Miroslav Stampar
2aaa486f7a
Minor code style update
2016-07-13 14:09:33 +02:00
Miroslav Stampar
47ba7d4705
Minor update
2016-07-07 10:37:00 +02:00
Miroslav Stampar
2e42afea6f
Update of sucury WAF script
2016-07-06 23:43:21 +02:00
Miroslav Stampar
292a28131d
Minor updates
2016-07-06 23:43:10 +02:00
Miroslav Stampar
2e775fbb75
(e.g.) ASPx MsSQL Chinese exception messages don't start with 'Exception: string'
2016-07-06 14:06:18 +02:00
Miroslav Stampar
e1d7641b8a
Good for different generic OleDB-alike connectors
2016-07-06 13:48:35 +02:00
Miroslav Stampar
6b0951d1ee
Switching default Tor type to SOCKS5 (various bundles are discontinued)
2016-07-06 13:30:46 +02:00
Miroslav Stampar
db1fc621b5
Update for SonicWALL WAF script; lesser false positives with ModSecurity WAF script
2016-07-06 13:19:51 +02:00
Miroslav Stampar
9351756c36
Minor update of format exception strings
2016-07-05 16:02:34 +02:00
Miroslav Stampar
63b645c64c
Removing a debugging leftover
2016-07-05 09:32:30 +02:00
Miroslav Stampar
7ad49f4185
Less problematic regexes for MsSQL errors
2016-07-05 09:32:08 +02:00
Miroslav Stampar
d9315830f9
Less problematic regex for MsSQL errors
2016-07-05 09:20:04 +02:00
Miroslav Stampar
2e2c62b6a7
More error regexes
2016-07-04 17:24:17 +02:00
Miroslav Stampar
53289b0234
Some more Informix error regexes
2016-07-04 10:03:36 +02:00
Miroslav Stampar
dd082ef79d
Minor update (new error regex for Informix)
2016-07-04 09:49:18 +02:00
Miroslav Stampar
2c968f9a35
Closes #2007
2016-07-04 09:12:30 +02:00
Miroslav Stampar
74d0315fef
Update related to the last commit
2016-07-03 02:14:23 +02:00
Miroslav Stampar
ae98159130
Automatic monthly tagging
2016-07-03 02:03:30 +02:00
Miroslav Stampar
3a9e36c52b
Reintroducing stacked queries removed in 79d08906a4
(good for WAF bypass)
2016-07-03 02:03:30 +02:00
Miroslav Stampar
cb43c03712
Definite patch for MemoryError(s) ( fixes #1991 )
2016-06-30 14:57:56 +02:00
Miroslav Stampar
65a0f15f69
Minor update (error regex for PHP's sqlsrv module)
2016-06-28 15:13:37 +02:00
Miroslav Stampar
98b77d32cc
Minor update
2016-06-27 11:16:41 +02:00
Miroslav Stampar
86a3569ccb
New WAF script (SonicWALL)
2016-06-26 16:42:05 +02:00
Miroslav Stampar
17fca351d3
Minor update
2016-06-26 16:26:13 +02:00
Miroslav Stampar
2614e7bec1
Minor update
2016-06-26 16:23:39 +02:00
Miroslav Stampar
832c6e806f
Revert of last commit
2016-06-26 15:59:35 +02:00
Miroslav Stampar
7b334b0808
'Conversion failed' happens in regular SQLi on MsSQL
2016-06-26 15:57:11 +02:00
Miroslav Stampar
aa9151785e
Minor update
2016-06-26 15:37:30 +02:00
Miroslav Stampar
6bdef1b7da
Minor update
2016-06-26 01:46:49 +02:00
Miroslav Stampar
8b4367d354
Revert of last commit
2016-06-26 01:42:21 +02:00
Miroslav Stampar
0a9d69a7d0
Minor patch
2016-06-26 01:10:47 +02:00
Miroslav Stampar
a4b60dc00f
New error regex for MsSQL
2016-06-26 00:40:54 +02:00
Miroslav Stampar
f91ae32284
Minor update (to not confuse S3 vs Cloudfront)
2016-06-24 13:39:13 +02:00
Miroslav Stampar
53fc9d6720
Fixes #1990
2016-06-24 13:31:19 +02:00
Miroslav Stampar
0b31568306
Minor update
2016-06-24 13:28:08 +02:00
Miroslav Stampar
e9407cf791
Cleaning some garbage boundaries (it doesn't make any sense to use %00 as prefix)
2016-06-23 22:57:59 +02:00
Miroslav Stampar
0175acd028
Bug fix (in some cases lack of warning message for SQLi appearing)
2016-06-23 17:52:37 +02:00
Miroslav Stampar
733a32de32
Minor patch
2016-06-23 12:09:51 +02:00
Miroslav Stampar
1b863ecf93
Far better detection of SecureIIS (WAF)
2016-06-23 12:03:05 +02:00
Miroslav Stampar
ec06037335
Update of bigip waf script
2016-06-23 11:41:49 +02:00
Miroslav Stampar
0cdb62a1b5
Adding new waf script (armor)
2016-06-23 11:15:31 +02:00
Miroslav Stampar
99454198b8
Minor refactoring
2016-06-20 10:01:57 +02:00
Miroslav Stampar
dd6287ace8
Fixes #1972
2016-06-20 09:59:50 +02:00
Miroslav Stampar
786460e3b4
Minor just in case patch
2016-06-19 17:44:47 +02:00
Miroslav Stampar
419cf979f1
Showing again the 'shutting down at ...' message
2016-06-19 17:17:01 +02:00
Miroslav Stampar
30be875304
Patch for an Issue #1968
2016-06-18 01:21:57 +02:00
Miroslav Stampar
7d011bc811
Fixes #1964
2016-06-17 17:07:44 +02:00
Miroslav Stampar
b2c4a3b247
Fixes #1960
2016-06-17 16:54:23 +02:00
Miroslav Stampar
9d9592a69b
Fixes #1963
2016-06-17 16:51:23 +02:00
Miroslav Stampar
cb42294a7e
Minor message update
2016-06-15 07:57:10 +02:00
Miroslav Stampar
146762c109
Minor update
2016-06-15 07:54:47 +02:00
Miroslav Stampar
494b9d1586
Fixes #1943
2016-06-13 15:30:38 +02:00
Miroslav Stampar
2e95fdb52d
Fixes #1947
2016-06-13 14:50:44 +02:00
Miroslav Stampar
46736cac7b
Fixes #1931
2016-06-10 18:41:41 +02:00
Miroslav Stampar
041213f22d
Fixes #1935
2016-06-10 18:18:48 +02:00
Miroslav Stampar
8ca45c5678
Fixes #1936
2016-06-10 18:02:24 +02:00
Miroslav Stampar
c6eec8db97
Fixes #1938
2016-06-10 17:52:22 +02:00
Miroslav Stampar
98fdc493f4
Proper patch for #1923 ( Fixes #1940 , #1941 )
2016-06-10 17:42:11 +02:00
Miroslav Stampar
91372bff87
Fixes #1932
2016-06-08 08:20:54 +02:00
Miroslav Stampar
7fb9db42a7
Performing a backup of old dump file (Issue #841 )
2016-06-05 12:37:19 +02:00
Miroslav Stampar
82382957f9
Minor refactoring
2016-06-05 12:25:42 +02:00
Miroslav Stampar
f034122bd0
Fixes #1920
2016-06-05 12:14:01 +02:00
Miroslav Stampar
0df2456f34
Fixes #1923
2016-06-03 16:06:29 +02:00
Miroslav Stampar
78fdb27a0b
More improvements
2016-06-03 15:51:52 +02:00
Miroslav Stampar
350baf0a0a
Minor update
2016-06-03 14:29:32 +02:00
Miroslav Stampar
9886b646eb
Proper update regarding the last commit
2016-06-03 14:18:28 +02:00
Miroslav Stampar
c5197b99a0
Minor patch and minor improvement
2016-06-03 13:59:32 +02:00
Miroslav Stampar
cc313280af
Payload that never ever worked (now fixed)
2016-06-03 13:16:00 +02:00
Miroslav Stampar
f06ff42c58
This never worked. Not sure who incorporated it (WAITFOR DELAY can't go to SELECT/CASE)
2016-06-03 10:42:57 +02:00
Miroslav Stampar
4bc1cf4518
Vastly better patch for MsSQL payloads
2016-06-03 10:29:04 +02:00
Miroslav Stampar
0e65043c84
Minor adjustment
2016-06-03 09:48:49 +02:00
Miroslav Stampar
d7d565415a
Patch for MySQL fingerprinting
2016-06-03 02:31:31 +02:00
Miroslav Stampar
0986ec8948
Update for Oracle fingerprinting
2016-06-03 02:27:59 +02:00
Miroslav Stampar
50bced511f
Adding support for fingerprinting MsSQL 2014 and 2016
2016-06-03 02:24:19 +02:00
Miroslav Stampar
e275e8c0b0
Fixes #1921
2016-06-03 02:02:11 +02:00
Miroslav Stampar
77dea38ac1
Fixes #1918
2016-06-03 00:37:18 +02:00
Miroslav Stampar
7dc2ec5fd8
Minor touch
2016-06-01 20:42:09 +02:00
Miroslav Stampar
4bf2e3b139
Minor update
2016-06-01 20:37:05 +02:00
Miroslav Stampar
8114c14755
Removing leftover
2016-06-01 16:32:22 +02:00
Miroslav Stampar
ec8cf6aadc
Adding support for detecting CAPTCHA
2016-06-01 15:48:04 +02:00
Miroslav Stampar
d326965966
Reordering MySQL's error-based payloads (BIGINT and EXP have crazy bigger chunk lenghts)
2016-06-01 14:12:22 +02:00
Miroslav Stampar
030df0353d
Removing ugly legacy code (e.g. showing MySQL 5.0 when it is e.g. '5.7.8')
2016-06-01 13:47:20 +02:00
Miroslav Stampar
5038d7a70a
Removing ugly boolean check results (0 or 1) in output of UNION and ERROR SQLi
2016-06-01 13:39:40 +02:00
Miroslav Stampar
f0b8fbb7fd
Implemented support for JSON_KEYS error-based SQLi (and tons of fixes for MySQL 'ORDER BY,GROUP BY' payloads)
2016-06-01 13:23:41 +02:00
Miroslav Stampar
5810c2b199
Minor patch
2016-06-01 11:30:27 +02:00
Miroslav Stampar
77f0b5dfa8
Fixes #1919
2016-06-01 10:56:42 +02:00
Miroslav Stampar
b0ea74dc63
Minor warning message update
2016-06-01 10:53:32 +02:00
Miroslav Stampar
0c07c8942c
Automatic monthly tagging
2016-06-01 10:44:08 +02:00
Miroslav Stampar
7d1bdb35ca
Update of parsed versions
2016-06-01 10:44:08 +02:00
Miroslav Stampar
e823889819
Update for JSP exceptions
2016-05-31 15:35:10 +02:00
Miroslav Stampar
680aedaefc
Adding option --tmp-dir
2016-05-31 14:55:56 +02:00
Miroslav Stampar
afdca09ced
Minor patches (proper user warnings in case of output directory permissions)
2016-05-31 14:05:35 +02:00
Miroslav Stampar
ac89ee71c3
Minor improvement
2016-05-31 13:29:43 +02:00
Miroslav Stampar
af7c8cff92
Bug fix (previously removing temporary directory even if it is needed afterwards)
2016-05-31 13:21:08 +02:00
Miroslav Stampar
26d4dec5fb
Minor refactoring
2016-05-31 13:02:26 +02:00
Miroslav Stampar
cf31d12528
Adding support for python's cgitb tracebacks
2016-05-31 12:33:56 +02:00
Miroslav Stampar
b4c730f8c0
Minor refactoring
2016-05-31 12:23:59 +02:00
Miroslav Stampar
fba1720b31
Minor patch
2016-05-31 11:16:13 +02:00
Miroslav Stampar
9fad72f28b
Adding support for MsAccess usage of parsed FROM table names (e.g. in case of ColdFusion)
2016-05-31 11:08:23 +02:00
Miroslav Stampar
1782bf8e64
Adding support for parsing ODBC/JDBC error messages
2016-05-31 10:49:34 +02:00
Miroslav Stampar
2d59a10515
Better patch than last commit
2016-05-31 10:25:01 +02:00
Miroslav Stampar
21a25c4f00
Bug for fix comments in case of MsAccess
2016-05-31 10:24:13 +02:00
Miroslav Stampar
6b5c16c22c
Minor update for ColdFusion error messages
2016-05-31 09:54:14 +02:00
Miroslav Stampar
2c6621c26a
Minor upgrade for WAF/IDS/IPS detection
2016-05-31 09:49:50 +02:00
Miroslav Stampar
f0500b1d2f
Minor update for ColdFusion path regexes
2016-05-31 09:35:58 +02:00
Miroslav Stampar
6a033bb58c
Minor update for ColdFusion type casting
2016-05-31 09:31:32 +02:00
Miroslav Stampar
2fa4b22645
Patch for URL encoding cookie values (asking the user to choose)
2016-05-30 17:47:08 +02:00
Miroslav Stampar
229d3a7dd0
Patch for cases when error page looks more like original, than the False one does
2016-05-30 16:46:23 +02:00
Miroslav Stampar
b965e5bf1c
Minor refactoring
2016-05-30 16:06:39 +02:00
Miroslav Stampar
3bd74c5351
Minor patch
2016-05-30 15:20:21 +02:00
Miroslav Stampar
55624ec1a2
Minor message update
2016-05-30 14:40:22 +02:00
Miroslav Stampar
6885afe8c3
Minor update for requestvalidationmode.py waf script
2016-05-30 14:26:55 +02:00
Miroslav Stampar
acc1277246
Minor update
2016-05-30 14:13:57 +02:00
Miroslav Stampar
935cb9c8cb
Patch for a custom header cookie urlencoding
