Miroslav Stampar
d618964ab6
more time adjustments
2010-03-05 14:30:50 +00:00
Miroslav Stampar
45fc58d267
update
2010-03-05 14:24:54 +00:00
Miroslav Stampar
071e897f4e
minor time adjustments
2010-03-05 14:09:20 +00:00
Miroslav Stampar
6fd1f7f77c
update
2010-03-05 14:06:03 +00:00
Bernardo Damele
20d8275f0e
Minor doc adjustment
2010-03-05 10:20:45 +00:00
Bernardo Damele
5209b5929f
update
2010-03-04 17:38:00 +00:00
Miroslav Stampar
5334a40451
added description for --flush-session option
2010-03-04 13:17:11 +00:00
Bernardo Damele
a839566bb2
Added a link
2010-03-04 12:44:23 +00:00
Bernardo Damele
63880e3121
update
2010-03-03 22:02:48 +00:00
Bernardo Damele
1c7943f7b1
Update
2010-03-03 18:58:27 +00:00
Bernardo Damele
1704c73892
Update
2010-03-03 16:25:03 +00:00
Bernardo Damele
e774578180
Updated documentation
2010-03-03 15:16:43 +00:00
Miroslav Stampar
759b720425
documentation update
2010-03-03 13:59:29 +00:00
Miroslav Stampar
ddd8b277a6
updates, added #TODO marks for parts which have to be updated
2010-03-02 12:07:54 +00:00
Miroslav Stampar
0acef530ce
update
2010-03-01 10:51:17 +00:00
Bernardo Damele
dd3f65f0fb
Updated ChangeLog
2010-02-26 15:37:24 +00:00
Bernardo Damele
3c34066d19
Added newly compiled PostgreSQL UDFs for Windows
2010-02-20 20:59:13 +00:00
Bernardo Damele
16599cf2cf
typo fix
2010-02-16 22:54:22 +00:00
Bernardo Damele
7e0c411c0e
Updated THANKS file
2010-02-11 23:46:50 +00:00
Miroslav Stampar
bc0eb880df
fix for that -- bug
2010-02-08 11:44:32 +00:00
Miroslav Stampar
4e6af8d6c9
some syntax corrections
2010-02-08 09:10:32 +00:00
Bernardo Damele
22995787d1
Updated THANKS file
2010-02-04 15:24:13 +00:00
Bernardo Damele
9ed0744510
Added some error messages to detect back-end DBMS
2010-01-30 22:24:20 +00:00
Bernardo Damele
267cf5dd1a
Updated documentation
2010-01-30 00:08:10 +00:00
Bernardo Damele
7b8316728c
Major bug fix in takeover functionalities on Microsoft SQL Server
2010-01-29 00:09:05 +00:00
Bernardo Damele
c6cae7da41
Updated changelog
2010-01-28 23:10:54 +00:00
Bernardo Damele
b4ce8fe361
Updated ChangeLog file
2010-01-18 15:43:06 +00:00
Bernardo Damele
070ccc30e9
Added automatic support in --os-pwn to use the web uploader/backdoor to upload and execute the Metasploit payload stager when stacked queries SQL injection is not supported, for instance on MySQL/PHP and MySQL/ASP.
...
Updated ChangeLog.
Major code refactoring.
2010-01-14 14:03:16 +00:00
Bernardo Damele
055b14a11a
Updated Changelog
2010-01-13 12:14:29 +00:00
Bernardo Damele
473024bd6e
Newline
2010-01-04 14:03:31 +00:00
Miroslav Stampar
6319eb6e5c
just added PGP Key ID
2010-01-04 13:08:40 +00:00
Bernardo Damele
232f927dd0
Slightly updated the documentation
2010-01-04 12:53:58 +00:00
Bernardo Damele
d5b1863dec
Updated documentation and svn properties
2010-01-02 02:07:28 +00:00
Bernardo Damele
c1c14dabd9
Minor bug fix
2009-12-21 11:21:18 +00:00
Bernardo Damele
e6c4154cac
Fixed minor bug in --reg-del
2009-12-21 11:04:54 +00:00
Bernardo Damele
e4e081cdc6
sqlmap 0.8-rc2: minor enhancement based on msfencode 3.3.3-dev -t exe-small so that also PostgreSQL supports again the out-of-band via Metasploit payload stager optionally to shellcode execution in-memory via sys_bineval() UDF. Speed up OOB connect back. Cleanup target file system after --os-pwn too. Minor bug fix to correctly forge file system paths with os.path.join() all around. Minor code refactoring and user's manual update.
2009-12-17 22:04:01 +00:00
Bernardo Damele
c332c72808
Minor update to user's manual to reflect new Metasploit release
2009-11-17 23:36:18 +00:00
Bernardo Damele
aa14bea051
Test again
2009-11-01 12:30:30 +00:00
Bernardo Damele
e518ae82e4
Testing post-commit hook on redmine
2009-11-01 12:28:33 +00:00
Bernardo Damele
bfd8128693
Updated name
2009-11-01 12:10:29 +00:00
Bernardo Damele
de68a499f5
Typo fix
2009-11-01 12:08:46 +00:00
Bernardo Damele
bb123b2769
Updated changelog
2009-10-23 10:20:47 +00:00
Bernardo Damele
f1a7d095aa
Minor patch to make the PHP web backdoor work also on Windows
2009-10-22 16:25:19 +00:00
Bernardo Damele
89c43893d4
Merged back from personal branch to trunk (svn merge -r846:940 ...)
...
Changes:
* Major enhancement to the Microsoft SQL Server stored procedure
heap-based buffer overflow exploit (--os-bof) to automatically bypass
DEP memory protection.
* Added support for MySQL and PostgreSQL to execute Metasploit shellcode
via UDF 'sys_bineval' (in-memory, anti-forensics technique) as an
option instead of uploading the standalone payload stager executable.
* Added options for MySQL, PostgreSQL and Microsoft SQL Server to
read/add/delete Windows registry keys.
* Added options for MySQL and PostgreSQL to inject custom user-defined
functions.
* Added support for --first and --last so the user now has even more
granularity in what to enumerate in the query output.
* Minor enhancement to save the session by default in
'output/hostname/session' file if -s option is not specified.
* Minor improvement to automatically remove sqlmap created temporary
files from the DBMS underlying file system.
* Minor bugs fixed.
* Major code refactoring.
2009-09-25 23:03:45 +00:00
Bernardo Damele
458d59416c
Minor bug fix in MSSQL version fingerprint
2009-08-11 09:16:20 +00:00
Bernardo Damele
14578a7a4d
Updated THANKS file
2009-07-30 12:02:34 +00:00
Bernardo Damele
e608a5ca55
Updated THANKS file
2009-07-29 10:44:56 +00:00
Bernardo Damele
2c98c11e80
user's manual PDF recreated
2009-07-25 16:46:30 +00:00
Bernardo Damele
45e3ce798f
Updated documentation with all new features introduced since sqlmap 0.7-rc1
2009-07-25 14:31:44 +00:00
Bernardo Damele
576cc97742
Minor update to the user's manual, almost there to release 0.7 stable!
2009-07-25 00:25:59 +00:00