| 
							
							
								 Miroslav Stampar | c9baa0094b | going global for protection of non-standard identificator naming | 2011-03-25 22:02:28 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5a1f733a43 | minor update (_ is part of normal identificator naming) | 2011-03-25 21:49:20 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1a98095a93 | minor improvement for that MySQL identification naming | 2011-03-25 21:46:49 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1119a85f39 | it's a must after all - partial union is specific and as there is no output for fetched value, we have to display something to the user. also, there is a bug fix (removed the leftover parseUnionPage) | 2011-03-25 21:31:26 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 48c4460e2c | bug fixed (there was a huge problem with space containing identifiers - fixed and tested for MySQL) | 2011-03-25 21:22:06 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 6c6133e8aa | revert of the last commit (i was doing some testing against a test case with lots of None(s) which drove me to the conclusion that we need that progress - in normal cases it's fine as it is) | 2011-03-25 20:46:37 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 737b4abf13 | this is a must for partial union. there are lots of cases with dumping of huge tables and user doesn't know a squirt if sqlmap is running or not (compromise is that this is only displayed if the verbose level is not touched by the user) | 2011-03-25 20:30:15 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | af39a441fa | minor improvement when --dbs returns no database names (like in many cases with MySQL 4) | 2011-03-25 19:50:06 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5eb7787fc9 | adding partial union cases to the live tests | 2011-03-25 15:56:15 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 670aa7f99b | update for live tests (added dumping of columns and table values) | 2011-03-25 15:37:11 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 422967fbcd | just an minor update related to the last commit | 2011-03-25 12:21:53 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c5b6d377fb | fix for a bug reported by Kirill Morozov (we haven't expected mixed case/copied results in partial union pages) | 2011-03-25 12:14:19 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | af5342c495 | fix for partial inband queries on MSSQL | 2011-03-25 11:19:15 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e80c9e08d8 | minor update regarding --live-test | 2011-03-25 09:03:08 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ea52d7acad | minor revisit of inference | 2011-03-24 20:10:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1f1c4c0e61 | better update related to the last commit | 2011-03-24 20:04:20 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c0cc5d1dad | minor update | 2011-03-24 17:18:03 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | f3858a5fcf | another fix related to the bug reported by Alone Shell | 2011-03-24 17:08:14 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 82ab4c8dc2 | minor fix (ORDER BY 1 screws things up in blind mode) | 2011-03-24 14:19:32 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 06a5c39efe | fix related to the bug reported by Alone Shell | 2011-03-24 14:03:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | cef2c0879d | adding live test cases for --technique=1 too | 2011-03-24 12:19:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | e42cdfd138 | adding possibility to run only one live test (e.g. --run-case=8) | 2011-03-24 12:07:47 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 33c01726dd | adding basic live tests for MSSQL too | 2011-03-24 12:01:53 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 2b15ad57c2 | basic live tests against 3 major DBMSes | 2011-03-24 11:47:01 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | ecbbfeba6e | introduction of --fresh-queries | 2011-03-24 10:08:47 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 762397854e | fix for a bug reported by Kirill (unknown charset '8859-1') | 2011-03-24 09:27:19 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | d79fae724c | minor refactoring | 2011-03-24 09:16:21 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 0bb08d09d2 | fix for a bug reported by Kirill (value is None in attack table phase) and minor fix for loading request file | 2011-03-24 08:43:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | bd75fd26e9 | implementing a --page-rank switch as requested by l0rda@l0rda.biz | 2011-03-23 11:57:57 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 02379c01a2 | minor update (will do "schema update" for sybase some other time; that COUNT(*) blew my mind) | 2011-03-23 11:42:36 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 0f7bce5c66 | fixing a huge mess going on because of counting on error and union techniques | 2011-03-23 11:36:40 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 7ea45e9032 | minor update for Sybase regarding last commit | 2011-03-23 11:04:15 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | b72cdfe9e6 | fix for mssql regarding usage of schema names reported by jabra@spl0it.org | 2011-03-23 10:40:34 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5a1aaecf16 | minor fix so concatenated queries could be run in Oracle --sql-shell (e.g. select NAME||chr(58)||OWNER FROM ALL_SOURCE WHERE TYPE='FUNCTION') | 2011-03-22 13:07:37 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 7613134515 | it was a real pain in the ass to have SELECT COUNT(*) for all rows (it was processed by a limit logic) | 2011-03-22 12:37:05 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 9479a68eb5 | minor fix regarding last commit | 2011-03-22 12:21:56 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | c24ed6e622 | minor fix related to a bug reported by warninggp@gmail.com | 2011-03-22 09:22:48 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | cbfb10cbd1 | fix of a minor bug reported by syssecurity7@googlemail.com (missing iso-8858...) | 2011-03-21 16:43:46 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 0d3f6edcc4 | typo | 2011-03-21 16:27:13 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 7b1021d100 | minor update of THANKS file | 2011-03-21 13:18:00 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | b5c9ccb755 | Oracle XML based error payload has problems with char $ as with space | 2011-03-21 13:13:12 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 1abcd507b8 | hidding --group-concat switch | 2011-03-21 12:13:21 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 4889764114 | minor update regarding last commit | 2011-03-21 11:40:27 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 5291fe35c9 | proper implementation of --dbs on Oracle (we are using now schema names as a counterpart to dbs in other DBMSes) | 2011-03-21 11:29:43 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | f8a2cf0497 | minor THANKS update | 2011-03-21 09:53:34 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | 19e2ed9803 | Layout fix | 2011-03-21 00:40:25 +00:00 |  | 
			
				
					| 
							
							
								 Bernardo Damele | f7c1b7dc5f | Updated | 2011-03-21 00:39:54 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 3ca5cddca7 | massive BUG FIX (if NULL is one of dumping values it will screw everything in corner cases because "SELECT 1 WHERE NULL IN (NULL)" and "SELECT 1 WHERE NULL NOT IN (NULL)" will always return nothing/nadda/zero/not even NULL) | 2011-03-20 23:54:56 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | 9b1f2d82d0 | minor update (that .strip() was a leftover) | 2011-03-20 23:20:47 +00:00 |  | 
			
				
					| 
							
							
								 Miroslav Stampar | db992a0a86 | mssql likes to htmlescape error reports | 2011-03-20 23:16:34 +00:00 |  |