2016-05-30 14:09:53 +02:00
Miroslav Stampar
17a4ddad63
Fixes #1916
2016-05-30 13:10:25 +02:00
Miroslav Stampar
5264671f5b
Dump formatting patch for MsAccess
2016-05-30 12:03:33 +02:00
Miroslav Stampar
b4ebbae354
New payload(s)
2016-05-30 11:25:24 +02:00
Miroslav Stampar
510197c39e
Minor text update
2016-05-30 10:52:30 +02:00
Miroslav Stampar
b6a4bd91fe
Minor text update
2016-05-30 10:51:35 +02:00
Miroslav Stampar
83b82a5e98
Bug fix (wrong handler used in case of DBMS resolution)
2016-05-30 10:32:49 +02:00
Miroslav Stampar
0b1efc0759
Minor update (for newer versions of MsSQL)
2016-05-30 01:38:34 +02:00
Miroslav Stampar
2b506d744d
Minor update
2016-05-30 01:29:40 +02:00
Miroslav Stampar
79d08906a4
Cleaning some redundant payload(s)
2016-05-27 23:59:48 +02:00
Miroslav Stampar
6327063bd0
Minor patch
2016-05-27 16:43:01 +02:00
Miroslav Stampar
69fd900108
Adding waf script for detection of generic/unknown
2016-05-27 16:34:41 +02:00
Miroslav Stampar
f9d01f682b
Cloudflare has tons of HTTP error codes while detecting SQLi
2016-05-27 15:58:16 +02:00
Miroslav Stampar
d7d3db415b
Minor update
2016-05-27 15:32:30 +02:00
Miroslav Stampar
31850e4544
Minor bug fixes
2016-05-27 13:58:18 +02:00
Miroslav Stampar
de9f23939f
Major bug fix in WAF/IDS/IPS detection (question 'do you want..to try to detect backend WAF/IPS/IDS' never worked)
2016-05-27 13:41:03 +02:00
Miroslav Stampar
154ed2c4e2
Minor patch
2016-05-27 13:33:14 +02:00
Miroslav Stampar
89dfe4e1ac
Adding wallarm WAF script (and couple of other WAF script updates)
2016-05-27 11:58:18 +02:00
Miroslav Stampar
b41b07ddd8
Updates for 360 and jiasule WAF scripts
2016-05-27 11:02:05 +02:00
Miroslav Stampar
e36fc02282
Adding sophos WAF script
2016-05-27 10:17:42 +02:00
Miroslav Stampar
49b41c1eca
Minor update for cloudflare waf script
2016-05-27 09:43:54 +02:00
Miroslav Stampar
4cd9fdb7df
Minor update for F5 waf script
2016-05-27 09:27:45 +02:00
Miroslav Stampar
5aab2d8fb5
Update for Akamai Kona WAF script
2016-05-27 09:22:39 +02:00
Miroslav Stampar
210b65c02d
Couple of fixes for --identify-waf
2016-05-27 02:24:59 +02:00
Miroslav Stampar
7a2ac23f0b
Adding new waf script (sitelock)
2016-05-27 02:13:01 +02:00
Miroslav Stampar
e435fb2e9e
Adding new waf script (comodo)
2016-05-27 01:23:20 +02:00
Miroslav Stampar
6892c94595
Minor update
2016-05-27 01:10:37 +02:00
Miroslav Stampar
831c960216
Update for an Issue #1899
2016-05-26 16:47:38 +02:00
Miroslav Stampar
43af2a4aee
Fixes #1899
2016-05-26 16:08:59 +02:00
Miroslav Stampar
1de6996c26
Fixes #1893
2016-05-25 15:43:39 +02:00
Miroslav Stampar
304f2ed308
Minor language patch
2016-05-25 15:32:17 +02:00
Miroslav Stampar
148b35da4f
Better extraction of absolute file paths
2016-05-25 15:29:25 +02:00
Miroslav Stampar
3865b3a398
Minor improvement in case of technique E (when waiting for large entry - lots of chunks)
2016-05-25 12:50:53 +02:00
Miroslav Stampar
d6bcbbae1d
Minor patch for E technique to be more compatible with output of U technique
2016-05-25 12:42:15 +02:00
Miroslav Stampar
04b3aefc5d
Patch for special character output in U and E techniques
2016-05-25 12:24:36 +02:00
Miroslav Stampar
a5f8cae599
Fixes #1892
2016-05-24 17:58:35 +02:00
Miroslav Stampar
29c3037512
Better asciinema recording (shorter width)
2016-05-24 17:26:10 +02:00
Miroslav Stampar
d0d7d3a205
Update of location of a sample run
2016-05-24 17:12:44 +02:00
Miroslav Stampar
7ce36ea1b6
Removal of unused imports
2016-05-24 16:40:44 +02:00
Miroslav Stampar
6f97f4796b
Fixes #1891
2016-05-24 16:34:07 +02:00
Miroslav Stampar
39fe96009f
Minor improvement (related to the last commit)
2016-05-24 16:20:39 +02:00
Miroslav Stampar
b475a38895
Better ORDER BY detection
2016-05-24 15:46:06 +02:00
Miroslav Stampar
42de887b05
Language update
2016-05-24 15:18:19 +02:00
Miroslav Stampar
28576bf08e
Minor output update
2016-05-24 15:08:04 +02:00
Miroslav Stampar
c395958dff
Fixes #1888
2016-05-24 14:55:19 +02:00
Miroslav Stampar
798b539eec
Minor update
2016-05-24 14:50:56 +02:00
Miroslav Stampar
70cf8edc75
Fixes #1887
2016-05-24 14:17:00 +02:00
Miroslav Stampar
a81ea88eb0
Fixes #1889
2016-05-24 13:59:34 +02:00
Miroslav Stampar
023dda26fc
Minor update for --os-shell directories
2016-05-24 12:53:21 +02:00
Miroslav Stampar
3e76895155
Minor update
2016-05-24 12:30:01 +02:00
Miroslav Stampar
2c1bd7f034
Update for an Issue #1531 (MySQL quirk with international letters)
2016-05-24 12:01:02 +02:00
Miroslav Stampar
f7cae68378
More formal language
2016-05-22 21:44:17 +02:00
Miroslav Stampar
f6ff1a115a
Better (automatic) picking of a --string candidate (especially in case of international pages)
2016-05-22 21:29:08 +02:00
Miroslav Stampar
32ee586e2a
Minor language update
2016-05-22 14:30:32 +02:00
Miroslav Stampar
b9e5655e3c
Proper naming
2016-05-22 14:26:36 +02:00
Miroslav Stampar
6623c3f877
Pesky bug fix (nobody noticed :)
2016-05-22 14:22:31 +02:00
Miroslav Stampar
30a4173249
I like users which don't know the difference between detection and identification
2016-05-22 12:40:23 +02:00
Miroslav Stampar
dbbe4c6ddd
Fixes #1884
2016-05-22 11:44:21 +02:00
Miroslav Stampar
633e4dfe48
Fixes #1886
2016-05-22 11:37:27 +02:00
Miroslav Stampar
5e8b105677
Fixes #1880
2016-05-19 19:46:12 +02:00
Miroslav Stampar
414dd96bbd
Minor update (warning on negative integer values provided)
2016-05-19 18:04:25 +02:00
Miroslav Stampar
e857c2a88a
Update for an Issue #1879
2016-05-19 13:50:31 +02:00
Miroslav Stampar
e7aaea2b8e
Update for an Issue #1826
2016-05-17 14:10:49 +02:00
Miroslav Stampar
63d7cd607e
Minor patch (for late threading issues)
2016-05-17 13:54:42 +02:00
Miroslav Stampar
d886b08dd9
Update for an Issue #1826
2016-05-17 13:45:03 +02:00
Miroslav Stampar
72f3185ae7
Fixes #1878
2016-05-17 10:47:17 +02:00
Miroslav Stampar
03be9f9b65
Minor removal of blank lines
2016-05-17 10:43:16 +02:00
Miroslav Stampar
d9d0865c13
Another patch for an Issue #1874
2016-05-16 17:09:05 +02:00
Miroslav Stampar
e3f54bc226
Minor patch for #1874
2016-05-16 16:53:28 +02:00
Miroslav Stampar
9662f4a56a
Minor update
2016-05-16 16:47:29 +02:00
Miroslav Stampar
fea5cc8579
Minor patch
2016-05-16 15:37:49 +02:00
Miroslav Stampar
94091cd0e9
Fixes #1871
2016-05-15 09:37:45 +02:00
Miroslav Stampar
cc9f4b6102
Minor refactoring for MariaDB
2016-05-14 15:05:50 +02:00
Miroslav Stampar
cd7c99c752
Minor revert (it was not necessary - caused other problems)
2016-05-14 14:48:17 +02:00
Miroslav Stampar
75478c1181
Fixes #1868
2016-05-14 14:18:34 +02:00
Miroslav Stampar
ad0ca69579
Fixes #1865
2016-05-13 15:14:56 +02:00
Miroslav Stampar
2d801b7122
Minor patch for an Issue #1861
2016-05-12 17:16:55 +02:00
Miroslav Stampar
1e07269fe3
Patch for an Issue #1860
2016-05-12 16:42:12 +02:00
Miroslav Stampar
3b74e99576
Minor update (support for MariaDB)
2016-05-11 15:47:35 +02:00
Miroslav Stampar
439fff684e
Minor update (MSSQL CONCAT payload)
2016-05-11 09:42:54 +02:00
Miroslav Stampar
72cf06119c
Patch for an Issue #1852
2016-05-10 09:55:03 +02:00
Miroslav Stampar
808068d70a
Minor update
2016-05-10 09:19:59 +02:00
Miroslav Stampar
f09072b2b6
Fixes #1853
2016-05-09 13:13:02 +02:00
Miroslav Stampar
be9381abc5
Implements #1845
2016-05-06 13:06:59 +02:00
Miroslav Stampar
5d09f7b85f
Fixes #1822
2016-05-06 10:32:16 +02:00
Miroslav Stampar
8bbfee7591
Cleaning a leftover from be26392057
2016-05-06 10:30:58 +02:00
Miroslav Stampar
be26392057
Update for an Issue #1846
2016-05-06 10:23:57 +02:00
Miroslav Stampar
263730f4ee
Fixes #1840
2016-05-04 13:23:59 +02:00
Miroslav Stampar
5d7e1782d9
Fixes #1839
2016-05-04 11:14:42 +02:00
Miroslav Stampar
e27f590c2c
Fixes #1838
2016-05-04 11:11:58 +02:00
Miroslav Stampar
7afe655561
Another minor update for #1836
2016-05-03 12:52:46 +02:00
Miroslav Stampar
3bf08290a4
Update for an Issue #1836
2016-05-03 12:37:10 +02:00
Miroslav Stampar
34c2172391
Fixes #1837
2016-05-03 11:38:47 +02:00
Miroslav Stampar
48044f7a46
Minor update of IDS_WAF_CHECK_PAYLOAD
2016-05-03 00:19:19 +02:00
Miroslav Stampar
04e666182f
Minor update of FORMAT_EXCEPTION_STRINGS
2016-05-02 23:44:43 +02:00
Miroslav Stampar
c797129956
Fixes #1833
2016-05-02 11:10:12 +02:00
Miroslav Stampar
6928dae956
Minor patch
2016-05-02 10:45:50 +02:00
Miroslav Stampar
6db3bcbb51
Minor update for UrlScan
2016-05-02 10:12:19 +02:00
Miroslav Stampar
d7f0b3566d
Automatic monthly tagging
2016-05-02 10:06:30 +02:00
Miroslav Stampar
0c67a90cc0
Minor bug fix
2016-05-02 10:06:30 +02:00
Miroslav Stampar
f06e498fb0
Implementation for an Issue #1826
2016-04-29 14:19:32 +02:00
Miroslav Stampar
ad612bf9e4
Patch for Windows banner display
2016-04-29 00:51:20 +02:00
Miroslav Stampar
9dd5cd8eb6
Removing CloudFlare check
2016-04-29 00:17:07 +02:00
Miroslav Stampar
5ed3cdc819
Minor update
2016-04-22 10:54:55 +02:00
Miroslav Stampar
e07c92bce5
Minor change on banner showing up
2016-04-19 13:45:49 +02:00
Miroslav Stampar
0c5965c7b8
Minor patches
2016-04-19 13:13:37 +02:00
Miroslav Stampar
aa21550712
Minor patch for integer casting heuristics (circumvent auto-casting by DBMS itself)
2016-04-15 13:47:19 +02:00
Miroslav Stampar
66061e8c5f
Fixes #1811
2016-04-15 12:04:54 +02:00
Miroslav Stampar
c4b74c2e01
Fixes #1810
2016-04-12 22:37:14 +02:00
Miroslav Stampar
55b23e78ee
Fixes #1809
2016-04-12 22:10:26 +02:00
Miroslav Stampar
a9526bda92
Minor patch
2016-04-11 22:38:44 +02:00
Miroslav Stampar
0901da3f83
Update for an Issue #1807
2016-04-11 09:43:50 +02:00
Miroslav Stampar
8004652f7b
Some more optimization
2016-04-08 15:30:25 +02:00
Miroslav Stampar
c9b410c97f
Minor update
2016-04-08 14:59:52 +02:00
Miroslav Stampar
814d710320
Minor speed up
2016-04-08 14:41:34 +02:00
Miroslav Stampar
38fcc5a35a
Update for pre-WHERE payloads
2016-04-08 13:19:42 +02:00
Miroslav Stampar
674d516f3e
Minor patch
2016-04-08 11:40:09 +02:00
Miroslav Stampar
8ceb4907a5
Another update for Issue #1800
2016-04-08 11:37:38 +02:00
Miroslav Stampar
ce3749622a
Minor revisit of payload boundaries (Issue #1800 )
2016-04-08 11:28:17 +02:00
Miroslav Stampar
bcfae99701
Adding new WAF script
2016-04-08 10:32:18 +02:00
Miroslav Stampar
44c1c2c6f0
Minor update (reported via email)
2016-04-06 11:43:53 +02:00
Miroslav Stampar
ac08db82b2
