Miroslav Stampar
|
61120b0bac
|
minor comment added
|
2010-09-09 14:08:53 +00:00 |
|
Miroslav Stampar
|
1b3d287a09
|
fix for a bug reported by shaohua pan (and one other bug)
|
2010-09-07 10:21:42 +00:00 |
|
Miroslav Stampar
|
e810fe7b0b
|
no need for obsolete (and hard to find) sqlite module when sqlite3 handles both database versions
|
2010-08-31 13:37:53 +00:00 |
|
Miroslav Stampar
|
f5953bacc0
|
fix for direct connection parsing (now on windows machines python sqlmap.py -d access://C:\testdb.mdb is valid, while before it wasn't)
|
2010-08-30 16:35:28 +00:00 |
|
Miroslav Stampar
|
48cc87f6a9
|
added support for fingerprinting SAP MaxDB (Issue 143)
|
2010-08-30 13:29:19 +00:00 |
|
Miroslav Stampar
|
2cd8f31003
|
some doc test samples included
|
2010-08-20 21:27:47 +00:00 |
|
Miroslav Stampar
|
4edf6ebe00
|
update for smoke tests
|
2010-08-20 21:01:51 +00:00 |
|
Miroslav Stampar
|
8aa12db425
|
added option --proxy-cred for setting proxy credentials (Feature #195)
|
2010-08-18 22:45:00 +00:00 |
|
Miroslav Stampar
|
70197affa0
|
little update (--ratio has a bigger priority then resumed value)
|
2010-08-10 19:57:59 +00:00 |
|
Miroslav Stampar
|
057ec8a6b2
|
added --ratio option for direct manipulation of conf.matchRatio parameter
|
2010-08-10 19:53:29 +00:00 |
|
Miroslav Stampar
|
02523dbfb5
|
fix of fix
|
2010-08-09 22:13:56 +00:00 |
|
Miroslav Stampar
|
6eab7997d1
|
fix for bug reported by dragoun dash (TypeError: sequence item 0: expected string, NoneType found)
|
2010-08-08 22:25:33 +00:00 |
|
Miroslav Stampar
|
e0fe5d1504
|
bug fix for error reported by Marek Sarvas (error data)
|
2010-08-08 21:48:22 +00:00 |
|
Miroslav Stampar
|
0cab4a5355
|
fix for bug reported by m4l1c3 (UnicodeEncodeError)
|
2010-08-08 21:22:37 +00:00 |
|
Miroslav Stampar
|
7dcc2031ac
|
smoke test adjustments
|
2010-07-30 12:57:58 +00:00 |
|
Miroslav Stampar
|
092829c189
|
implemented basic smoke testing mechanism
|
2010-07-30 12:49:25 +00:00 |
|
Miroslav Stampar
|
28d9115373
|
fix for Feature #187 (Skip duplicates parameters in -g)
|
2010-07-29 20:01:04 +00:00 |
|
Bernardo Damele
|
49af0c43a5
|
Forgot
|
2010-07-01 15:26:18 +00:00 |
|
Miroslav Stampar
|
9d28ae23ca
|
fixup for situations with unexpected LENGTHs in multithreaded mode (e.g. UTF8 data retrieval)
|
2010-07-01 14:11:45 +00:00 |
|
Bernardo Damele
|
24428c1a1b
|
Added warning message if both --proxy and --keep-alive are provided
|
2010-06-30 11:41:42 +00:00 |
|
Bernardo Damele
|
d40a238335
|
Make --keep-alive public
|
2010-06-30 11:29:35 +00:00 |
|
Bernardo Damele
|
8625763c07
|
Minor code refactoring
|
2010-06-30 11:22:25 +00:00 |
|
Bernardo Damele
|
c33f3ef844
|
Minor adjustment to HTTP headers handling
|
2010-06-29 23:51:44 +00:00 |
|
Bernardo Damele
|
fb9f669544
|
More verbose comments
|
2010-06-29 21:10:33 +00:00 |
|
Bernardo Damele
|
8576817a2b
|
Added support for SOAP requests: fixed, extended and tested a user's patch - closes #196.
