Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							e35f25b2cb 
							
						 
					 
					
						
						
							
							Major recode of --os-pwn functionality. Now the Metasploit shellcode can not be run as a Metasploit generated payload stager anymore. Instead it can be run on the target system either via sys_bineval() (as it was before, anti-forensics mode, all the same) or via shellcodeexec executable. Advantages are that:  
						
						... 
						
						
						
						* It is stealthier as the shellcode itself does not touch the filesystem, it's an argument passed to shellcodeexec at runtime.
* shellcodeexec is not (yet) recognized as malicious by any (Avast excluded) AV product.
* shellcodeexec binary size is significantly smaller than a Metasploit payload stager (even when packed with UPX).
* UPX now is not needed anymore, so sqlmap package is also way smaller and less likely to be detected itself as malicious by your AV software.
shellcodeexec source code, compilation files and binaries are in extra/shellcodeexec/ folder now - copied over from https://github.com/inquisb/shellcodeexec .
Minor code refactoring. 
						
					 
					
						2011-04-24 23:01:21 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							d0dff82ce0 
							
						 
					 
					
						
						
							
							Minor code refactoring relating set/get back-end DBMS operating system and minor bug fix to properly enforce OS value with --os switch  
						
						
						
					 
					
						2011-04-23 16:25:09 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							f88aa4b165 
							
						 
					 
					
						
						
							
							implemented suppressResumeInfo mechanism (huge slowdown on large tables)  
						
						
						
					 
					
						2011-04-22 19:58:10 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							06a00fe85e 
							
						 
					 
					
						
						
							
							For development version, print also the revision number in the banner  
						
						
						
					 
					
						2011-04-21 21:34:57 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							edc2d75702 
							
						 
					 
					
						
						
							
							Cosmetics and major bug fix  
						
						
						
					 
					
						2011-04-21 21:15:23 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							b667c50588 
							
						 
					 
					
						
						
							
							store/resume info on xp_cmd available in session file  
						
						
						
					 
					
						2011-04-21 14:25:04 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							a313df4d37 
							
						 
					 
					
						
						
							
							Allow user to force temporary folder with --tmp-path even if it has been saved one in the session file  
						
						
						
					 
					
						2011-04-21 14:05:37 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							e1a8d268d8 
							
						 
					 
					
						
						
							
							fix for UPX linux/macos  
						
						
						
					 
					
						2011-04-21 10:52:34 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							11ecd16099 
							
						 
					 
					
						
						
							
							cosmetics  
						
						
						
					 
					
						2011-04-21 10:08:38 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9ccf720c05 
							
						 
					 
					
						
						
							
							removing funny remark  
						
						
						
					 
					
						2011-04-21 10:06:13 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							a91e6a8440 
							
						 
					 
					
						
						
							
							layout  
						
						
						
					 
					
						2011-04-21 10:03:18 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							cbfe743bad 
							
						 
					 
					
						
						
							
							added a comment  
						
						
						
					 
					
						2011-04-21 10:01:58 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							3b133303bf 
							
						 
					 
					
						
						
							
							refactoring  
						
						
						
					 
					
						2011-04-19 22:54:13 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							de2479b864 
							
						 
					 
					
						
						
							
							dealing with  http://bugs.python.org/issue1602  
						
						
						
					 
					
						2011-04-19 22:33:03 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							44bbef42f8 
							
						 
					 
					
						
						
							
							minor cosmetics  
						
						
						
					 
					
						2011-04-19 20:23:08 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							13f8c001a7 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2011-04-19 11:13:53 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							7a06af9a92 
							
						 
					 
					
						
						
							
							added "lagging" critical message  
						
						
						
					 
					
						2011-04-19 10:37:20 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							a7c26366b4 
							
						 
					 
					
						
						
							
							doing that auto default value for --time-sec only for --tor  
						
						
						
					 
					
						2011-04-19 08:43:29 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							4d48ac54dc 
							
						 
					 
					
						
						
							
							automatically increasing default --time-sec value when --tor/--proxy used (not touching anything if explicit --time-sec set)  
						
						
						
					 
					
						2011-04-19 08:34:21 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							b79d4f70f3 
							
						 
					 
					
						
						
							
							cleaner solution for the problem solved with last commit  
						
						
						
					 
					
						2011-04-18 14:51:48 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							f5cff067c6 
							
						 
					 
					
						
						
							
							little hack for --time-sec  
						
						
						
					 
					
						2011-04-18 14:46:18 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							354a2ce249 
							
						 
					 
					
						
						
							
							'chardet' heuristic engine added to the project  
						
						
						
					 
					
						2011-04-18 13:38:46 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							6fab44d635 
							
						 
					 
					
						
						
							
							minor refactoring and improving of used regex  
						
						
						
					 
					
						2011-04-17 22:37:00 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							76d1f09b0a 
							
						 
					 