Including one more error regex (based on testasp[.]vulnweb[.]com)
2016-04-04 16:14:30 +02:00
Miroslav Stampar
305bfd9d30
Implements #1763
2016-04-04 13:50:10 +02:00
Miroslav Stampar
f9aaec7b4a
Minor patch (binary extensions)
2016-04-04 12:43:53 +02:00
Miroslav Stampar
d881a92ee7
Automatic monthly tagging
2016-04-04 12:38:37 +02:00
Miroslav Stampar
60ada89347
Trying once again
2016-04-04 12:38:37 +02:00
Miroslav Stampar
171bfa33a7
Automatic monthly tagging
2016-04-04 12:34:19 +02:00
Miroslav Stampar
acaef90c7b
Minor tuning of auto tagging
2016-04-04 12:34:19 +02:00
Miroslav Stampar
31d7021d4c
Fixes #1794
2016-04-04 12:25:07 +02:00
Miroslav Stampar
e83d8f6143
Updating colorama (Issue #1784 )
2016-03-30 15:11:34 +02:00
Miroslav Stampar
0245ce6228
Fixes #1782
2016-03-28 19:55:33 +02:00
Miroslav Stampar
7e55af2811
Fixes #1778
2016-03-28 16:13:36 +02:00
Miroslav Stampar
ad3b766b65
Adding in-table name boundaries
2016-03-26 09:39:28 +01:00
Miroslav Stampar
074fbbcea5
Implementation for an Issue #1776
2016-03-23 15:45:49 +01:00
Miroslav Stampar
5b0d5970cc
Another patch related to the #1773
2016-03-23 10:33:32 +01:00
Miroslav Stampar
6c2f9859be
Potential patch for #1773
2016-03-23 10:26:22 +01:00
Miroslav Stampar
d496d99943
Fixes #1774
2016-03-22 13:24:54 +01:00
Miroslav Stampar
d20e9febf2
Fixes #1770
2016-03-19 17:40:05 +01:00
Miroslav Stampar
d76ee8f534
Further update for #1765
2016-03-17 17:06:11 +01:00
Miroslav Stampar
5b88e3e1ad
Minor update of version comment
2016-03-17 16:38:39 +01:00
Miroslav Stampar
a68848faf7
(Auto) adjusting micro version (to current month)
2016-03-17 16:31:34 +01:00
Miroslav Stampar
a4f21399e7
Fixes #1760
2016-03-17 16:23:28 +01:00
Miroslav Stampar
e03b2df58f
Fixes #1761
2016-03-14 17:21:35 +01:00
Miroslav Stampar
252eb97198
Patch related to the #1755
2016-03-12 19:28:28 +01:00
Miroslav Stampar
67ae620182
Another patch related to the #1752
2016-03-12 15:04:19 +01:00
Miroslav Stampar
13366aeb48
Fixes #1752
2016-03-12 12:26:30 +01:00
Miroslav Stampar
e1ce16144a
Fixes #1753
2016-03-10 15:42:01 +01:00
Miroslav Stampar
3307918389
Fixes #1750
2016-03-10 14:48:05 +01:00
Miroslav Stampar
c50849707f
Fixes #1748
2016-03-08 14:35:16 +01:00
Miroslav Stampar
06296bd251
Fixes #1743
2016-03-06 20:04:45 +01:00
Miroslav Stampar
0f6e529fb9
Fixes #1745
2016-03-06 12:14:20 +01:00
Miroslav Stampar
242800c085
Minor update related to the #1740
2016-03-01 15:40:34 +01:00
Miroslav Stampar
679f0cf772
Fixes #1738
2016-03-01 15:36:00 +01:00
Miroslav Stampar
1b5a4651a9
Trivial refactoring
2016-03-01 14:48:53 +01:00
Miroslav Stampar
05fa7eb7c6
Minor update
2016-03-01 11:56:56 +01:00
Miroslav Stampar
336169e181
Update of version display
2016-02-29 08:12:38 +01:00
Miroslav Stampar
b2bc3d49fd
Minor update
2016-02-29 00:52:46 +01:00
Miroslav Stampar
71aa7deefe
Minor beautification
2016-02-29 00:49:45 +01:00
Miroslav Stampar
cf5ae507c8
Minor update of READMEs
2016-02-29 00:44:08 +01:00
Miroslav Stampar
4898a2c332
Dummy commit
2016-02-29 00:30:37 +01:00
Miroslav Stampar
151dcee32e
Minor update
2016-02-29 00:23:59 +01:00
Miroslav Stampar
73f1155847
Adding new shutils file
2016-02-29 00:20:58 +01:00
Miroslav Stampar
26b895dd2e
Merge pull request #1733 from Aikes/master
...
Fixes file path traversal issue on win platform.
2016-02-28 23:35:09 +01:00
Miroslav Stampar
adfcb1ad67
Adjusting version number
2016-02-27 15:59:52 +01:00
Aikes
b4bb4c393b
Fixes file path traversal issue on win platform.
...
POC: GET /download/b31146dcdb92e5db/C:\windows\win.ini/a
2016-02-27 00:10:32 +08:00
Miroslav Stampar
c5ecdb5403
Minor update related to the Issue #1730
2016-02-25 01:20:48 +01:00
Miroslav Stampar
a90913c57d
Proper patch for #1723
2016-02-23 11:46:04 +01:00
Lion Yang
bc6cc4bc1d
Remove a whitespace tail
2016-02-23 16:57:06 +08:00
Miroslav Stampar
d6bac363af
Minor patch for combo -r and --method
2016-02-18 11:13:51 +01:00
Miroslav Stampar
82abf1f742
Fixes #1714
2016-02-16 09:56:53 +01:00
Miroslav Stampar
cc06871075
Adding some debug messages for future-self
2016-02-16 08:58:18 +01:00
Noelkd
0514946efa
Removed dead links.
2016-02-14 15:57:55 +00:00
Miroslav Stampar
78e503d7b2
Minor patch related to the #1706
2016-02-13 21:25:01 +01:00
Miroslav Stampar
410df455ab
Minor consistency patch
2016-02-13 21:03:05 +01:00
Miroslav Stampar
d7cdb6cbd8
Minor update
2016-02-06 20:16:33 +01:00
Miroslav Stampar
cedfdc78f4
Adding escapequotes.py (utility tamper script)
2016-02-05 12:00:57 +01:00
Miroslav Stampar
08aae2b7c5
Bug fix (--prefix should not fix the origValue in REPLACEMENT payloads)
2016-02-05 11:53:24 +01:00
Miroslav Stampar
b07685a386
Added checking of localhost for another DNS service on *:53
2016-02-03 11:55:13 +01:00
Miroslav Stampar
4916f1b2b2
Minor path related to the #1676
2016-01-28 09:10:04 +01:00
Miroslav Stampar
954b4ec32b
Fix for #1676
2016-01-27 21:25:34 +01:00
Miroslav Stampar
ee0439cf11
Update for #1678
2016-01-27 10:03:30 +01:00
Miroslav Stampar
3605b98e84
Merge pull request #1678 from dozysun/servername-option
...
add --adapter option to support various of bottle server adapter
2016-01-27 09:44:31 +01:00
dozysun
997362f61b
change option name to adapter
2016-01-27 10:35:18 +08:00
Miroslav Stampar
62f94f6587
Adding comments (Issue #1681 )
2016-01-26 07:52:25 +01:00
Miroslav Stampar
c34eaa1ce8
Minor patch
2016-01-24 22:05:08 +01:00
dozysun
f5ffd9fa02
add --servername option to support various of bottle server adapter
2016-01-22 11:33:12 +08:00
Miroslav Stampar
c6c5a937f9
Minor style update
2016-01-21 10:17:17 +01:00
Miroslav Stampar
574b3a79aa
Adding support for detection of CloudFlare responses
2016-01-21 10:16:23 +01:00
Miroslav Stampar
8d42a93fdc
Fixes #1665
2016-01-16 08:13:56 +01:00
Miroslav Stampar
6fef2948ff
Minor consistency update
2016-01-14 22:51:26 +01:00
Miroslav Stampar
66eaac862b
Minor consistency update
2016-01-14 22:47:56 +01:00
Miroslav Stampar
59695af101
Minor improvement of heuristic checks
2016-01-14 22:21:47 +01:00
Miroslav Stampar
8b90d146f6
Update of file attributes
2016-01-14 18:02:15 +01:00
Miroslav Stampar
bdcf3fffba
Minor update related to the last (error results in OR boolean-based blind should not be the same as True to be able to do proper comparison)
2016-01-14 13:40:50 +01:00
Miroslav Stampar
c7ef9429ae
Minor check for problematic injections
2016-01-14 13:16:44 +01:00
Miroslav Stampar
c78a9cd156
Consistency patch
2016-01-14 12:14:00 +01:00
Miroslav Stampar
4c1fc095d8
Adding heuristic check for FI vulnerability
2016-01-14 09:59:13 +01:00
Miroslav Stampar
a8c6c6fca1
Minor update related to the last one
2016-01-13 23:47:34 +01:00
Miroslav Stampar
4e29e1b351
Fixing wrong commit #4f939b5719716dfe9bd085c4f67696bc11064edd
2016-01-13 23:34:42 +01:00
Miroslav Stampar
8362bdcf66
Fix for screw up made by #52dd92748a50bcee4fb979ea49185840ff6743b9
2016-01-13 23:16:27 +01:00
Miroslav Stampar
87676eb4bb
Minor update for #1660
2016-01-13 23:05:28 +01:00
Miroslav Stampar
c410f16f3f
Fixes #1660
2016-01-13 23:02:11 +01:00
Miroslav Stampar
0c8c4fa0d9
Fixes #1663
2016-01-13 14:38:59 +01:00
Miroslav Stampar
c37f4855bb
Another patch for Issue #1659
2016-01-12 10:34:56 +01:00
Miroslav Stampar
eb989469f3
Minor just in case update
2016-01-12 10:27:04 +01:00
Miroslav Stampar
9b716fcce9
Patch related to the #1659
2016-01-12 10:24:28 +01:00
Miroslav Stampar
a0b67418c7
Just in case update
2016-01-11 00:34:03 +01:00
Miroslav Stampar
7e78554e97
For frenzy Ctrl-C pressing
2016-01-11 00:08:38 +01:00
Miroslav Stampar
1f01d6022c
Minor style update
2016-01-10 23:50:24 +01:00
Miroslav Stampar
2280cd191a
Fixes #1654
2016-01-10 23:15:43 +01:00
Miroslav Stampar
e53e4dddf1
Minor patch
2016-01-10 23:12:46 +01:00
Miroslav Stampar
e519ed2e18
Another patch related to the #1655
2016-01-10 23:07:11 +01:00
Miroslav Stampar
8b01996adf
Patch related to the #1655
2016-01-10 22:59:40 +01:00
Miroslav Stampar
6b40e0aa8c
Minor style update (nongit-version)
2016-01-10 02:08:23 +01:00
Miroslav Stampar
5908964db4
Another (better) patch for #1636
2016-01-09 17:32:19 +01:00
Miroslav Stampar
0f8a551227
Potential patch for #1636
2016-01-09 00:55:01 +01:00
Miroslav Stampar
3c9be947c5
Fixes #1649
2016-01-09 00:15:05 +01:00
Miroslav Stampar
48ac2101f2
Using only once the dummy checkWaf payload
2016-01-08 23:23:41 +01:00
Miroslav Stampar
de06ae6803
Fixes #1647
2016-01-08 23:10:32 +01:00
Miroslav Stampar
c7ea3d65be
Fixes #1644
2016-01-08 15:33:14 +01:00
Miroslav Stampar
e3650342bd
Fixes #1639
2016-01-08 11:47:12 +01:00
Miroslav Stampar
b427f6c03e
Minor bug fix
2016-01-08 10:52:02 +01:00
Miroslav Stampar
6f3511dcc3
Error chunk length bug fix (reported privately)
2016-01-08 10:45:31 +01:00
Miroslav Stampar
d0d676ccce
Update of copyright string
2016-01-06 00:06:12 +01:00
Miroslav Stampar
59ff8114ff
Fixes #1635
2016-01-04 12:09:08 +01:00
Miroslav Stampar
03160d99eb
Fixes #1630
2015-12-30 13:39:08 +01:00
Miroslav Stampar
42066cfb3d
Minor refactoring
2015-12-30 12:41:56 +01:00
Miroslav Stampar
dd8fcaeb43
Minor refactoring of some revisited code
2015-12-29 14:32:13 +01:00
Miroslav Stampar
24d95ab6b3
Fixes #1624
2015-12-24 10:34:42 +01:00
Miroslav Stampar
3454e356f9
Fixes #1621
2015-12-23 08:55:45 +01:00
Miroslav Stampar
ae7481081e
Patch for an Issue reported via email
2015-12-19 23:45:10 +01:00
Miroslav Stampar
89e0fc8ffa
Minor update
2015-12-19 17:50:12 +01:00
Miroslav Stampar
e4ed1c058b
Minor error message improvement (SSL issues)
2015-12-18 17:15:59 +01:00
Miroslav Stampar
aee47d32c5
Patch for #1601
2015-12-15 12:13:03 +01:00
Miroslav Stampar
d7d786d3b5
Fixes #1607
2015-12-15 11:29:37 +01:00
Miroslav Stampar
b269e8418f
Fixes #1608
2015-12-15 10:46:37 +01:00
Miroslav Stampar
dc7f2a71d2
Minor refactoring
2015-12-12 23:48:30 +01:00
Miroslav Stampar
273679f542
Adding new charset replacement (reported via email)
2015-12-10 13:23:50 +01:00
Miroslav Stampar
663c976a3b
Fixes #1600
2015-12-09 19:53:48 +01:00
Miroslav Stampar
2eb5f5e841
Handling 'address already in use' for sqlmapapi server instance
2015-12-09 12:20:09 +01:00
Miroslav Stampar
31d250f98e
Fixes #1592
2015-12-09 12:00:34 +01:00
Miroslav Stampar
1c5c937507
Minor update
2015-12-09 10:14:13 +01:00