|
2010-06-29 21:07:23 +00:00 |
|
Bernardo Damele
|
ea45d75f2d
|
Major bug fix to parse and store all HTTP headers from the request file (-r)
|
2010-06-29 21:06:03 +00:00 |
|
Bernardo Damele
|
7cad3cbda6
|
Minor code refactoring
|
2010-06-28 13:47:20 +00:00 |
|
Miroslav Stampar
|
ccfc9b0fec
|
fix for that bug linux man reported (UnicodeEncodeError inside raw_input)
|
2010-06-23 07:30:15 +00:00 |
|
Bernardo Damele
|
17e228024b
|
Minor enhancements and bug fixes to "good samaritan" feature - see #4
|
2010-06-21 14:40:12 +00:00 |
|
Bernardo Damele
|
fd76f048b6
|
Added common pattern value support to bisection algorithm
|
2010-06-17 11:38:32 +00:00 |
|
Bernardo Damele
|
9bce22683b
|
Minor bug fix and adjustment to deal with Keep-Alive also against Google (-g)
|
2010-06-11 10:08:19 +00:00 |
|
Bernardo Damele
|
c23ea4c749
|
--keep-alive is not compatible with --proxy
|
2010-06-10 21:19:45 +00:00 |
|
Bernardo Damele
|
75dc44deb8
|
Minor adjustments
|
2010-06-10 15:34:28 +00:00 |
|
Bernardo Damele
|
d3c8e461cf
|
Minor layout adjustments
|
2010-06-10 14:14:56 +00:00 |
|
Miroslav Stampar
|
ac55e1b75f
|
fix for localhost firebird direct db access
|
2010-06-10 12:02:48 +00:00 |
|
Miroslav Stampar
|
c398353e06
|
support for loading 'faulty character set' session files
|
2010-06-09 16:07:47 +00:00 |
|
Miroslav Stampar
|
38e5e342f8
|
added prettyprint module with fixed toprettyxml() method
|
2010-06-07 09:03:03 +00:00 |
|
Miroslav Stampar
|
9e76b847b3
|
fix regarding bug discovered by Andreas Constantinides
|
2010-06-04 17:07:17 +00:00 |
|
Miroslav Stampar
|
464f171a8c
|
added reusage of xml output and removed toprettyxml which has lots and lots of problems (output once stored is not usable any more from any xml parser/reader because it adds whitespaces all over the output just to be more 'human' readable)
|
2010-06-03 07:36:30 +00:00 |
|
Miroslav Stampar
|
c470255c18
|
minor update
|
2010-06-02 14:56:39 +00:00 |
|
Miroslav Stampar
|
12a5ec9f3d
|
more unicode refactoring
|
2010-06-02 12:45:40 +00:00 |
|
Miroslav Stampar
|
2fb8bf3b6a
|
more dump/unicode cleanup
|
2010-06-02 12:31:36 +00:00 |
|
Bernardo Damele
|
64ad3b03be
|
Minor bug fix
|
2010-06-02 11:01:41 +00:00 |
|
Miroslav Stampar
|
17e0e83990
|
minor unimportant update
|
2010-06-02 08:34:57 +00:00 |
|
Miroslav Stampar
|
32a0ba9296
|
fixing unicode mess
|
2010-06-02 08:28:38 +00:00 |
|
Miroslav Stampar
|
eb94edc48c
|
added keepalive module
|
2010-06-01 12:21:10 +00:00 |
|
Bernardo Damele
|
6df2d98fc9
|
Minor bug fix in common.py goGoodSamaritan().