					
						
						
							
							minor cosmetics  
						
						
						
					 
					
						2011-04-17 22:25:25 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							9aae447553 
							
						 
					 
					
						
						
							
							minor update for matching SOAP messages  
						
						
						
					 
					
						2011-04-17 22:21:32 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							a7366bf710 
							
						 
					 
					
						
						
							
							SOAP refactoring  
						
						
						
					 
					
						2011-04-17 21:39:00 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							c7ff5dcbeb 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2011-04-17 08:48:13 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							ee88ccf0ac 
							
						 
					 
					
						
						
							
							well, this could be important :)  
						
						
						
					 
					
						2011-04-17 08:33:46 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							29ee760021 
							
						 
					 
					
						
						
							
							improving time based data retrieval mechanism  
						
						
						
					 
					
						2011-04-17 07:24:18 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							c461fdca54 
							
						 
					 
					
						
						
							
							some refactoring  
						
						
						
					 
					
						2011-04-15 13:51:06 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							0387654166 
							
						 
					 
					
						
						
							
							update of copyright string (until year)  
						
						
						
					 
					
						2011-04-15 12:33:18 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							4d8a49a87c 
							
						 
					 
					
						
						
							
							more standard way to display hex encoded char (\xff instead of \ff) also compatible with python representation  
						
						
						
					 
					
						2011-04-15 11:53:20 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							467d1a50b3 
							
						 
					 
					
						
						
							
							removed debug message that could cause confusion  
						
						
						
					 
					
						2011-04-15 11:28:01 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							8c6f7c7d5f 
							
						 
					 
					
						
						
							
							explicit usage of --time-sec will implicitly turn off auto-adjustment of time delay  
						
						
						
					 
					
						2011-04-15 08:52:53 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							3efd9e3959 
							
						 
					 
					
						
						
							
							improved htmlunescape (great for localized html escape codes)  
						
						
						
					 
					
						2011-04-14 21:36:13 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							ded28442fb 
							
						 
					 
					
						
						
							
							minor fixes and refactoring regarding safecharencoding  
						
						
						
					 
					
						2011-04-14 15:54:00 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							866cdb4cf7 
							
						 
					 
					
						
						
							
							speed of --replicate is now vastly improved  
						
						
						
					 
					
						2011-04-14 14:34:12 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							eafab03d99 
							
						 
					 
					
						
						
							
							safe decoding values going into --replicate (as we should have a "replicate" and sqlite3 supports all chars)  
						
						
						
					 
					
						2011-04-14 13:53:56 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							30bfefd638 
							
						 
					 
					
						
						
							
							minor fix  
						
						
						
					 
					
						2011-04-14 12:58:03 +00:00 
						 
				 
			
				
					
						
							
							
								Bernardo Damele 
							
						 
					 
					
						
						
						
						
							
						
						
							5cf38cd0d7 
							
						 
					 
					
						
						
							
							More cookies to ignore  
						
						
						
					 
					
						2011-04-14 12:46:14 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							8426d48e2e 
							
						 
					 
					
						
						
							
							minor refactoring  
						
						
						
					 
					
						2011-04-14 10:14:46 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							930262f573 
							
						 
					 
					
						
						
							
							minor update related to the last commit  
						
						
						
					 
					
						2011-04-14 10:12:07 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							1c5427baf8 
							
						 
					 
					
						
						
							
							minor fix  
						
						
						
					 
					
						2011-04-14 09:54:29 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							bb99bd2fbe 
							
						 
					 
					
						
						
							
							one more commit related to the issue with displaying of garbled characters  
						
						
						
					 
					
						2011-04-14 09:43:36 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							04986be4b9 
							
						 
					 
					
						
						
							
							update regarding safe character output together with a small fix for newlines  
						
						
						
					 
					
						2011-04-14 09:31:45 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							5dfb55effc 
							
						 
					 
					
						
						
							
							revert of the last commit because of this  http://osvdb.org/show/osvdb/26582  
						
						
						
					 
					
						2011-04-14 06:46:32 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							786f305e1a 
							
						 
					 
					
						
						
							
							minor update  
						
						
						
					 
					
						2011-04-14 06:43:08 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							21114d1748 
							
						 
					 
					
						
						
							
							added IGNORE_PARAMETERS to skip testing of state/session web server parameters  
						
						
						
					 
					
						2011-04-13 19:01:02 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							58a93c5b1f 
							
						 
					 
					
						
						
							
							better beep for MacOSX  
						
						
						
					 
					
						2011-04-13 18:32:47 +00:00 
						 
				 
			
				
					
						
							
							
								Miroslav Stampar 
							
						 
					 
					
						
						
						
						
							
						
						
							d06ae9cd47 
							
						 
					 
					
						
						
							
							implemented retrieved items info for partial union too  
						
						
						
					 
					
						2011-04-13 14:33:15 +00:00