Miroslav Stampar
efc91b015d
Fixes #1589
2015-12-09 10:07:37 +01:00
Miroslav Stampar
af60f11319
Fixes #1584 (hello @w3af looking for the patch of this one ;)
2015-12-07 16:17:28 +01:00
Miroslav Stampar
b5b3411f16
Fixes #1574
2015-12-06 23:49:22 +01:00
Miroslav Stampar
d5e6be41db
Fixes #1582
2015-12-06 23:24:09 +01:00
Miroslav Stampar
7517e64417
Minor bug fix (reported via email)
2015-12-05 00:52:58 +01:00
Miroslav Stampar
d50c0b7103
Fixes #1581
2015-12-03 12:16:00 +01:00
Miroslav Stampar
c6d4217495
Minor update (just in case)
2015-12-03 02:08:59 +01:00
Miroslav Stampar
a7c135174c
Fixes #1579
2015-12-03 02:00:16 +01:00
Miroslav Stampar
6397704456
Patch for an Issue #1578
2015-12-03 01:43:37 +01:00
Miroslav Stampar
80d3ff6706
Adding hidden switch for disabling socket preconnect (debugging purposes)
2015-12-02 12:05:40 +01:00
Miroslav Stampar
a219ff9a92
Fixes #1572
2015-11-29 19:40:14 +01:00
Miroslav Stampar
795777b7c5
Minor patch
2015-11-28 22:44:42 +01:00
Miroslav Stampar
5f2c31f8ec
Minor consistency patch
2015-11-28 22:42:25 +01:00
Miroslav Stampar
f9da29284c
Minor bug fix (reported via email)
2015-11-27 18:35:58 +01:00
Miroslav Stampar
c7ec1534a6
Patch related to #1256
2015-11-25 13:04:34 +01:00
Miroslav Stampar
a18c69d78b
Fixes #1564
2015-11-25 10:21:32 +01:00
Miroslav Stampar
829351421f
Minor cosmetics
2015-11-25 10:12:07 +01:00
Miroslav Stampar
5020269f50
Adding extra mark into non-git checkouts
2015-11-24 09:38:28 +01:00
Miroslav Stampar
527dcce08d
Better alternative (on Linux getctime() is the time of the last metadata change)
2015-11-24 09:25:11 +01:00
Miroslav Stampar
bdb496eaa5
Fixes #1558
2015-11-23 09:24:30 +01:00
Miroslav Stampar
4d576928a7
Fixes #1554
2015-11-22 16:05:48 +01:00
Miroslav Stampar
376037123b
Minor fix
2015-11-22 15:33:00 +01:00
Miroslav Stampar
a5489516eb
Fixes #1550
2015-11-20 16:52:59 +01:00
Miroslav Stampar
7fa9c8e938
Patch for an Issue #1546
2015-11-20 11:38:26 +01:00
Miroslav Stampar
efe41fbdc7
Fixes #1547
2015-11-20 11:32:54 +01:00
Miroslav Stampar
19f6eb234b
Revert of #58e049a60d250b881af60091215c75daa3f5c01a (I can imagine couple of things that could go wrong)
2015-11-17 08:52:24 +01:00
Miroslav Stampar
58e049a60d
More generic approach for number of pre-open sockets (Issue #1540 )
2015-11-17 02:45:27 +01:00
Miroslav Stampar
fd2908336a
Minor just in case patch
2015-11-17 02:35:53 +01:00
Miroslav Stampar
5be0a83e94
Minor patch
2015-11-17 01:38:43 +01:00
Miroslav Stampar
89abeb0244
Patch for 'Exception in thread Thread-1 (most likely raised during interpreter shutdown)'
2015-11-17 01:09:57 +01:00
Miroslav Stampar
abb1c6a621
Less intensive loop
2015-11-17 00:12:04 +01:00
Miroslav Stampar
41b8dfab86
Implementation for an Issue #1540
2015-11-16 23:46:10 +01:00
Miroslav Stampar
4335ae8330
Patching previous commit
2015-11-16 16:59:54 +01:00
Miroslav Stampar
94639d11a3
Another update related to the #1539
2015-11-16 15:33:05 +01:00
Miroslav Stampar
c1e3431877
Minor patch
2015-11-16 15:32:28 +01:00
Miroslav Stampar
768e5da589
Removing leftover (from 5593bf2fee
)
2015-11-16 15:04:09 +01:00
Miroslav Stampar
5593bf2fee
Another patch related to #1539 (simplifying unicode bad chars and preventing double encoding of safe chars)
2015-11-16 15:02:30 +01:00
Miroslav Stampar
ca933fcf1d
Another patch for #1539
2015-11-16 14:08:43 +01:00
Miroslav Stampar
a212f0c240
Another patch for #1539
2015-11-16 12:56:15 +01:00
Miroslav Stampar
9c69f56a34
Proper patch for an Issue #1539
2015-11-16 11:59:09 +01:00
Miroslav Stampar
fb2cb25afe
Bug fix for an Issue #1539
2015-11-16 11:56:15 +01:00
Miroslav Stampar
d772e7e1d5
Fixes #1529
2015-11-11 16:07:11 +01:00
Miroslav Stampar
07b1407345
Patches #1530
2015-11-11 15:55:28 +01:00
Miroslav Stampar
bc215d1b19
I believe that this was a wrong decision. Patching
2015-11-09 14:11:08 +01:00
Miroslav Stampar
17350fb4ec
Proper fix for #1146 (/ has been escaped with \/ in output)
2015-11-09 14:05:53 +01:00
Miroslav Stampar
22484c8599
Bug fix (-p Host didn't work, while -p host worked)
2015-11-09 13:19:55 +01:00
Miroslav Stampar
42649005c2
Lots of fixes and refactoring in search department
2015-11-08 16:37:46 +01:00
Miroslav Stampar
b4526a3d51
Bug fix (usage of socks and http proxies in --proxy-file didn't work together)
2015-11-08 02:20:29 +01:00
Miroslav Stampar
193f8190c4
Adding new warning message
2015-11-07 23:30:24 +01:00
Miroslav Stampar
c31e23e514
Patch for an Issue #1516
2015-11-06 11:19:55 +01:00
Miroslav Stampar
5198e4c816
Minor bug fix (based on private user report)
2015-11-04 15:04:38 +01:00
Miroslav Stampar
3451372d4e
Fixes #1521
2015-11-04 14:48:40 +01:00
Miroslav Stampar
6adb6eabec
Fixes #1517
2015-11-03 14:53:41 +01:00
Miroslav Stampar
064c2a71ed
Fixes #1510
2015-11-01 22:56:26 +01:00
Miroslav Stampar
4dc0c05172
Fixes #1505
2015-10-31 10:16:44 +01:00
Miroslav Stampar
04aaa5985b
Fixes #1497
2015-10-29 17:02:47 +01:00
Miroslav Stampar
0b64cf803c
Fixes #1496
2015-10-29 16:52:17 +01:00
Miroslav Stampar
d41cd53d31
Minor style fix (distinguish form from URL testing when --forms --crawl combo used)
2015-10-28 14:03:21 +01:00
Miroslav Stampar
caafa377a6
Fixes #1495
2015-10-28 10:29:12 +01:00
Miroslav Stampar
8fbac5a99e
Patch for --proxy-file
2015-10-25 15:58:43 +01:00
Miroslav Stampar
89e36392f7
Fixes #1486
2015-10-25 15:32:02 +01:00
Miroslav Stampar
1b81084106
Fixes #1484
2015-10-23 23:48:41 +02:00
Miroslav Stampar
2c754b57bb
Minor patch
2015-10-23 14:29:48 +02:00
Miroslav Stampar
8f9979c302
Patch for an Issue #541
2015-10-22 20:51:05 +02:00
Miroslav Stampar
5fb8ae9d3c
Fixes #1479
2015-10-22 19:59:16 +02:00
Miroslav Stampar
fbec463b49
Adding new bold patterns
2015-10-22 15:44:08 +02:00
Miroslav Stampar
7c1cff6749
Fixing ancient bug (introduced with #6c80f29) - that removes original value when --prefix used
2015-10-22 15:14:12 +02:00
Miroslav Stampar
90ad914c1e
Patch related to the #1477
2015-10-22 14:58:06 +02:00
Miroslav Stampar
8aada250f3
Fixes #1471
2015-10-19 11:08:58 +02:00
Miroslav Stampar
3dc8820caa
Fixes #1474
2015-10-19 10:38:38 +02:00
Miroslav Stampar
441196f360
Fixes #1470
2015-10-16 23:59:39 +02:00
Miroslav Stampar
f793a26095
Removing ugly duplicating of \ (hidden bugs came - e.g. DNS exfiltration)
2015-10-15 16:00:59 +02:00
Miroslav Stampar
956047b43f
Patch for an Issue #1468
2015-10-15 13:07:43 +02:00
Miroslav Stampar
475ca5277a
Minor information update regarding #541
2015-10-14 16:11:11 +02:00
Miroslav Stampar
e3ae026077
Fixes #1467
2015-10-14 15:19:44 +02:00
Miroslav Stampar
80aca35dd1
Removing #1450
2015-10-13 15:00:59 +02:00
Miroslav Stampar
c4df6f3a22
Fixes #1465
2015-10-13 13:31:28 +02:00
Miroslav Stampar
570562369b
Further fixes for sqlmap to work properly with HSQLDB (WebGoat)
2015-10-13 13:04:59 +02:00
Miroslav Stampar
b9a44555ff
Fixes #1462
2015-10-11 15:20:10 +02:00
Miroslav Stampar
47a42c234e
Fixes #1459
2015-10-10 19:19:50 +02:00
Miroslav Stampar
9641e84dd9
Bug fixes for HSQLDB
2015-10-09 16:52:13 +02:00
Miroslav Stampar
41db0e0eea
range to xrange (leftovers)
2015-10-09 13:48:21 +02:00
Miroslav Stampar
d424d4cdc7
Fixes #1457
2015-10-09 11:54:28 +02:00
Miroslav Stampar
8bf236ce11
Minor patch for SQLite parsing of schemas
2015-10-07 10:01:48 +02:00
Miroslav Stampar
fd686fb691
Patch related to the #1455
2015-10-07 09:43:25 +02:00
Miroslav Stampar
eb7c18d1f8
Fixes #1452
2015-10-07 09:25:14 +02:00
Miroslav Stampar
657d71119b
Fixes #1453
2015-10-07 09:22:11 +02:00
Miroslav Stampar
78bbf5d63c
Fixes #1451
2015-10-06 14:17:35 +02:00
Miroslav Stampar
551b7e4b45
Patch for an Issue #1450
2015-10-06 13:23:01 +02:00
Miroslav Stampar
95ce5a4a09
Fixes #1444
2015-10-05 16:33:10 +02:00
Miroslav Stampar
b98f84a610
Fixes #1443
2015-10-05 16:26:12 +02:00
Miroslav Stampar
1258b354c3
Minor refactoring
2015-10-05 16:09:58 +02:00
Miroslav Stampar
20c19f33dc
Minor update
2015-10-05 15:51:21 +02:00
Miroslav Stampar
1c6e288eb1
Fixes #1447
2015-10-05 15:33:29 +02:00
Miroslav Stampar
acd6b7797f
Fixes #1446
2015-10-05 15:18:54 +02:00
Miroslav Stampar
53de0e8949
Implements #1442
2015-10-01 11:57:33 +02:00
Miroslav Stampar
29edb4f75c
Fixes #1440
2015-09-30 11:26:56 +02:00
Miroslav Stampar
a1a7161fab
Fixes #1441
2015-09-30 10:13:19 +02:00
Miroslav Stampar
5ce4d4d2ec
Fixes #1439
2015-09-29 10:10:39 +02:00
Miroslav Stampar
906cb6d3c2
Removing a hard limit to use --start/--stop only for --dump scenarios
2015-09-28 11:11:39 +02:00
Miroslav Stampar
ac467bc453
Fixes #1437
2015-09-28 09:54:41 +02:00
Miroslav Stampar
1fd6b007ab
Less critical messages when something goes wrong with connection
2015-09-27 16:36:20 +02:00
Miroslav Stampar
ef22f31fdf
Fixes #1433
2015-09-27 16:17:58 +02:00
Miroslav Stampar
5bade7947b
Fixes #1435
2015-09-27 16:09:02 +02:00
Miroslav Stampar
5ed106ecea
Patch for an Issue #1434
2015-09-27 15:59:17 +02:00
Miroslav Stampar
38541b021a
Implementing hidden switch '--force-threads' on request (to force multi-threading in time-based SQLi)
2015-09-26 00:09:17 +02:00
Miroslav Stampar
b68891050d
Better word used
2015-09-25 23:41:47 +02:00
Miroslav Stampar
f16389232f
Bug fix for --proxy-file (only first element was fetched in case of fail)
2015-09-25 15:23:42 +02:00
Miroslav Stampar
4774795d8c
Fixes #1429
2015-09-25 14:59:21 +02:00
Miroslav Stampar
d28c72b6f1
Another fix for Python 2.6 (bug introduced with ff7be9d0eb
)
2015-09-24 16:26:52 +02:00
Miroslav Stampar
74294ae105
Bug fix for --common-tables in case of MsSQL/Sybase (safeSQLIdentificatorNaming already used)
2015-09-22 11:28:56 +02:00
Miroslav Stampar
0e22a0ca5f
Minor cosmetics
2015-09-21 16:41:54 +02:00
Miroslav Stampar
81caf14b6d
Adding switch --skip-waf
2015-09-21 14:57:44 +02:00
Miroslav Stampar
e81e474646
Minor adjustment
2015-09-21 14:46:34 +02:00
Miroslav Stampar
56f0b811a6
Minor patch
2015-09-21 13:23:56 +02:00
Miroslav Stampar
3fca379f29
Minor patch (avoiding message 'can't establish SSL connection' in --check-tor)
2015-09-21 11:25:59 +02:00
Miroslav Stampar
27707be467
Fixes #1416
2015-09-17 17:09:36 +02:00
Miroslav Stampar
aa2112b360
Update for #1414
2015-09-17 16:18:58 +02:00
Miroslav Stampar
7cfa90830d
Merge pull request #1414 from daremon/api-client-2
...