Minor code cleanup and adjustments.
|
2010-05-31 15:05:29 +00:00 |
|
Miroslav Stampar
|
db7ede96fd
|
more updates/fixes
|
2010-05-31 11:11:53 +00:00 |
|
Miroslav Stampar
|
4bb5885413
|
some changes regarding --common-outputs feature
|
2010-05-31 09:41:41 +00:00 |
|
Miroslav Stampar
|
0450df8a77
|
added kb.cache for storing cached results (e.g. kb.cache.regex for storing compiled regular expressions and kb.cache.md5 for storing precalculated MD5 values during '--users --common-prediction' session)
|
2010-05-31 08:13:08 +00:00 |
|
Bernardo Damele
|
b798222dd7
|
Minor fixes
|
2010-05-30 14:53:13 +00:00 |
|
Bernardo Damele
|
89c721a451
|
More replacements from open() to codecs.open(). conf.dataEncoding has to be used only for non-binary files.
|
2010-05-29 10:10:28 +00:00 |
|
Miroslav Stampar
|
a4155269c5
|
bug fix (unicode(unicode) results in “TypeError: decoding Unicode is not supported” (http://www.red-mercury.com/blog/eclectic-tech/python-mystery-of-the-day/)
|
2010-05-29 07:25:38 +00:00 |
|
Bernardo Damele
|
e811101dce
|
Minor bug fix
|
2010-05-28 23:39:52 +00:00 |
|
Bernardo Damele
|
10521b68eb
|
Major bug fix in multipartpost and minor adjustments elsewhere
|
2010-05-28 23:12:20 +00:00 |
|
Bernardo Damele
|
06af405efd
|
Adapted and merged in patch to support XML output (-x switch) - still in beta.
Minor bug fixes and adjustments.
|
2010-05-28 16:43:04 +00:00 |
|
Bernardo Damele
|
a138dbe5f6
|
Minor bug fixes and code refactoring
|
2010-05-28 15:57:43 +00:00 |
|
Miroslav Stampar
|
919a8345d6
|
minor fix
|
2010-05-28 15:30:02 +00:00 |
|
Miroslav Stampar
|
ad3c425a18
|
quick fix
|
2010-05-28 15:26:55 +00:00 |
|
Miroslav Stampar
|
accaf0b3bd
|
minor refactoring
|
2010-05-28 14:07:48 +00:00 |
|
Miroslav Stampar
|
0f5768cddf
|
more and more fixes
|
2010-05-28 14:04:34 +00:00 |
|
Miroslav Stampar
|
a3db3c03c1
|
str() -> unicode()
|
2010-05-28 13:05:02 +00:00 |
|
Miroslav Stampar
|
f24187f251
|
few fixes here and there
|
2010-05-28 12:47:03 +00:00 |
|
Bernardo Damele
|
f26de89216
|
Minor bug fix to correctly deal with unicode queries with -d
|
2010-05-28 11:32:10 +00:00 |
|
Miroslav Stampar
|
f36e093fa7
|
minor update
|
2010-05-28 09:13:50 +00:00 |
|
Bernardo Damele
|
9de1671b8f
|
Code refactoring and minor bug fixes.
|
2010-05-27 16:45:09 +00:00 |
|
Miroslav Stampar
|
c431a74d9e
|
minor fix/adjustment regarding getCompiledRegex
|
2010-05-27 11:52:18 +00:00 |
|
Miroslav Stampar
|
ce29c841cf
|
some comments added
|
2010-05-26 11:14:22 +00:00 |
|
Miroslav Stampar
|
1a3dfd8ced
|
some more changes
|
2010-05-26 11:01:26 +00:00 |
|
Miroslav Stampar
|
bbdbe44e3f
|
fuck yea, first tests (MySQL/--tables & --common-prediction) are great :)
|
2010-05-26 10:41:37 +00:00 |
|
Miroslav Stampar
|
7f0db26e99
|
more code updates regarding good samaritan (common output) feature
|
2010-05-26 09:48:20 +00:00 |
|
Miroslav Stampar
|
8ed76b3024
|
minor update regarding good samaritan
|
2010-05-25 14:51:02 +00:00 |
|
Miroslav Stampar
|
065d5b02ec
|
