Miroslav Stampar
|
b1babeefe5
|
update regarding dumping of tables with blind on Sqlite
|
2010-12-11 22:00:16 +00:00 |
|
Miroslav Stampar
|
f7344a5fc3
|
update
|
2010-12-11 21:28:11 +00:00 |
|
Miroslav Stampar
|
6a24048aa6
|
urllib2 doesn't play well with '\n' when non unescaped chars used
|
2010-12-11 21:17:54 +00:00 |
|
Miroslav Stampar
|
e6c66fa37c
|
update regarding expectingNone in fingerprinting mode to cancel drop down to other techniques available
|
2010-12-11 17:55:28 +00:00 |
|
Miroslav Stampar
|
e32fa9df43
|
further update regarding bugtrace's report
|
2010-12-11 17:32:15 +00:00 |
|
Miroslav Stampar
|
5d18c98ec2
|
quick fix for a bug reported by bugtrace (not using __goBooleanProxy because we don't have a proper vector this moment)
|
2010-12-11 17:20:39 +00:00 |
|
Miroslav Stampar
|
03447acc1d
|
avoiding some trashy match ratios
|
2010-12-11 17:12:19 +00:00 |
|
Miroslav Stampar
|
d2a3e8f44f
|
first time firebird error-based query success
|
2010-12-11 11:17:24 +00:00 |
|
Miroslav Stampar
|
acc7d6d40c
|
fix
|
2010-12-11 11:03:32 +00:00 |
|
Miroslav Stampar
|
f021548bd0
|
added inference failsafe (like in for instance Firebirds SUBSTR always returns a string value, no matter which starting index you use)
|
2010-12-11 10:52:04 +00:00 |
|
Miroslav Stampar
|
c17f444aab
|
minor fix
|
2010-12-11 10:22:18 +00:00 |
|
Miroslav Stampar
|
1beb1dd2cc
|
minor update
|
2010-12-11 09:30:38 +00:00 |
|
Miroslav Stampar
|
3dc0a51d34
|
major bug fix with boolean expressions
|
2010-12-11 08:46:19 +00:00 |
|
Miroslav Stampar
|
ac9080c07b
|
update
|
2010-12-11 08:24:29 +00:00 |
|
Miroslav Stampar
|
66db80804d
|
fix
|
2010-12-10 16:03:32 +00:00 |
|
Miroslav Stampar
|
435f48b8cc
|
polite cosmetics
|
2010-12-10 15:28:56 +00:00 |
|
Miroslav Stampar
|
977988c0ab
|
cosmetics
|
2010-12-10 15:24:25 +00:00 |
|
Miroslav Stampar
|
fa8d378e80
|
another update
|
2010-12-10 15:18:15 +00:00 |
|
Miroslav Stampar
|
1ef44cfe60
|
fix
|
2010-12-10 15:06:53 +00:00 |
|
Miroslav Stampar
|
fe186cde55
|
proper fix
|
2010-12-10 13:26:31 +00:00 |
|
Miroslav Stampar
|
9957881040
|
you won't believe commit
|
2010-12-10 13:20:59 +00:00 |
|
Bernardo Damele
|
7c87ad4065
|
Minor speedup in -f mysql
|
2010-12-10 13:05:46 +00:00 |
|
Miroslav Stampar
|
b02bd55edc
|
minor refactoring
|
2010-12-10 13:04:36 +00:00 |
|
Miroslav Stampar
|
1fc9ed10a8
|
minor refactoring
|
2010-12-10 12:30:36 +00:00 |
|
Miroslav Stampar
|
4d8628e8fb
|
fix for booleans
|
2010-12-10 12:26:01 +00:00 |
|
Miroslav Stampar
|
fe2039f5ba
|
coollyy little commits
|
2010-12-10 11:32:46 +00:00 |
|
Bernardo Damele
|
d71e51e765
|
Minor improvement
|
2010-12-10 11:31:27 +00:00 |
|
Bernardo Damele
|
4741874e9e
|
Enhancement to speedup MySQL fingerprint
|
2010-12-10 11:27:36 +00:00 |
|
Miroslav Stampar
|
e98b81fe32
|
another update
|
2010-12-10 10:56:55 +00:00 |
|
Miroslav Stampar
|
d5e7a8d305
|
update
|
2010-12-10 10:54:17 +00:00 |
|
Bernardo Damele
|
b6dcbcef5b
|
Minor fix
|
2010-12-10 10:52:55 +00:00 |
|
Miroslav Stampar
|
471d9ccd65
|
another fix of my lala
|
2010-12-10 10:11:25 +00:00 |
|
Miroslav Stampar
|
029a6abba2
|
quick fix
|
2010-12-10 09:54:25 +00:00 |
|
Miroslav Stampar
|
441fc8dbd9
|
update regarding boolean based expressions
|
2010-12-09 21:15:18 +00:00 |
|
Miroslav Stampar
|
d5fb921154
|
removed debug print
|
2010-12-09 20:08:59 +00:00 |
|
Miroslav Stampar
|
1492823de0
|
it wasn't pretty, now it's pretty
|
2010-12-09 20:06:20 +00:00 |
|
Miroslav Stampar
|
bbffea2cbc
|
bug fix
|
2010-12-09 17:10:22 +00:00 |
|
Miroslav Stampar
|
0eb2c408a9
|
code refactoring
|
2010-12-09 16:49:02 +00:00 |
|
Miroslav Stampar
|
7e2984b4b6
|
added stacked query support for Oracle
|
2010-12-09 15:24:48 +00:00 |
|
Bernardo Damele
|
4bb40c0a06
|
Higher the level for Oracle stacked tests just in case the SQL inj is within a PL/SQL function ('cause of no support for stacked queries by design on Oracle)
|
2010-12-09 15:14:18 +00:00 |
|
Miroslav Stampar
|
d8edc5b244
|
adding stacked-query vector for Firebird
|
2010-12-09 15:11:21 +00:00 |
|
Bernardo Damele
|
13b522efc2
|
Added error-based support for MySQL < 5.0 - closes #14
|
2010-12-09 15:09:03 +00:00 |
|
Miroslav Stampar
|
5aafd19957
|
added vector for SQLite's stacked query payload
|
2010-12-09 15:06:40 +00:00 |
|
Bernardo Damele
|
df5f6bc1b7
|
Little precaution
|
2010-12-09 14:06:43 +00:00 |
|
Bernardo Damele
|
9230877d98
|
cosmetics
|
2010-12-09 13:57:38 +00:00 |
|
Miroslav Stampar
|
5114c887ea
|
minor minor update
|
2010-12-09 13:51:44 +00:00 |
|
Bernardo Damele
|
5fb04515d3
|
Added hidden (for the moment) switch --technique
|
2010-12-09 13:47:17 +00:00 |
|
Miroslav Stampar
|
b80a86a669
|
that's it for common stuff today
|
2010-12-09 12:59:22 +00:00 |
|
Miroslav Stampar
|
b26e09fc71
|
another minor update
|
2010-12-09 12:49:29 +00:00 |
|
Miroslav Stampar
|
f712d2477e
|
removed duplicate entries inside common wordlists (tables & columns) and added a script which does that automatically
|
2010-12-09 12:41:16 +00:00 |
|