858
|
proper way of handling 0 length results (as in __goInferenceProxy)
|
2011-08-02 08:39:32 +00:00 |
|
Miroslav Stampar
|
0643ced651
|
minor update
|
2011-08-02 08:12:43 +00:00 |
|
Miroslav Stampar
|
457f501bbd
|
proper fix
|
2011-08-01 23:48:38 +00:00 |
|
Bernardo Damele
|
ad4584da70
|
Minor bug fix when dumping tables with UNION query technique on Access, Firebird and MaxDB
|
2011-08-01 23:44:14 +00:00 |
|
Miroslav Stampar
|
4ca81dd345
|
quick fix
|
2011-08-01 23:25:58 +00:00 |
|
Bernardo Damele
|
cbd0ea0866
|
Possible fix for a minor bug
|
2011-08-01 23:24:39 +00:00 |
|
Miroslav Stampar
|
b9438c3e14
|
doc/THANKS update
|
2011-08-01 10:18:00 +00:00 |
|
Miroslav Stampar
|
e0fda9f985
|
minor fix
|
2011-08-01 10:13:25 +00:00 |
|
Miroslav Stampar
|
79b4e26e23
|
bug fix
|
2011-08-01 00:17:26 +00:00 |
|
Miroslav Stampar
|
018d7ed646
|
improvement for limited queries (more stable to have TOP/LIMIT/OFFSET mechanisms as part of a subquery)
|
2011-07-31 23:40:09 +00:00 |
|
Miroslav Stampar
|
0627bb02cb
|
minor beautification
|
2011-07-31 10:21:47 +00:00 |
|
Miroslav Stampar
|
93ae1dfa2b
|
minor bug fix
|
2011-07-31 08:52:48 +00:00 |
|
Miroslav Stampar
|
1f06d7d7de
|
update of THANKS file
|
2011-07-30 21:51:37 +00:00 |
|
Miroslav Stampar
|
4d923ec375
|
change in invalid logic regarding --sql-shell (retrieving output for non-query commands did nothing at all)
|
2011-07-30 21:46:59 +00:00 |
|
Miroslav Stampar
|
a6ade08c28
|
just in case commit to prevent join string iteration over 'None' values
|
2011-07-30 13:01:37 +00:00 |
|
Miroslav Stampar
|
68ae8ea5b2
|
minor refactoring
|
2011-07-29 10:54:25 +00:00 |
|
Miroslav Stampar
|
e522263640
|
fix for a neverending data retrieval in large full inband cases
|
2011-07-29 10:45:09 +00:00 |
|
Miroslav Stampar
|
4ce93221d1
|
minor update
|
2011-07-28 09:24:37 +00:00 |
|
Miroslav Stampar
|
684ddc43e6
|
minor patch
|
2011-07-28 08:53:09 +00:00 |
|
Miroslav Stampar
|
3fc603843e
|
minor fix
|
2011-07-27 23:26:36 +00:00 |
|
Miroslav Stampar
|
107089c00b
|
bug fix
|
2011-07-27 08:25:51 +00:00 |
|
Miroslav Stampar
|
f7eaffcec5
|
i believe that this could be ok
|
2011-07-26 21:28:48 +00:00 |
|
Bernardo Damele
|
37de709df2
|
leftover
|
2011-07-26 11:20:07 +00:00 |
|
Bernardo Damele
|
a2483b3bc4
|
Aligned OS takeover functionalities to recent Metasploit improvements
|
2011-07-26 10:29:14 +00:00 |
|
Bernardo Damele
|
ea00c94648
|
Minor bug fix
|
2011-07-26 10:10:05 +00:00 |
|
Bernardo Damele
|
938716e361
|
Proper fix for --start and --stop consistency amongst different techniques
|
2011-07-26 10:06:28 +00:00 |
|