Commit Graph

5917 Commits

Author SHA1 Message Date
Miroslav Stampar
6058eecba0 Adding WAF script for WebKnight 2013-02-21 21:04:49 +01:00
stamparm
3a8c0cd3a2 Minor style update 2013-02-21 14:52:56 +01:00
stamparm
fc554e5b99 Update for an doc/THANKS (Issue #290) 2013-02-21 14:51:04 +01:00
stamparm
29ba43ee6c Unhidding switch '--identify-waf' (Issue #290) 2013-02-21 14:48:19 +01:00
stamparm
08f0670aca Minor refactoring for an Issue #290 2013-02-21 14:39:22 +01:00
stamparm
8e49872d7c Finalizing implementation for an Issue #290 2013-02-21 14:33:12 +01:00
stamparm
6a2129268d Update of year in COPYING file 2013-02-21 12:48:12 +01:00
stamparm
6b2981ef4e Update for an Issue #290 (adding tamper-like scripts into (new) directory waf) 2013-02-21 11:14:57 +01:00
Miroslav Stampar
f593e1d30f Reverting last commit as there is bunch of similar 2013-02-20 17:35:36 +01:00
stamparm
e2b7384921 Adding a new test case (--sql-query) 2013-02-20 14:10:39 +01:00
stamparm
ba015608c6 Update for special cases 2013-02-19 10:12:47 +01:00
stamparm
69063947b6 Debug message should go with logging.DEBUG 2013-02-19 09:46:51 +01:00
Bernardo Damele
d7247a51ee do not prompt constantly if the page is not found 2013-02-18 18:08:20 +00:00
Miroslav Stampar
6c8e8e2a0f Minor fix 2013-02-18 15:23:55 +01:00
Miroslav Stampar
7f293afe74 Proper escaping for SQL identificators in Oracle (also, revert for 9b5f33560b) 2013-02-18 15:18:53 +01:00
Miroslav Stampar
f817105db3 Minor bug fix 2013-02-18 14:40:39 +01:00
Miroslav Stampar
75a9404cb5 Bug fix (unenclosed 'SELECT * FROM user' returns result for a system function user <- previous results were illegal) 2013-02-18 14:15:48 +01:00
Miroslav Stampar
5c099efccc Fix for an Issue #401 2013-02-18 11:38:18 +01:00
Bernardo Damele
6bacbdb031 Merge branch 'master' of github.com:sqlmapproject/sqlmap 2013-02-15 17:12:09 +00:00
Bernardo Damele
5abca52924 added one more test case 2013-02-15 17:11:40 +00:00
Miroslav Stampar
9b5f33560b Oracle is too specific (only column names can be enclosed) - removing it 2013-02-15 17:36:58 +01:00
Miroslav Stampar
bf82506c1b Oracle can't enclose table names with double quotations 2013-02-15 17:36:58 +01:00
Miroslav Stampar
1b3d749488 Proper fix related to the last commit/revert 2013-02-15 17:36:58 +01:00
Miroslav Stampar
5a793cbc7c Minor revert 2013-02-15 17:36:58 +01:00
Miroslav Stampar
046f347f5d Minor fix 2013-02-15 17:36:58 +01:00
Miroslav Stampar
834ae6aac0 Another minor update 2013-02-15 17:36:58 +01:00
Miroslav Stampar
799bd51c2e Minor fix when two readInput/dataToStdout are called one at a time 2013-02-15 17:36:58 +01:00
Miroslav Stampar
97c06854a4 Minor fixes 2013-02-15 17:36:58 +01:00
Bernardo Damele
0e7f771be6 minor adjustment 2013-02-15 16:28:09 +00:00
Bernardo Damele
35aa785870 bug fix to make --predict-output work also with time-based technique 2013-02-15 16:25:33 +00:00
Miroslav Stampar
014e4e0055 Minor represenation fix 2013-02-15 14:48:24 +01:00
Miroslav Stampar
67157fa2ba Some more minor fixes 2013-02-15 14:28:05 +01:00
Bernardo Damele
63ddeb9008 unnecessary variable 2013-02-15 13:26:28 +00:00
Miroslav Stampar
b1c0cabde5 Minor fixes 2013-02-15 14:21:51 +01:00
Miroslav Stampar
345d10a9e0 Consistency fix (everywhere else we show unsafe format of identificator names) 2013-02-15 14:05:14 +01:00
Miroslav Stampar
2fb599619a Bug fix 2013-02-15 13:55:09 +01:00
Bernardo Damele
b472d9809a another consistency fix to readInput() 2013-02-15 09:35:09 +00:00
Bernardo Damele
32c8c67888 Merge branch 'master' of github.com:sqlmapproject/sqlmap 2013-02-15 09:29:41 +00:00
Bernardo Damele
20c5f9a030 consistency fix 2013-02-15 09:29:36 +00:00
Miroslav Stampar
11bcf28d86 Fix for an Issue #399 2013-02-15 10:04:13 +01:00
Miroslav Stampar
5d068896a9 Minor bug fix 2013-02-15 09:54:51 +01:00
Bernardo Damele
87db5d0dab minor bug fix to avoid duplicates - #297 2013-02-15 00:53:05 +00:00
Bernardo Damele
c3f1e196e1 added missing parameter 2013-02-15 00:43:46 +00:00
Bernardo Damele
4727589135 code consistency 2013-02-15 00:17:13 +00:00
Miroslav Stampar
515be4ee0b Minor just in case commit related to the last one 2013-02-14 19:58:10 +01:00
Miroslav Stampar
fef60b73f4 Minor update for proper display of [PAYLOAD] in JSON/XML/SOAP cases 2013-02-14 19:53:26 +01:00
Bernardo Damele
0c79d7b1e2 unnecessary import 2013-02-14 18:33:47 +00:00
Bernardo Damele
d8942d2ae0 fixes #396 - adapted the engine to properly verify all steps of takeover were successul, minor code refactoring too 2013-02-14 18:32:22 +00:00
Bernardo Damele
614ff6029d working on #396 - handle the case when we dont have a web backdoor/file stager for the language API, added a few more log messages to give further information about what is going on, minor bug fix to docRoot 2013-02-14 18:31:14 +00:00
Bernardo Damele
3b38b20176 working on #396 - adaptation for the verification phase 2013-02-14 18:29:55 +00:00