added singleValue parameter for good samaritan (same thing Bernardo wanted :)
|
2010-05-25 13:51:03 +00:00 |
|
Miroslav Stampar
|
056d1ad76e
|
new commit regarding good samaritan feature
|
2010-05-25 13:06:23 +00:00 |
|
Miroslav Stampar
|
dc83f794ea
|
fix regarding proper string isinstance checking (including unicode)
|
2010-05-25 10:09:35 +00:00 |
|
Miroslav Stampar
|
1f07db875d
|
fix for that float() report from Shaohua Pan
|
2010-05-24 20:12:37 +00:00 |
|
Bernardo Damele
|
a43eb64c5d
|
Minor refactoring
|
2010-05-24 15:46:12 +00:00 |
|
Miroslav Stampar
|
0197f8db5c
|
code refactoring regarding issue #184
|
2010-05-24 11:12:40 +00:00 |
|
Miroslav Stampar
|
e9be60e1ac
|
added support for proper unicode session(s) storage/retrieval
|
2010-05-24 11:00:49 +00:00 |
|
Bernardo Damele
|
03fb84e29f
|
Minor enhancement to internal --profile function
|
2010-05-21 15:06:05 +00:00 |
|
Miroslav Stampar
|
5d5ebd49b6
|
introducing regex caching mechanism
|
2010-05-21 14:42:59 +00:00 |
|
Bernardo Damele
|
7ee20480a4
|
Added a TODO note
|
2010-05-21 13:24:23 +00:00 |
|
Bernardo Damele
|
319adef8c4
|
Minor adjustment
|
2010-05-21 13:19:50 +00:00 |
|
Miroslav Stampar
|
050015d2bb
|
minor adjustments
|
2010-05-21 13:15:21 +00:00 |
|
Miroslav Stampar
|
5a5b31ad53
|
minor code adjustment
|
2010-05-21 13:03:57 +00:00 |
|
Miroslav Stampar
|
64f2afe585
|
in a mood for more changes
|
2010-05-21 12:44:09 +00:00 |
|
Miroslav Stampar
|
78547bb79e
|
quick fix
|
2010-05-21 12:19:20 +00:00 |
|
Bernardo Damele
|
a21a7fc56d
|
Minor code refactoring
|
2010-05-21 12:09:31 +00:00 |
|
Miroslav Stampar
|
9b91b30b69
|
minor refactoring
|
2010-05-21 10:41:30 +00:00 |
|
Miroslav Stampar
|
5f44696530
|
changes regarding putting of gprof2dot script inside extras and its usage
|
2010-05-21 10:30:11 +00:00 |
|
Miroslav Stampar
|
68e13c3872
|
periodical commit
|
2010-05-21 09:35:36 +00:00 |
|
Bernardo Damele
|
9c1d82c9f7
|
Minor bug fix to --proxy with HTTPS target on Python 2.6 - fixes #191.
|
2010-05-20 10:52:14 +00:00 |
|
Bernardo Damele
|
e0e2349529
|
Refactor to --search -C and minor bug fix - See #190.
|
2010-05-17 16:16:49 +00:00 |
|
Miroslav Stampar
|
19a82e151c
|
minor cleanup
|
2010-05-14 14:03:33 +00:00 |
|
Miroslav Stampar
|
7107e8fd6a
|
optimization of CPU intensive sanitizeAsciiString
|
2010-05-14 13:55:25 +00:00 |
|
Miroslav Stampar
|
5396f13bab
|
added CPU throttling for lowering sqlmap's CPU intensivity
|
2010-05-13 15:19:28 +00:00 |
|
Miroslav Stampar
|
ca3e12ae73
|
added calculateDeltaSeconds method for dealing with non-deterministic time behaviour in some cases (e.g. WAITFOR DELAY in case of MSSQL)
|
2010-05-13 11:05:35 +00:00 |
|
Miroslav Stampar
|
893bc04fe4
|
changes regarding Feature #157 (Evaluate BETWEEN for inference algorithm)
|
2010-05-12 11:30:32 +00:00 |
|
Miroslav Stampar
|
1a8beebc8c
|
minor fix
|
2010-05-11 13:55:30 +00:00 |
|
Miroslav Stampar
|
1e5ecbaa97
|
speedup of initial session file handling
|
2010-05-11 13:36:30 +00:00 |
|