sqlmap

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-23 01:56:36 +03:00

Author	SHA1	Message	Date
Miroslav Stampar	d2ec132469	added --text-only switch	2010-10-12 19:41:29 +00:00
Miroslav Stampar	f9f79ffbaf	basic stuff for sybase	2010-10-12 19:05:12 +00:00
Miroslav Stampar	9ffa928783	added some user interaction when page is dynamic	2010-10-12 15:49:04 +00:00
Miroslav Stampar	b748e6ea44	minor update	2010-10-12 12:52:06 +00:00
Miroslav Stampar	e2bbfbe650	bug fix	2010-10-11 14:32:02 +00:00
Miroslav Stampar	43892cddbb	some updates	2010-10-11 12:26:35 +00:00
Miroslav Stampar	8b0a132fa9	minor update	2010-10-11 11:47:07 +00:00
Miroslav Stampar	7a5bb2b0d6	update	2010-10-10 19:50:10 +00:00
Miroslav Stampar	8fcad29bbf	new feature --forms (still unfinished)	2010-10-10 18:56:43 +00:00
Miroslav Stampar	18d27cabc5	more changes	2010-10-07 15:34:17 +00:00
Miroslav Stampar	1e9ae40397	major refactoring	2010-10-07 12:12:26 +00:00
Miroslav Stampar	1bf8939e2f	further updates	2010-10-06 22:43:04 +00:00
Miroslav Stampar	de6fa1247b	moved injections to xml format	2010-10-06 22:29:52 +00:00
Miroslav Stampar	8abcdae1b5	some update	2010-09-30 19:45:23 +00:00
Miroslav Stampar	cf8e92699c	changes regarding EXISTS feature	2010-09-30 12:35:45 +00:00
Miroslav Stampar	c6bf0e43af	minor update	2010-09-27 13:41:18 +00:00
Miroslav Stampar	dc11ae0d65	update	2010-09-26 14:56:55 +00:00
Miroslav Stampar	35f35605df	changes regarding Feature #160	2010-09-26 14:02:13 +00:00
Miroslav Stampar	8cf1aa6abe	added keepAlive under -o switch too	2010-09-16 10:41:52 +00:00
Miroslav Stampar	6259114c02	added optimization switch (-o)	2010-09-16 10:12:53 +00:00
Miroslav Stampar	bfffd5e333	added --null-connection as an experimental option	2010-09-16 10:01:33 +00:00
Miroslav Stampar	b745331974	added null connection check	2010-09-16 08:43:10 +00:00
Miroslav Stampar	9a72a25704	again minor update	2010-09-15 13:59:55 +00:00
Miroslav Stampar	53800ef65f	more refactoring	2010-09-15 13:32:42 +00:00
Miroslav Stampar	abc12bc361	more refactoring	2010-09-15 13:28:56 +00:00
Miroslav Stampar	77a53228c5	changes regarding dynamic content recognition	2010-09-13 21:01:46 +00:00
Miroslav Stampar	c886659f82	fix	2010-09-13 15:24:56 +00:00
Miroslav Stampar	2350a3c74d	minor change	2010-09-13 15:20:13 +00:00
Miroslav Stampar	cdc6bdcbe8	changes	2010-09-13 15:19:47 +00:00
Miroslav Stampar	19fb2e3dcf	fix for Bug #165	2010-09-13 13:31:01 +00:00
Miroslav Stampar	48cc87f6a9	added support for fingerprinting SAP MaxDB (Issue 143)	2010-08-30 13:29:19 +00:00
Miroslav Stampar	8cb95583e3	some more adjustments	2010-07-30 12:59:44 +00:00
Miroslav Stampar	092829c189	implemented basic smoke testing mechanism	2010-07-30 12:49:25 +00:00
Miroslav Stampar	28d9115373	fix for Feature #187 (Skip duplicates parameters in -g)	2010-07-29 20:01:04 +00:00
Miroslav Stampar	12a5ec9f3d	more unicode refactoring	2010-06-02 12:45:40 +00:00
Bernardo Damele	06af405efd	Adapted and merged in patch to support XML output (-x switch) - still in beta. Minor bug fixes and adjustments.	2010-05-28 16:43:04 +00:00
Miroslav Stampar	a3db3c03c1	str() -> unicode()	2010-05-28 13:05:02 +00:00
Miroslav Stampar	14cab8527e	minor adjustment	2010-05-21 14:25:38 +00:00
Miroslav Stampar	3110bb10fc	added test for site existance	2010-05-21 13:36:49 +00:00
Bernardo Damele	65a05452f7	Added option --search to work in conjunction with -D (done), -T (soon) or -C (replaces --dump -C) - See #190 : * --search -D foobar: searches all database names like the ones provided * --search -T foobar: searches all databases' table names like the ones provided (soon) * --search -C foobar: replaces --dump -C	2010-05-07 13:40:57 +00:00
Bernardo Damele	5fdebb5d5b	Added support to directly connect also to Microsoft SQL Server database. Fixed direct connection to always use the same query as of UNION query SQL injection (= one query with multiple columns/entries output). Minor fixes to Firebird/Access/SQLite connectors to use connector's execute()/fetchall() as wrapper for third-party libraries' methods. Forced conf.timeout to 10 seconds when directly connecting to database. Slightly improved regular expression to parse -d parameter. Added import check for all connectors' third-party libraries. Code refactoring: * Moved conf.direct request to direct() function in lib/request/direct.py (code reused where needed). * Back-delegated to generic connector close() and other methods.	2010-03-31 10:50:47 +00:00
Miroslav Stampar	8702cce760	fix	2010-03-30 13:23:20 +00:00
Miroslav Stampar	c2a6f21095	refactoring regarding usage of conf.dbmsConnector.connect()	2010-03-30 13:03:19 +00:00
Bernardo Damele	1416cd0d86	Major enhancement to directly connect to the dbms without passing via a sql injection: adapted code accordingly - see #158 . This feature relies on python third-party libraries to be able to connect to the database. For the moment it has been implemented for MySQL (with python-mysqldb module) and PostgreSQL (with python-psycopg2 module). Minor layout adjustments.	2010-03-26 23:23:25 +00:00
Bernardo Damele	2aadc5c939	Added support for --roles (for Oracle ROLE_PRIVS). Enhanced Oracle --privileges to fall-back to USER_SYS_PRIVS if DBA_SYS_PRIVS is not accessible (so session user is not DBA) - Fixes ticket #180 . Minor enhancement to Firebird to determine if a DB user is a DBA. Minor code refactoring.	2010-03-25 15:46:06 +00:00
Bernardo Damele	d00e4a458a	Code cleanup	2010-03-21 00:39:44 +00:00
Bernardo Damele	0d559d14df	Initial support for SQLite (90% approx). Initial support for Firebird (30% approx). Initial support for Access (10% approx). Shared libraries code/installation scripts ported to 64bit, directory structure adapted. Minor code adjustments.	2010-03-18 17:20:54 +00:00
Bernardo Damele	d2f86fb0a5	Fixes #172 - also cookies are parsed from burp/webscarab logs (-l) and request file (-r) now	2010-03-16 15:21:42 +00:00
Bernardo Damele	466df89c4a	Fixes #178 and #179 - proper handling of custom redirects	2010-03-16 14:30:57 +00:00
Bernardo Damele	3b3353e05b	Revert last commit	2010-03-16 13:56:36 +00:00

1 2

92 Commits