Added commands stop, kill, list to API client
2015-09-17 15:51:12 +02:00
Miroslav Stampar
65a8f0fe32
Minor enhancement
2015-09-17 15:25:40 +02:00
Miroslav Stampar
2cea977e12
Fixes #1415
2015-09-17 14:58:01 +02:00
daremon
c2fb2161d3
Added flush command
2015-09-16 00:15:16 +03:00
daremon
ff7be9d0eb
Fixed list command
2015-09-16 00:01:57 +03:00
Miroslav Stampar
c59ead36ce
Patch for Python 2.6 (SyntaxError)
2015-09-15 17:23:59 +02:00
Miroslav Stampar
058870635b
Update for an #1414
2015-09-15 14:37:30 +02:00
Miroslav Stampar
ee38574449
Fixes #1411
2015-09-15 13:26:25 +02:00
Miroslav Stampar
5de1825d0c
Fixes #1412
2015-09-15 10:48:23 +02:00
daremon
1417decdf1
Added commands stop, kill, list to API client
2015-09-14 17:31:02 +03:00
Miroslav Stampar
f89ce2173f
Fixes #1404
2015-09-12 15:13:30 +02:00
Miroslav Stampar
c4f9e66a6f
Patch related to the #1403
2015-09-10 16:21:31 +02:00
Miroslav Stampar
c05c0ff435
Minor patch with imports
2015-09-10 15:55:49 +02:00
Miroslav Stampar
f494004f44
Switching to the getSafeExString (where it can be used)
2015-09-10 15:51:33 +02:00
Miroslav Stampar
7a261ef447
Just in case commit related to the aee4c93c8b
2015-09-10 15:19:33 +02:00
Miroslav Stampar
b06a34ab1a
Another update for #1402
2015-09-10 15:06:07 +02:00
Miroslav Stampar
2453b02b63
Update for #1402
2015-09-10 15:01:30 +02:00
Miroslav Stampar
b3fdbe24c2
Merge pull request #1402 from daremon/api-client
...
Minimal API client
2015-09-10 12:03:25 +02:00
Miroslav Stampar
263665637e
Minor bug fix
2015-09-10 11:34:03 +02:00
daremon
a29a3a4e5c
Minimal API client
2015-09-09 16:14:04 +03:00
Miroslav Stampar
90329a8b01
Minor patch
2015-09-09 11:53:44 +02:00
Miroslav Stampar
b6206692e0
Fixes #1392
2015-09-08 11:53:29 +02:00
Miroslav Stampar
c1f829d131
Removing last remnants of bad handling the exceptions as strings
2015-09-08 11:15:31 +02:00
Miroslav Stampar
e59a220199
Fixes #1393
2015-09-08 11:10:47 +02:00
Miroslav Stampar
924e31c414
Fixes #1394
2015-09-08 11:04:36 +02:00
Miroslav Stampar
28a60f5be2
Fixes #1391
2015-09-06 20:22:07 +02:00
Miroslav Stampar
aee4c93c8b
Fixes #1384
2015-09-03 10:32:45 +02:00
Miroslav Stampar
51a4cb04a5
Another minor language patch
2015-09-03 10:26:46 +02:00
Miroslav Stampar
7511023bc2
Fixes #1385
2015-09-03 10:11:36 +02:00
Miroslav Stampar
401564898d
Adding support for 'empty' POST body (if forced by --method)
2015-08-31 14:43:41 +02:00
Miroslav Stampar
265a78b455
Fixes #1379
2015-08-31 14:27:47 +02:00
Miroslav Stampar
d70215ad6c
Fixes #1237
2015-08-31 10:24:05 +02:00
Miroslav Stampar
d2a9c7584f
Minor patch
2015-08-31 09:51:35 +02:00
Miroslav Stampar
50d39d0252
Closes #1372
2015-08-30 23:15:50 +02:00
Miroslav Stampar
89292ce1f9
Closes #1376
2015-08-30 22:52:24 +02:00
Miroslav Stampar
6a01d2e430
Fixes #1366
2015-08-30 02:13:07 +02:00
Miroslav Stampar
737a37bfda
Fixes #1367
2015-08-30 01:58:43 +02:00
Miroslav Stampar
06c8704179
Fixes #1365
2015-08-28 15:30:28 +02:00
Miroslav Stampar
43f3900ffe
Fixes #1362
2015-08-27 12:25:25 +02:00
Miroslav Stampar
1cf012521d
Minor refactoring
2015-08-26 16:18:03 +02:00
Miroslav Stampar
a33b0454cd
Implementation for an Issue #1360
2015-08-26 15:26:16 +02:00
Miroslav Stampar
2c2f83f67b
Minor code consistency patch
2015-08-26 11:30:48 +02:00
Miroslav Stampar
1f5e6606a7
Fixes #1357
2015-08-25 02:03:56 +02:00
Miroslav Stampar
337eb9861a
Fixes #1347
2015-08-23 22:11:59 +02:00
Miroslav Stampar
690347a170
Bug fix (non-ASCII chars in command line caused gibberish in unhandled messages)
2015-08-23 21:48:31 +02:00
Miroslav Stampar
9fb0eb3dd7
Blank removal
2015-08-23 21:41:59 +02:00
Miroslav Stampar
1204141278
Fixes #1350
2015-08-23 21:09:20 +02:00
Miroslav Stampar
fef8f20565
Minor reporting patch
2015-08-23 20:27:14 +02:00
KingX
3ebb3e6f4f
fix removeDynamicContent bug
...
double re.escape() in "findDynamicContent" function and "removeDynamicContent" function leads an bug in finding dynamic content,
2015-08-22 14:05:03 +08:00
Miroslav Stampar
f609158d1b
Adding new error message (when short options carry illegal '=')
2015-08-19 21:00:16 +02:00
Miroslav Stampar
383316fcb3
Fixing issues caused by 9ad1d122f4
(better approach)
2015-08-18 22:48:55 +02:00
Miroslav Stampar
8806ce72c1
Patch for an Issue #1341
2015-08-18 22:03:42 +02:00
Miroslav Stampar
54d65328bc
Patch for negative logic (e.g. OR) cases (reported privately)
2015-08-18 03:09:01 +02:00
Miroslav Stampar
023def3203
Fixes #1336
2015-08-16 23:47:11 +02:00
Miroslav Stampar
c9d1c4d7b1
Fixes #1337
2015-08-16 23:29:39 +02:00
Miroslav Stampar
713d5384bc
Potential patch for an Issue #1337
2015-08-16 23:15:04 +02:00
Miroslav Stampar
310d79b8f1
Adding special variable 'lastPage' to the eval code (by request from ML)
2015-08-14 23:29:31 +02:00
Miroslav Stampar
b010fda695
Switch --save becomes an option (taking file path where to save config file)
2015-08-14 22:49:32 +02:00
flsf
9adefb3ffd
Minor change
2015-08-14 16:18:51 +08:00
Miroslav Stampar
2c1cde0f59
Minor fix (reported over ML - ignore saving of conf.saveCmdline)
2015-08-13 17:21:36 +02:00
Miroslav Stampar
8ea8b168b1
Minor cosmetics
2015-08-13 17:10:35 +02:00
Miroslav Stampar
9ad1d122f4
Minor patch (Issue #1327 )
2015-08-12 22:09:31 +02:00
Miroslav Stampar
e5863d8b89
Minor patch
2015-08-12 21:43:13 +02:00
Jiang Jie
1ac27e9305
fixed pipe and zoombie problems
...
1.we don't need stdin here, and it'll cause OSError: too many openfiles problem.
