Commit Graph

176 Commits

Author SHA1 Message Date
jekil
c39e5a85ba Removed $id$ tags 2012-06-27 20:56:43 +02:00
Bernardo Damele
c0b9cf539f moved udfhack to its own repository, https://github.com/sqlmapproject/udfhack 2012-06-27 15:15:11 +01:00
Miroslav Stampar
e9f6b00e26 minor fix in a KeepAlive library 2012-05-07 13:36:36 +00:00
Miroslav Stampar
95f89ab63a updating copyright date 2012-01-11 14:59:46 +00:00
Miroslav Stampar
b604057e54 minor update 2011-12-26 16:09:46 +00:00
Miroslav Stampar
068ff92dc4 optimizing a bit pyDes module used in Oracle hash cracking 2011-12-26 15:33:49 +00:00
Miroslav Stampar
8a7b0406c8 minor optimization 2011-12-22 20:08:28 +00:00
Miroslav Stampar
526aacb640 code cleanup 2011-12-21 22:59:23 +00:00
Miroslav Stampar
41b60b26fc minor refactoring 2011-12-21 14:25:39 +00:00
Miroslav Stampar
0b54553a76 quick fix for AV engines 2011-12-21 10:22:03 +00:00
Miroslav Stampar
0f5d48ff20 minor update 2011-12-05 09:25:56 +00:00
Miroslav Stampar
408d12dc41 minor fix 2011-12-05 08:26:00 +00:00
Miroslav Stampar
3fb22ef80a another minor update 2011-12-05 00:03:05 +00:00
Miroslav Stampar
a462a9df43 minor update 2011-12-04 23:59:10 +00:00
Miroslav Stampar
b99c157d0f patching DNS-leakage of SocksiPy extra module 2011-12-04 23:58:22 +00:00
Miroslav Stampar
ef987c6954 adding compatibility support for using --crawl and --forms together 2011-10-29 09:32:20 +00:00
Miroslav Stampar
25f0ec3597 some minor range to xrange conversion (where safe to do) 2011-10-21 22:34:27 +00:00
Bernardo Damele
50f4c4af52 Minor bug fix to parse also MSSQL 2008 R2 signatures 2011-07-24 23:43:01 +00:00
Bernardo Damele
aedcf8c8d7 Changed homepage address 2011-07-07 20:10:03 +00:00
Miroslav Stampar
b8ffcf9495 few fixes here and there and multi-core processing for dictionary based hash attack 2011-07-04 19:58:41 +00:00
Bernardo Damele
6d606d417b Preparing for PostgreSQL 9.0 DLL (--os-pwn) compilation on Windows 64-bit 2011-06-28 13:41:15 +00:00
Bernardo Damele
1698630bc0 Added PostgreSQL 9.0 shared object for Linux 64-bit 2011-06-28 13:12:18 +00:00
Miroslav Stampar
7c830c2b1a removing xmlobject 2011-06-22 14:33:03 +00:00
Miroslav Stampar
2a4a284a29 crawler fix (skip binary files) 2011-06-20 22:41:38 +00:00
Miroslav Stampar
d9015ed800 fix for a bug reported by krasn@deventum.com 2011-06-20 13:25:19 +00:00
Miroslav Stampar
07e2c72943 adding Beautifulsoup (BSD) into extras; adding --crawl to options 2011-06-20 11:32:30 +00:00
Miroslav Stampar
84978f16c9 fix for a "problem" reported by Kirill Morozov (nt authority\\network service) 2011-06-11 07:54:59 +00:00
Miroslav Stampar
0d0f2863af adding one more tamper script 2011-06-09 09:38:07 +00:00
Bernardo Damele
cce3208b35 Cleanup 2011-06-08 14:15:34 +00:00
Miroslav Stampar
0486d1cdaa minor module update 2011-05-24 10:32:21 +00:00
Miroslav Stampar
25fff8c135 changes in handling --tor (using SOCKS instead of HTTP for handling Tor - more standard way; doesn't require proxy bundle; fixes problems with default proxy ports on Win/Linux) 2011-05-21 11:46:57 +00:00
Miroslav Stampar
48ac9911c0 more graceful fix related to the last commit 2011-05-11 09:42:35 +00:00
Miroslav Stampar
402c623119 minor fix 2011-05-11 09:40:11 +00:00
Miroslav Stampar
53065ee1fb adding ordered set for kb.targetUrls (now the order of appereance in multiple targets mode will be respected) 2011-05-11 08:55:48 +00:00
Bernardo Damele
28a4ae8eaf Minor improvement to cleanup script 2011-05-06 13:53:10 +00:00
Bernardo Damele
eea96c5b8d code cleanup 2011-05-05 08:50:18 +00:00
Bernardo Damele
f56d135438 Minor code restyling 2011-04-30 13:20:05 +00:00
Miroslav Stampar
6bb4dce3aa minor refactoring 2011-04-29 15:22:32 +00:00
Bernardo Damele
e35f25b2cb Major recode of --os-pwn functionality. Now the Metasploit shellcode can not be run as a Metasploit generated payload stager anymore. Instead it can be run on the target system either via sys_bineval() (as it was before, anti-forensics mode, all the same) or via shellcodeexec executable. Advantages are that:
* It is stealthier as the shellcode itself does not touch the filesystem, it's an argument passed to shellcodeexec at runtime.
* shellcodeexec is not (yet) recognized as malicious by any (Avast excluded) AV product.
* shellcodeexec binary size is significantly smaller than a Metasploit payload stager (even when packed with UPX).
* UPX now is not needed anymore, so sqlmap package is also way smaller and less likely to be detected itself as malicious by your AV software.
shellcodeexec source code, compilation files and binaries are in extra/shellcodeexec/ folder now - copied over from https://github.com/inquisb/shellcodeexec.
Minor code refactoring.
2011-04-24 23:01:21 +00:00
Miroslav Stampar
41924a6ead fix for a bug reported by saccurso@skygear.com​.ar (UnicodeDecodeError: 'ascii' codec can't decode byte 0xe9 in position 0: ordinal
not in range(128))
2011-04-21 23:17:16 +00:00
Bernardo Damele
8e2e06a7a3 layout adjustment 2011-04-21 09:25:42 +00:00
Miroslav Stampar
354a2ce249 'chardet' heuristic engine added to the project 2011-04-18 13:38:46 +00:00
Bernardo Damele
79d5804519 added propset 2011-04-15 16:28:48 +00:00
Bernardo Damele
48f916d5a4 Fixed a minor bug 2011-04-15 16:25:42 +00:00
Miroslav Stampar
c461fdca54 some refactoring 2011-04-15 13:51:06 +00:00
Miroslav Stampar
bf6ea35145 adding new tool safe2bin for decoding safe encoded values 2011-04-15 13:41:50 +00:00
Miroslav Stampar
a883316e22 i was on some heavy drugs (sys.stdout = fpOut) 2011-04-15 12:58:56 +00:00
Miroslav Stampar
0387654166 update of copyright string (until year) 2011-04-15 12:33:18 +00:00
Bernardo Damele
7c61931b96 Added notes on how to compile and get small shared libraries for UDF 2011-04-12 09:53:52 +00:00
Miroslav Stampar
305115a68b important improvement of data handling (POST data and header values) 2011-04-03 15:02:52 +00:00