2. after using /scan/taskid/stop , process turned into a zoombie, need add wait()
2015-08-12 16:25:33 +08:00
Miroslav Stampar
62f35698ee
Bug fix (ML) - when cookies have blank expiration time
2015-08-06 13:07:16 +02:00
Miroslav Stampar
c5f3c0cc32
Fixes #1324
2015-08-03 17:21:35 +02:00
Miroslav Stampar
e623ee66ad
Better approach for #1320
2015-07-30 23:29:31 +02:00
Miroslav Stampar
bcb25823e6
Fixes #1320
2015-07-30 23:19:38 +02:00
Miroslav Stampar
301aca57e6
Fixes #1319
2015-07-29 10:00:15 +02:00
Miroslav Stampar
401905b2dd
Minor improvement to UNION file write
2015-07-26 17:02:46 +02:00
Miroslav Stampar
e3553ae893
Missing import
2015-07-26 16:19:44 +02:00
Miroslav Stampar
b0bc3149f9
Fixes #1315
2015-07-26 16:18:41 +02:00
Miroslav Stampar
e7af081447
Minor patch
2015-07-26 16:08:30 +02:00
Miroslav Stampar
314df093f1
Fixes #1314
2015-07-26 16:06:01 +02:00
Miroslav Stampar
b6ea2fdb07
Fixes #1170
2015-07-24 14:56:45 +02:00
Miroslav Stampar
a905b8d8f5
Fixes #1312
2015-07-23 10:07:21 +02:00
Miroslav Stampar
58002c5057
Minor cosmetics
2015-07-23 09:55:59 +02:00
Miroslav Stampar
cece2cb12d
Minor cosmetics
2015-07-23 00:42:29 +02:00
Miroslav Stampar
358651b19c
Fixes #1313
2015-07-23 00:41:03 +02:00
Miroslav Stampar
75ed5f767c
Fixes #1309
2015-07-20 17:03:20 +02:00
Miroslav Stampar
2afb5687f6
Fixes #1307
2015-07-20 15:47:27 +02:00
Miroslav Stampar
21e8182ac6
Fixes #1305
2015-07-18 17:01:34 +02:00
Miroslav Stampar
a7c4400cc9
Fixes #1304
2015-07-17 14:20:51 +02:00
Miroslav Stampar
00f190fc92
Fixes #1303
2015-07-17 10:14:35 +02:00
Miroslav Stampar
49212ec920
Fixes #1302
2015-07-17 09:56:24 +02:00
Miroslav Stampar
1aafe85a3a
Fixes #1299
2015-07-15 11:15:06 +02:00
Miroslav Stampar
fdc8e664df
Updating --beep functionality (ML request)
2015-07-13 23:55:46 +02:00
Miroslav Stampar
16f8e4c8ba
Removing unused imports
2015-07-12 12:25:02 +02:00
Miroslav Stampar
a20da7a677
Patch for automatic reporting (GitHub has robots)
2015-07-12 12:05:19 +02:00
Miroslav Stampar
fa303ef8b1
Minor update
2015-07-10 16:39:18 +02:00
Miroslav Stampar
10f8c6a0b6
Introducing --offline switch (to perform session only lookups)
2015-07-10 16:10:24 +02:00
Miroslav Stampar
9bdbdc136f
Minor cosmetics update
2015-07-10 11:33:12 +02:00
Miroslav Stampar
0ba264bfa0
Minor patch
2015-07-10 09:51:11 +02:00
Miroslav Stampar
4baaa4a5ad
Minor improvement
2015-07-10 09:24:14 +02:00
Miroslav Stampar
9ff115ce71
Minor patch
2015-07-10 01:33:53 +02:00
Miroslav Stampar
02470ea683
Further decreasing number of testing payloads
2015-07-10 01:19:46 +02:00
Miroslav Stampar
48b627f3ff
Prevent double tests (e.g. in same final tests where suffix is cut by the comment)
2015-07-10 00:54:02 +02:00
Miroslav Stampar
ca2f63c672
Test speed up in case of boolean based blind
2015-07-10 00:37:59 +02:00
Miroslav Stampar
3a5cc98976
-Z is/are a pseudo-option (just like -H) expanded during the run
2015-07-07 09:27:18 +02:00
Miroslav Stampar
2080fcaa37
Fixes #1293
2015-07-07 09:24:16 +02:00
Miroslav Stampar
f488377001
Fixes #1293
2015-07-07 08:47:07 +02:00
Miroslav Stampar
6a1b3895f9
Patch for an Issue #1285
2015-07-06 11:50:59 +02:00
Miroslav Stampar
96327b6701
Fixes #1290
2015-07-05 01:47:01 +02:00
Miroslav Stampar
166dc98e81
Minor patch
2015-07-05 00:03:29 +02:00
Miroslav Stampar
1f71d809d4
Fixes #1288
2015-07-03 08:55:33 +02:00
Miroslav Stampar
7b95a2d80d
Patch for an Issue #1280
2015-06-29 10:05:16 +02:00
Miroslav Stampar
8b63ee9bc3
Minor update for #1281
2015-06-29 01:12:14 +02:00
Miroslav Stampar
97244f5e5e
Fixes #1279
2015-06-29 00:20:35 +02:00
Miroslav Stampar
b212321c07
Fixes #1278
2015-06-26 10:30:53 +02:00
Miroslav Stampar
b02be9674f
Fixes #1277
2015-06-26 10:11:34 +02:00
Miroslav Stampar
7d418af274
Fix for a bug reported privately by email
2015-06-22 16:28:35 +02:00
Miroslav Stampar
9e5ef094a3
Closes #1270
2015-06-16 22:20:21 +02:00
Miroslav Stampar
e4b23c9beb
Minor fix regarding POST redirects (ML)
2015-06-16 12:00:56 +02:00
Miroslav Stampar
04c1d439a7
Minor patch for #1260
2015-06-05 17:18:21 +02:00
Miroslav Stampar
8d7e915af7
Minor patch for #1260
2015-06-05 17:02:56 +02:00
Miroslav Stampar
ec87d8ebda
Adding a support for SNI (Issue #1256 )
2015-06-01 10:45:16 +02:00
Miroslav Stampar
341d2a6028
Minor fix for (hidden) switch '--dummy'
2015-05-29 17:30:02 +02:00
Miroslav Stampar
08caca387b
Minor patch of automatic WAF heuristic check
2015-05-29 16:01:41 +02:00
Miroslav Stampar
699c965bc0
Fixes #1248
2015-05-19 18:40:45 +02:00
Miroslav Stampar
17bfda1b9c
Adding new switch ('--skip-static')
2015-05-18 20:57:15 +02:00
Miroslav Stampar
e8f87bfa41
Minor patches related to the #1206
2015-05-11 11:01:21 +02:00
Miroslav Stampar
91bc02e3ba
Fixes related to the #1206
2015-05-11 10:56:10 +02:00
Miroslav Stampar
9010e157e9
Conflict fix
2015-05-11 10:11:33 +02:00
Miroslav Stampar
5b8df7984c
Minor update (for Windows-31j charset)
2015-05-09 14:32:55 +02:00
Miroslav Stampar
4b2ff4339a
Fixes #1243
2015-05-07 12:36:23 +02:00
Miroslav Stampar
18e62fd507
Fix for an Issue #1240
2015-05-05 14:36:21 +02:00
Miroslav Stampar
84ba3d45c1
Patch for an Issue #1238
2015-05-04 21:47:10 +02:00
Miroslav Stampar
5ee7fd785a
Fixes #1235
2015-05-01 00:48:08 +02:00
Miroslav Stampar
03f32ae2b6
Merge of an Issue #1227
2015-04-22 17:21:55 +02:00
Miroslav Stampar
a94dcf94e9
Patch for an Issue #1226đ
2015-04-22 16:41:20 +02:00
Miroslav Stampar
bb98894dc1
Adding option --safe-req
2015-04-22 16:28:54 +02:00
Miroslav Stampar
4ded9a9966
Small patch for existing option validation
2015-04-22 15:32:14 +02:00
Miroslav Stampar
77c96de4ea
Minor patch related to the last commit
2015-04-22 10:33:22 +02:00
Miroslav Stampar
95b52a02ec
Minor patch for custom injection into HTTP Authorization header
2015-04-22 10:28:16 +02:00
Miroslav Stampar
c5138d4696
Minor refactoring
2015-04-21 00:02:47 +02:00
Miroslav Stampar
349dfbf2ae
Adding an option --safe-post
2015-04-20 23:55:59 +02:00
Miroslav Stampar
7517db76d1
Minor fix for SQLite's schema parsing
2015-04-16 18:40:43 +02:00
Miroslav Stampar
dbfa8f1cfc
Fix for a bug reported by the user (conf.scheme/conf.hostname/conf.port were None in multiple targets mode)
2015-04-14 11:05:17 +02:00
Miroslav Stampar
0e4800f73c
Changing default answer for sitemap checking to N
2015-04-14 09:30:01 +02:00
Miroslav Stampar
1e7f2d6da2
Implements #1215
2015-04-06 22:07:22 +02:00
Miroslav Stampar
c35fa63a48
Fixes #1212
2015-03-30 11:58:09 +02:00
Miroslav Stampar
99c1cc9937
Fixes #1208
2015-03-26 17:17:46 +01:00
Miroslav Stampar
a19bccc84f
Fixes #1205
2015-03-26 15:31:29 +01:00
Miroslav Stampar
770cfb6102
Removing test print
2015-03-26 15:20:54 +01:00
Miroslav Stampar
fc0186e029
Minor update
2015-03-26 12:39:44 +01:00
Miroslav Stampar
5dfd3ef1e4
Another update
2015-03-26 12:25:32 +01:00
Miroslav Stampar
3be7a447a5
Update
2015-03-26 12:22:49 +01:00
Miroslav Stampar
7587528ebd
Fixes #1202
2015-03-26 11:40:19 +01:00
ricterz
bbfdb02a0e
fix mandatorily depend of websocket #1198
2015-03-24 22:25:16 +08:00
ricterz
811f5c11c6
remove Host header field and add cookie support #1198
2015-03-24 18:50:57 +08:00
ricterz
9b5dcbbbb2
modified error handle #1198
2015-03-24 18:21:50 +08:00
ricterz
78dbe080d7
determine whether it's websocket when connect #1198
2015-03-24 17:19:37 +08:00
ricterz
50fd6ce7f7
add websocket support for parse url #1198
2015-03-24 10:30:38 +08:00
Miroslav Stampar
05a496c275
Fixes #1196
2015-03-20 00:56:52 +01:00
Miroslav Stampar
25b23750e8
Bug fix for crawling over non-80 port
2015-03-12 11:49:52 +01:00
Miroslav Stampar
adc8ac267d
Fixes #1190
2015-03-10 09:23:26 +01:00
Miroslav Stampar
9bd41ed99d
Fixes #1189
2015-03-09 22:02:20 +01:00
Christ van Willegen
80fb2e29cc
Fix some spelling errors in help texts (through -> thorough)
2015-03-04 13:31:29 +01:00
Miroslav Stampar
3347fc25ca
Fixes #1185
2015-03-03 15:10:06 +01:00
Miroslav Stampar
3f6c3b40dd
Minor update (not overriding user given 'Accept-Encoding' header value)
2015-03-03 14:37:36 +01:00
Bernardo Damele
8281fe48e5
bug fix: test for boundaries with high levels if the test was extended
2015-03-01 11:02:05 +00:00
Bernardo Damele
260643241a
prioritized fingerprinted DBMS to error-based and user provided one
2015-02-27 14:19:30 +00:00
Bernardo Damele
2f08c8b666
bug fix: do not skil heuristic check if previous page (test for dynamicity) had DBMS message. Code cleanup
2015-02-27 13:57:28 +00:00
Miroslav Stampar
dde400ab8f
More suitable version of 6bcc95a
(suggested by user)
2015-02-25 10:19:51 +01:00
Miroslav Stampar
6bcc95a20d
Restricting evaluated code variable names to Python valid characters ([_0-9a-zA-Z])
2015-02-24 15:05:44 +01:00
Miroslav Stampar
e35c7fbb7a
Fixes #1172
2015-02-22 13:41:54 +01:00
Bernardo Damele
475cc8b24b
trivial code cleanup
2015-02-21 13:12:30 +00:00
Bernardo Damele
383929c0c2
if the user forces the DBMS, then sort the tests accordingly to perform first the DBMS-specific tests, then the others
2015-02-21 13:12:03 +00:00
Bernardo Damele
d235ee375b
code cleanup
2015-02-21 12:59:44 +00:00
Bernardo Damele
8be24d3e9b
minor enhancement, prefer intersect() each time DBMS values are comfronted
2015-02-21 12:59:27 +00:00
Bernardo Damele
388c0dfd77
trivial layout fix
2015-02-21 12:57:49 +00:00
Bernardo Damele
52dd92748a
rework some of the logic of the detection phase based on identified DBMS along the way
2015-02-21 02:23:42 +00:00
Bernardo Damele
4f939b5719
avoid false positive message when extensive heuristic check is performed following detection of boolean blind injection detection: do only heuristic DBMS fingerprint for DBMS specific tables
2015-02-20 18:36:34 +00:00
Bernardo Damele
1ecb921ba7
Consistency in enums
2015-02-20 18:31:47 +00:00
Bernardo Damele
214b9360e9
Minor fix to check for inline query payloads regardless of previously identified payloads and code cleanup
2015-02-20 18:30:42 +00:00
Bernardo Damele
79d4d970a5
trivial code cleanup
2015-02-20 15:42:28 +00:00
Bernardo Damele
201b605f9b
Minor fix and consistency: do not ask to include all tests if level and risk are at the max settings already
2015-02-20 10:21:44 +00:00
Bernardo Damele
daa8e0d8c5
minor fix
2015-02-18 10:13:28 +00:00
Miroslav Stampar
1636088b75
Minor update
2015-02-16 11:48:53 +01:00
Bernardo Damele
e17d212c23
bug fix introduced with 863d5a6281
2015-02-15 20:07:52 +00:00
Bernardo Damele
32ab52b8ca
code refactoring: split boundaries and payloads XML files
2015-02-15 16:31:35 +00:00
Bernardo Damele
863d5a6281
--test-filter now ignores values of --risk and --level
2015-02-15 16:28:37 +00:00
Miroslav Stampar
2e5c11e427
Closes #1163
2015-02-13 10:59:03 +01:00
Miroslav Stampar
247384858e
Patch for an Issue #1159 (undo commit with single-quotes problem on windows)
2015-02-04 16:21:21 +01:00
Miroslav Stampar
38011743bb
Patch for an Issue #1157
2015-02-04 15:01:19 +01:00
Miroslav Stampar
eecc0b924b
Patch for an Issue #1148
2015-02-03 10:06:00 +01:00
Miroslav Stampar
2af2aef43e
Minor patch for masking sensitive information (when formation -u=... is used)
2015-02-03 09:48:05 +01:00
Miroslav Stampar
59f0da369d
Patch for a bug reported via ML (Accept header ignored in --headers)
2015-02-02 22:07:16 +01:00
Miroslav Stampar
8b135e45bd
Patch for an Issue #1147
2015-02-02 22:05:31 +01:00
Miroslav Stampar
bf1c08a8a6
Bug fix
2015-01-30 22:43:40 +01:00
Miroslav Stampar
2e9bf47703
Heuristic check for WAF/IDS/IPS is now prone to tamper functions (Issue #1145 )
2015-01-30 22:12:35 +01:00
Miroslav Stampar
9e90e357cf
Patch for an Issue #1146
2015-01-30 21:59:03 +01:00
Miroslav Stampar
9563e429d3
Removal of fun code
2015-01-30 21:49:22 +01:00
Miroslav Stampar
9f679a952f
Minor update
2015-01-29 10:44:36 +01:00
Miroslav Stampar
024c500d8e
Minor fix
2015-01-28 00:54:39 +01:00
Miroslav Stampar
5400bb2c95
Patch for an Issue #1142
2015-01-28 00:52:40 +01:00
Miroslav Stampar
fd632e5ada
Update for unhandled exception mechanism (BADA)
2015-01-26 09:09:38 +01:00
Miroslav Stampar
eb548959b3
Minor update
2015-01-26 08:59:10 +01:00
Miroslav Stampar
f0eac38ab4
Minor fix
2015-01-26 08:48:37 +01:00
Miroslav Stampar
32bf2dbe6d
Patch for an Issue #1133
2015-01-23 23:00:28 +01:00
Miroslav Stampar
779db7cbc3
Minor enhancement
2015-01-22 09:17:45 +01:00
Miroslav Stampar
b7cfaa6ca5
Minor style update
2015-01-22 08:55:37 +01:00
Miroslav Stampar
2655b078d0
Patch for an Issue #1127
2015-01-22 08:52:15 +01:00
Miroslav Stampar
02b3eb941f
Patch for an Issue #1124
2015-01-21 09:26:30 +01:00
Miroslav Stampar
cd743ab098
Minor update
2015-01-21 09:12:12 +01:00
Miroslav Stampar
9f4a32ca2b
Automatically checking for sitemap existence in case of --crawl
2015-01-20 10:03:35 +01:00
Miroslav Stampar
a603002acd
Adding a choice to automatically turn on --identify-waf if protection has been detected
2015-01-20 09:38:18 +01:00
Miroslav Stampar
a66b0c91bb
Patch for an Issue #1120
2015-01-19 09:19:30 +01:00
Miroslav Stampar
393659ffbf
Patch for an Issue #1121
2015-01-19 09:17:16 +01:00
Miroslav Stampar
e73ac6c8e3
Minor patch on request of an user
2015-01-17 21:47:57 +01:00
Miroslav Stampar
c2b2ccd2b5
Minor bug fix
2015-01-17 17:31:00 +01:00
Miroslav Stampar
da737d23ed
Fixing a leftover for #1117
2015-01-15 17:34:14 +01:00
Miroslav Stampar
20a9d94f56
Patch for an Issue #1117
2015-01-15 17:32:07 +01:00
Miroslav Stampar
1dd2b7aceb
Important fix for dumping location of databases/tables with international letters
2015-01-15 14:01:19 +01:00
Miroslav Stampar
ccbe424e23
Patch for an Issue #1115
2015-01-15 12:42:32 +01:00
Miroslav Stampar
54e9a1fb2d
Minor style update
2015-01-14 16:11:55 +01:00
Miroslav Stampar
570d30789b
Patch for an Issue #1113
2015-01-14 14:20:33 +01:00
nixawk
7388c3bf49
datatype.py
2015-01-14 09:40:24 +00:00
Miroslav Stampar
7e7513aa5e
Patch for an Issue #1107
2015-01-14 05:30:08 +01:00
Miroslav Stampar
f9a9ededb1
Patch for an Issue #1106
2015-01-14 05:16:32 +01:00
Miroslav Stampar
06ff8b3a16
Patch for an Issue #1105
2015-01-13 10:33:51 +01:00
Miroslav Stampar
8e03f4db0f
Patch for an Issue #1062
2015-01-09 15:33:53 +01:00
Miroslav Stampar
f96f33a984
Fix for an Issue #1100
2015-01-08 22:15:04 +01:00
Miroslav Stampar
7bcb3ce599
Patch for an Issue #1099
2015-01-08 09:22:47 +01:00
Miroslav Stampar
0c4d63fb00
Bug fix (reported by user over ML)
2015-01-08 09:00:21 +01:00
Miroslav Stampar
c8d4df6eba
Adding names to parameters in structured POST requests (e.g. JSON)
2015-01-07 22:09:40 +01:00
Miroslav Stampar
49982bce9c
Trivial update
2015-01-07 16:03:37 +01:00
Miroslav Stampar
450b3c93cb
Potential patch for an Issue #1093
2015-01-07 11:40:11 +01:00
Miroslav Stampar
30b9f3d556
Minor update
2015-01-07 10:53:57 +01:00
Miroslav Stampar
47af7dfe6a
Another minor patch
2015-01-07 10:49:15 +01:00
Miroslav Stampar
83add9fd9b
Minor patch
2015-01-07 10:46:06 +01:00
Miroslav Stampar
c4c4ac13fe
Better patch for an Issue #1095
2015-01-07 09:21:02 +01:00
Miroslav Stampar
2030311d50
Patch for an Issue #1095
2015-01-07 02:04:10 +01:00
Miroslav Stampar
5920d16cf6
Adding a warning message for deprecated switch '--check-waf+
2015-01-06 15:25:24 +01:00
Miroslav Stampar
45bdefd29b
Update of copyright
2015-01-06 15:02:16 +01:00
Miroslav Stampar
3d5ca1b25a
Minor update
2015-01-06 14:36:51 +01:00
Miroslav Stampar
6fc41ca940
Heuristically checking for WAF/IDS/IPS by default
2015-01-06 14:01:47 +01:00
Miroslav Stampar
c474c16b4a
Removing ML email address
2015-01-06 12:30:49 +01:00
Miroslav Stampar
7b144f03ea
Fix for an Issue #1092
2015-01-05 01:31:06 +01:00
Miroslav Stampar
beffe85d6c
Patch for an Issue #1085
2015-01-03 22:30:21 +01:00
Miroslav Stampar
f042a7392d
Patch for an Issue #1083
2014-12-31 17:10:45 +01:00
Miroslav Stampar
2985050fce
Minor patch
2014-12-30 16:07:08 +00:00
Miroslav Stampar
33508e3bae
Patch for an Issue #1077
2014-12-30 16:11:33 +01:00
Miroslav Stampar
41c2f889b2
Fix related to the SSLv3 disabling
2014-12-30 15:44:55 +01:00
Miroslav Stampar
d3c6cf1932
Patch for an Issue #1079
2014-12-30 14:14:47 +00:00
Miroslav Stampar
4f602daa5b
Minor patch
2014-12-30 09:35:56 +00:00
Miroslav Stampar
e383df8e29
Patch for an Issue #1073
2014-12-30 09:16:50 +00:00
Miroslav Stampar
02d20ccd13
Patch for an Issue #1078
2014-12-30 08:48:50 +00:00
Miroslav Stampar
1e014de6be
Patch for an Issue #1066
2014-12-26 22:24:28 +01:00
Miroslav Stampar
bc91884c4d
Fix for an Issue #1065
2014-12-25 23:05:34 +01:00
Miroslav Stampar
45886cb9ca
Patch for an Issue #1060
2014-12-23 22:04:23 +01:00
Miroslav Stampar
483158c371
Minor style update
2014-12-23 09:07:33 +01:00
Miroslav Stampar
3c23d616e7
Adding a more user friendly (copy-pastable) client example for sqlmapapi client
2014-12-23 09:01:29 +01:00
Miroslav Stampar
59a3407322
Patch for an Issue #1057
2014-12-23 08:36:00 +01:00
Miroslav Stampar
f93bca4564
Patch for an Issue #1058
2014-12-23 08:23:40 +01:00
Miroslav Stampar
fc7dd2a9b9
Patch for an Issue #1056
2014-12-22 06:02:39 +01:00
Miroslav Stampar
76f79ece13
run like --threads=20! will skip the maximum number of threads check
2014-12-21 05:15:42 +01:00
Miroslav Stampar
4f122ee008
Bug fix regarding a problem reported by user @blink2014
2014-12-20 00:23:31 +01:00
Miroslav Stampar
6cb76bcf85
Adding one new smart ass warning message
2014-12-19 15:48:54 +01:00
Miroslav Stampar
1ea2f5bfe2
Patch for an Issue #1052
2014-12-19 09:37:06 +01:00
Miroslav Stampar
cf3b02ee04
Proper fix for #1053
2014-12-19 09:26:01 +01:00
Miroslav Stampar
6972020faf
Bug fix for login-like SQLi (OR with 500 result)
2014-12-18 15:58:19 +01:00
Miroslav Stampar
0cb7852754
Patch for an Issue #1046
2014-12-17 10:02:36 +01:00
Miroslav Stampar
180ede0cb3
Minor patch
2014-12-15 14:07:28 +01:00
Miroslav Stampar
9d06b71862
Minor revert
2014-12-15 13:51:00 +01:00
Miroslav Stampar
e6de92ce88
Minor patch (unicode related)
2014-12-15 13:36:08 +01:00
Miroslav Stampar
35c8e016a8
Minor patch
2014-12-15 13:26:15 +01:00
Miroslav Stampar
3f3a873b10
Merge pull request #1037 from flsf/master
...
fix comments error
2014-12-15 13:23:39 +01:00
flsf
21837f236f
fix comments error
2014-12-15 20:07:38 +08:00
Miroslav Stampar
4c6331daa6
Patch for an Issue #1028
2014-12-15 09:30:54 +01:00
Miroslav Stampar
e794c7f246
Patch for an Issue #1027
2014-12-15 09:13:13 +01:00
Miroslav Stampar
eb15a19532
Patch for an Issue #1032
2014-12-15 09:11:40 +01:00
Miroslav Stampar
ecbba4ea20
Patch for an Issue #1030
2014-12-15 07:18:47 +01:00
Miroslav Stampar
e17e703e3e
Minor bug fix (for Windows nagging message about Unicode data)
2014-12-14 00:17:43 +01:00
Miroslav Stampar
fb645b90f7
Minor update
2014-12-14 00:14:18 +01:00
Miroslav Stampar
5166675ff5
Patch for an Issue #1024
2014-12-13 23:32:18 +01:00
Miroslav Stampar
9c225557d1
Patch for an Issue #1020
2014-12-13 14:08:37 +01:00
Miroslav Stampar
25196b4572
Patch for an Issue #1021
2014-12-13 13:48:50 +01:00
Miroslav Stampar
84ba5f35ac
Minor update for #1022
2014-12-13 13:41:39 +01:00
Miroslav Stampar
fe58aff26c
Patch for an Issue #1019
2014-12-13 00:08:18 +01:00
Miroslav Stampar
650dfe9526
Patch for an Issue #1018
2014-12-12 14:54:47 +01:00
Miroslav Stampar
23d33bb5b5
Patch for an Issue #1017
2014-12-12 09:58:42 +01:00
Miroslav Stampar
bb4ac41ff7
Patch for an Issue #1016
2014-12-12 04:40:44 +01:00
Miroslav Stampar
785e3d0317
Patch for an Issue #1014
2014-12-11 13:29:42 +01:00
Miroslav Stampar
1e06e7c386
Adding a debug message during name resolution
2014-12-11 13:29:26 +01:00
Miroslav Stampar
6f211f9d3e
Patch for an Issue #1013
2014-12-11 00:35:51 +01:00
Miroslav Stampar
6d13b67822
Patch for an Issue #1012
2014-12-11 00:32:26 +01:00
Miroslav Stampar
2bcaae3a0b
Another just in case update for an Issue #1011
2014-12-11 00:14:35 +01:00
Miroslav Stampar
763f720675
Patch for an Issue #1011
2014-12-11 00:11:52 +01:00
Miroslav Stampar
10ed97b0df
Patch for an Issue #1010
2014-12-10 13:50:29 +01:00
Miroslav Stampar
ee20d98bca
Minor fix for --forms
2014-12-10 12:13:37 +01:00
Miroslav Stampar
d700e50b36
Minor update related to the Issue #993
2014-12-10 06:37:17 +01:00
Miroslav Stampar
a7b21a2f62
Rerun advice update
2014-12-09 09:02:06 +01:00
Miroslav Stampar
20c272b77d
More generic patch for an Issue #994
2014-12-07 16:14:48 +01:00
Miroslav Stampar
4e7f835eae
Patch for an Issue #994
2014-12-07 16:11:07 +01:00
Miroslav Stampar
0d931a7b09
Fix for an Issue #999
2014-12-07 15:55:22 +01:00
Miroslav Stampar
bd99470a4a
Minor update to cleanup properly new xp_cmdshell
2014-12-05 22:01:59 +01:00
Miroslav Stampar
d726050bc4
Patch for an Issue #991
2014-12-05 11:46:03 +01:00
Miroslav Stampar
034fae0f47
Patch for an Issue #992
2014-12-05 11:24:43 +01:00
Miroslav Stampar
7673f3e045
Minor style update
2014-12-05 11:15:33 +01:00
Miroslav Stampar
56965e3608
Patch for an Issue #990
2014-12-04 13:36:41 +01:00
Miroslav Stampar
9b32e69f26
Adding new WAF script (UrlScan)
2014-12-04 10:06:15 +01:00
Miroslav Stampar
a3507d65fd
Minor update
2014-12-04 09:34:37 +01:00
Miroslav Stampar
d3060f20d7
Minor improvement
2014-12-03 13:22:55 +01:00
Miroslav Stampar
aa95a05477
Minor update
2014-12-03 13:14:06 +01:00
Miroslav Stampar
17db587e2c
Adding some friendly warning messages (regarding blocking)
2014-12-03 10:06:21 +01:00
Miroslav Stampar
e4b00bdbcb
Patch for an Issue #983
2014-12-02 10:57:50 +01:00
Miroslav Stampar
2358e34bb8
Minor refactoring
2014-12-02 10:50:15 +01:00
Miroslav Stampar
e03aaa7542
Patch for an Issue #982
2014-12-02 10:23:10 +01:00
Miroslav Stampar
7a04595f5e
Added a reference url (http charset priority)
2014-12-01 11:15:45 +01:00
Miroslav Stampar
f71a65a9a0
Patch for an Issue #979
2014-12-01 00:29:25 +01:00
Miroslav Stampar
56b6bf72f4
Patch for an Issue #978
2014-11-29 23:33:24 +01:00
Miroslav Stampar
605b126758
Patch for an Issue #976
2014-11-26 13:38:21 +01:00
Miroslav Stampar
8cd40f8917
Patch for an Issue #971
2014-11-25 13:54:26 +01:00
Miroslav Stampar
a0d95a8ec4
Refactoring of #952
2014-11-24 12:56:39 +01:00
Miroslav Stampar
27cd9e7064
Merge pull request #952 from Rexikon/patch-1
...
Update httpshandler.py, AttributeError PROTOCOL_SSLv3
2014-11-24 12:52:27 +01:00
Miroslav Stampar
816348f1ab
Patch for an Issue #963
2014-11-24 11:54:04 +01:00
Miroslav Stampar
05f7b1f121
Patch for an Issue #970
2014-11-24 10:55:19 +01:00
Miroslav Stampar
2f744139fc
Patch for an Issue #968
2014-11-24 10:13:56 +01:00
Miroslav Stampar
2284535267
Update for an Issue #963
2014-11-24 05:44:38 +01:00
Miroslav Stampar
69cdad4148
Patch for an Issue #958
2014-11-23 15:55:12 +01:00
Miroslav Stampar
28d6af6237
Minor update
2014-11-23 15:42:41 +01:00
Miroslav Stampar
f853f8973f
Minor refactorign
2014-11-23 15:41:24 +01:00
Miroslav Stampar
080a873922
Patch for an Issue #964
2014-11-23 15:39:08 +01:00
Miroslav Stampar
5c182a0ec4
Update for an Issue #431
2014-11-21 11:33:57 +01:00
Miroslav Stampar
f0802c6fb9
Update for an Issue #431
2014-11-21 11:20:54 +01:00
Miroslav Stampar
1fc4d0e3c4
Update for an Issue #431
2014-11-21 10:31:55 +01:00
Miroslav Stampar
cf2d5fd453
Update for an Issue #431
2014-11-21 09:41:49 +01:00
Miroslav Stampar
34ce774acd
Patch for an Issue #956
2014-11-21 09:41:49 +01:00
Miroslav Stampar
1a8b58fca6
Minor update
2014-11-20 16:42:06 +01:00
Miroslav Stampar
f8a8cbf9a6
Storing crawling results to a temporary file (for eventual further processing)
2014-11-20 16:29:17 +01:00
Miroslav Stampar
d3551631c4
Minor update
2014-11-20 16:10:25 +01:00
Miroslav Stampar
484fa61afc
Patch for an Issue #954
2014-11-20 15:08:08 +01:00
Miroslav Stampar
ee8b3ee664
Patch for an Issue #953
2014-11-20 09:49:04 +01:00
Rexikon
4da20679ee
Update httpshandler.py
...
ssl.PROTOCOL_SSLv3 removed
affecting error: AttributeError: 'module' object has no attribute 'PROTOCOL_SSLv3'
2014-11-19 16:36:30 +01:00
Miroslav Stampar
05d5342f20
Update and patch for an Issue #2
2014-11-17 11:50:05 +01:00
Miroslav Stampar
733e06e31f
Patch for an Issue #944
2014-11-16 14:25:44 +01:00
Miroslav Stampar
bb56eb583a
Minor update
2014-11-16 13:34:35 +01:00
Miroslav Stampar
d8d9678947
Patch for an Issue #935
2014-11-14 00:21:04 +01:00
Miroslav Stampar
74eacf95fd
Patch for an Issue #929
2014-11-13 10:52:33 +01:00
Miroslav Stampar
671facc6d9
Patch for an Issue #930
2014-11-13 10:28:38 +01:00
Miroslav Stampar
d0afa7f325
Bug fix for not displaying proper version in unhandled exception win cases
2014-11-12 11:53:42 +01:00
Miroslav Stampar
06e6d2aaeb
Patch for an Issue #921
2014-11-11 11:38:14 +01:00
Miroslav Stampar
c5df45a14f
Minor bug fix (skipping HTML decoding in heuristic mode)
2014-11-11 11:23:14 +01:00
Miroslav Stampar
dfa8e0456d
Potential patch for an Issue #914
2014-11-10 14:51:31 +01:00
Miroslav Stampar
cdbfb17408
Patch for an Issue #919
2014-11-10 13:41:53 +01:00
Miroslav Stampar
06bb957d13
Preventing a run of duplicate issues
2014-11-09 22:07:11 +01:00
Miroslav Stampar
de1cf26fe6
Minor patch
2014-11-09 18:58:25 +01:00
Miroslav Stampar
80af465ce3
Fix for an Issue #911
2014-11-09 18:40:49 +01:00
Miroslav Stampar
9fe6ab749b
Bug fix for occureance of ANSI color codes in multiprocessing hash cracking on Windows OS
2014-11-09 15:08:44 +01:00
Miroslav Stampar
62a73bf30b
Minor fix for automatic removal of temporary files
2014-11-09 14:52:50 +01:00
Miroslav Stampar
5e9c73f9c1
Just in case update (for unhandled exceptions happening too soon)
2014-11-08 21:44:46 +01:00
Miroslav Stampar
3b06665c9f
Patch for an Issue #910
2014-11-08 21:22:03 +01:00
Miroslav Stampar
8fdf9ff746
Probable fix for an Issue #908
2014-11-07 15:47:42 +01:00
Miroslav Stampar
31f8d6e612
Fix for an Issue #904
2014-11-06 11:19:05 +01:00
Miroslav Stampar
a91fb4149b
Minor update (using lower frequency alphabet for kb.chars)
2014-11-05 10:56:30 +01:00
Miroslav Stampar
a074efe75e
Minor improvement of error-based SQLi when trimmed output is detected (trying to reconstruct)
2014-11-05 10:46:11 +01:00
Miroslav Stampar
71c43be53a
Patch for an Issue #901
2014-11-05 10:03:19 +01:00
Miroslav Stampar
78cc3853b6
Fix for an Issue #902
2014-11-05 09:56:50 +01:00
Miroslav Stampar
97cc679f9c
Fix for an Issue #900
2014-11-04 15:15:58 +01:00
Miroslav Stampar
4d5b48b2ae
Patch for an Issue #896
2014-11-04 00:34:35 +01:00
Miroslav Stampar
6f45596f28
Minor style update
2014-11-03 23:48:44 +01:00
Miroslav Stampar
05b446b95d
Patch for an Issue #893
2014-11-02 23:38:52 +01:00
Miroslav Stampar
9652e41226
Path for an Issue #891
2014-11-02 23:32:19 +01:00
Miroslav Stampar
1ef2c4006d
Patch for an Issue #892
2014-11-02 11:01:46 +01:00
Miroslav Stampar
a4d058d70c
More anonymization of unhanded exception data
2014-11-02 10:55:38 +01:00
Miroslav Stampar
baf9ada28d
Fix for an Issue #889
2014-11-01 17:13:33 +01:00
Miroslav Stampar
4e0e64d06b
Bug fix for DNS Exfiltration in PgSQL case ('invalid URI')
2014-10-31 20:28:37 +01:00
Miroslav Stampar
49d3860b1f
Minor fix
2014-10-31 20:22:15 +01:00
Miroslav Stampar
ab269f315f
Fix for an Issue #886
2014-10-31 18:58:30 +01:00
Miroslav Stampar
c33e493e0d
Fix for an Issue #885
2014-10-31 17:06:09 +01:00
Miroslav Stampar
38978c3e54
Fix for an Issue #884
2014-10-31 16:45:26 +01:00
Miroslav Stampar
0feb379b47
Fix for an Issue #887
2014-10-31 16:39:29 +01:00
Miroslav Stampar
5b0d74146e
Fix for an Issue #883
2014-10-31 01:01:35 +01:00
Miroslav Stampar
8ea22c5124
Fix for an Issue #878
2014-10-28 15:34:53 +01:00
Miroslav Stampar
455ea9922c
Minor update
2014-10-28 15:26:28 +01:00
Miroslav Stampar
258a700b2e
More anonymization of unhandled exception messages
2014-10-28 15:14:41 +01:00
Miroslav Stampar
df73be32f1
Fix for an Issue #876
2014-10-28 14:41:21 +01:00
Miroslav Stampar
725c3a6a95
Minor update
2014-10-28 14:08:06 +01:00
Miroslav Stampar
3b3b8d4ef2
Potential bug fix (escaping formatted regular expressions)
2014-10-28 14:02:55 +01:00
Miroslav Stampar
268e774087
Minor refactoring
2014-10-28 13:44:55 +01:00
Miroslav Stampar
f89e94fb8c
Minor refactoring
2014-10-28 13:42:13 +01:00
Miroslav Stampar
e08c8f272a
Fix for an Issue #875
2014-10-28 13:10:07 +01:00
Miroslav Stampar
19aed90ae5
Implementation for an Issue #874
2014-10-27 00:37:46 +01:00
Miroslav Stampar
6448d3caf4
Implementing support for csrfcookie (Issue #2 )
2014-10-24 09:37:51 +02:00
Miroslav Stampar
5e31229d48
Minor cosmetic update
2014-10-23 15:18:22 +02:00
Miroslav Stampar
abbd352392
Support for X-CSRF-TOKEN header (Issue #2 )
2014-10-23 14:33:22 +02:00
Miroslav Stampar
95f2e61ca1
Minor fix related to the Issue #2
2014-10-23 14:23:01 +02:00
Miroslav Stampar
01f4b76817
Minor update for the Issue #2
2014-10-23 14:03:44 +02:00
Miroslav Stampar
7143e61619
Minor update
2014-10-23 14:00:53 +02:00
Miroslav Stampar
32bcca0aae
Basic options check for Issue #2
2014-10-23 11:54:29 +02:00
Miroslav Stampar
7fc9e82d28
Minor style update
2014-10-23 11:44:38 +02:00
Miroslav Stampar
780dbd1c64
Update for an Issue #2
2014-10-23 11:42:30 +02:00
Miroslav Stampar
a52c8811e6
Minor style update
2014-10-23 11:25:44 +02:00
Miroslav Stampar
fc1b05bec9
Implementation for an Issue #2
2014-10-23 11:23:53 +02:00
Miroslav Stampar
8dcad46805
Update basic.py
2014-10-22 23:16:46 +02:00
Miroslav Stampar
73a3db67eb
Fix for an Issue #862
2014-10-22 14:54:49 +02:00
Miroslav Stampar
60f2764c3d
Minor style update
2014-10-22 13:53:18 +02:00
Miroslav Stampar
34aed7cde0
Bug fix (now it's possible to use multiple parsed requests without mixing associated headers)
2014-10-22 13:49:29 +02:00
Miroslav Stampar
2f18df345e
Minor patch
2014-10-22 13:41:36 +02:00
Miroslav Stampar
268095495e
Minor patch
2014-10-22 13:32:49 +02:00
Miroslav Stampar
e239fefe67
Minor patch for JSON requests
2014-10-22 10:38:49 +02:00
Miroslav Stampar
a2f578dbf4
Patch to also include JSON array elements into automatic recognition
2014-10-22 10:28:10 +02:00
Miroslav Stampar
3ebc5faa34
Falling back to partial UNION if large dump connects out
2014-10-21 09:23:34 +02:00
Miroslav Stampar
006d9d1859
Bug fix for a problem reported by a user via ML (--os-shell)
2014-10-13 12:00:34 +02:00
Miroslav Stampar
fb65caabd2
Unhidding switch --ignore-401
2014-10-13 09:19:25 +02:00
Miroslav Stampar
4e3a4eb0ff
Added a prompt for choosing a number of threads when in crawling mode
2014-10-10 12:09:08 +02:00
Miroslav Stampar
2aadfc0fd3
Fix for an Issue #851
2014-10-10 10:38:17 +02:00
Miroslav Stampar
d4610890ca
Minor patch (flushing log file output at the end of program run)
2014-10-10 10:07:17 +02:00
Miroslav Stampar
7811a958ae
Another minor patch for Issue #846
2014-10-09 15:42:44 +02:00
Miroslav Stampar
f94ac8c69d
Second patch related to the Issue #846
2014-10-09 15:21:26 +02:00
Miroslav Stampar
c823c58d47
One patch related to the Issue #846
2014-10-09 14:39:54 +02:00
Miroslav Stampar
70215a95a1
Patch for an Issue #847
2014-10-07 13:02:47 +02:00
Miroslav Stampar
c6a8feea8a
Fix for an Issue #831
2014-10-07 12:00:11 +02:00
Miroslav Stampar
2ab4558859
Potential fix for an Issue #846
2014-10-07 11:49:53 +02:00
Miroslav Stampar
ddfec1c668
Initial patch for an Issue #846
2014-10-07 11:34:47 +02:00
Miroslav Stampar
2de12ef4a2
Potential fix for an Issue #843
2014-10-05 00:20:42 +02:00
Miroslav Stampar
fdef53aa67
Minor update of unhandled exception message
2014-10-01 14:23:45 +02:00
Miroslav Stampar
a2b059123a
Minor update of format exception strings
2014-10-01 14:12:30 +02:00
Miroslav Stampar
e81168af0f
Minor adjustment
2014-10-01 13:59:51 +02:00
Miroslav Stampar
f67a38dba9
Minor adjustment
2014-10-01 13:42:10 +02:00
Miroslav Stampar
a9454fbb43
Minor commit related to the last one (bypassing DBMS error trimming problem)
2014-10-01 13:35:20 +02:00
Miroslav Stampar
8c9014c39f
Adding a dummy (auxiliary) XSS check
2014-10-01 13:31:48 +02:00
Miroslav Stampar
4d23744430
Bug fix (there was a problem using --tamper=varnish with --identify-waf because of same named modules)
2014-09-30 09:58:02 +02:00
Miroslav Stampar
ff42720c62
Minor fix
2014-09-29 14:07:59 +02:00
Miroslav Stampar
1e636fb925
Minor patch regarding Issue #840
2014-09-28 13:38:09 +02:00
Miroslav Stampar
767c278a0f
Fix for an Issue #838
2014-09-26 17:00:50 +02:00