Commit Graph

5216 Commits

Author SHA1 Message Date
Miroslav Stampar
2d801b7122 Minor patch for an Issue #1861 2016-05-12 17:16:55 +02:00
Miroslav Stampar
1e07269fe3 Patch for an Issue #1860 2016-05-12 16:42:12 +02:00
Miroslav Stampar
3b74e99576 Minor update (support for MariaDB) 2016-05-11 15:47:35 +02:00
Miroslav Stampar
439fff684e Minor update (MSSQL CONCAT payload) 2016-05-11 09:42:54 +02:00
Miroslav Stampar
72cf06119c Patch for an Issue #1852 2016-05-10 09:55:03 +02:00
Miroslav Stampar
808068d70a Minor update 2016-05-10 09:19:59 +02:00
Miroslav Stampar
f09072b2b6 Fixes #1853 2016-05-09 13:13:02 +02:00
Miroslav Stampar
be9381abc5 Implements #1845 2016-05-06 13:06:59 +02:00
Miroslav Stampar
5d09f7b85f Fixes #1822 2016-05-06 10:32:16 +02:00
Miroslav Stampar
8bbfee7591 Cleaning a leftover from be26392057 2016-05-06 10:30:58 +02:00
Miroslav Stampar
be26392057 Update for an Issue #1846 2016-05-06 10:23:57 +02:00
Miroslav Stampar
263730f4ee Fixes #1840 2016-05-04 13:23:59 +02:00
Miroslav Stampar
5d7e1782d9 Fixes #1839 2016-05-04 11:14:42 +02:00
Miroslav Stampar
e27f590c2c Fixes #1838 2016-05-04 11:11:58 +02:00
Miroslav Stampar
7afe655561 Another minor update for #1836 2016-05-03 12:52:46 +02:00
Miroslav Stampar
3bf08290a4 Update for an Issue #1836 2016-05-03 12:37:10 +02:00
Miroslav Stampar
34c2172391 Fixes #1837 2016-05-03 11:38:47 +02:00
Miroslav Stampar
48044f7a46 Minor update of IDS_WAF_CHECK_PAYLOAD 2016-05-03 00:19:19 +02:00
Miroslav Stampar
04e666182f Minor update of FORMAT_EXCEPTION_STRINGS 2016-05-02 23:44:43 +02:00
Miroslav Stampar
c797129956 Fixes #1833 2016-05-02 11:10:12 +02:00
Miroslav Stampar
6928dae956 Minor patch 2016-05-02 10:45:50 +02:00
Miroslav Stampar
6db3bcbb51 Minor update for UrlScan 2016-05-02 10:12:19 +02:00
Miroslav Stampar
d7f0b3566d Automatic monthly tagging 2016-05-02 10:06:30 +02:00
Miroslav Stampar
0c67a90cc0 Minor bug fix 2016-05-02 10:06:30 +02:00
Miroslav Stampar
f06e498fb0 Implementation for an Issue #1826 2016-04-29 14:19:32 +02:00
Miroslav Stampar
ad612bf9e4 Patch for Windows banner display 2016-04-29 00:51:20 +02:00
Miroslav Stampar
9dd5cd8eb6 Removing CloudFlare check 2016-04-29 00:17:07 +02:00
Miroslav Stampar
5ed3cdc819 Minor update 2016-04-22 10:54:55 +02:00
Miroslav Stampar
e07c92bce5 Minor change on banner showing up 2016-04-19 13:45:49 +02:00
Miroslav Stampar
0c5965c7b8 Minor patches 2016-04-19 13:13:37 +02:00
Miroslav Stampar
aa21550712 Minor patch for integer casting heuristics (circumvent auto-casting by DBMS itself) 2016-04-15 13:47:19 +02:00
Miroslav Stampar
66061e8c5f Fixes #1811 2016-04-15 12:04:54 +02:00
Miroslav Stampar
c4b74c2e01 Fixes #1810 2016-04-12 22:37:14 +02:00
Miroslav Stampar
55b23e78ee Fixes #1809 2016-04-12 22:10:26 +02:00
Miroslav Stampar
a9526bda92 Minor patch 2016-04-11 22:38:44 +02:00
Miroslav Stampar
0901da3f83 Update for an Issue #1807 2016-04-11 09:43:50 +02:00
Miroslav Stampar
8004652f7b Some more optimization 2016-04-08 15:30:25 +02:00
Miroslav Stampar
c9b410c97f Minor update 2016-04-08 14:59:52 +02:00
Miroslav Stampar
814d710320 Minor speed up 2016-04-08 14:41:34 +02:00
Miroslav Stampar
38fcc5a35a Update for pre-WHERE payloads 2016-04-08 13:19:42 +02:00
Miroslav Stampar
674d516f3e Minor patch 2016-04-08 11:40:09 +02:00
Miroslav Stampar
8ceb4907a5 Another update for Issue #1800 2016-04-08 11:37:38 +02:00
Miroslav Stampar
ce3749622a Minor revisit of payload boundaries (Issue #1800) 2016-04-08 11:28:17 +02:00
Miroslav Stampar
bcfae99701 Adding new WAF script 2016-04-08 10:32:18 +02:00
Miroslav Stampar
44c1c2c6f0 Minor update (reported via email) 2016-04-06 11:43:53 +02:00
Miroslav Stampar
ac08db82b2 Including one more error regex (based on testasp[.]vulnweb[.]com) 2016-04-04 16:14:30 +02:00
Miroslav Stampar
305bfd9d30 Implements #1763 2016-04-04 13:50:10 +02:00
Miroslav Stampar
f9aaec7b4a Minor patch (binary extensions) 2016-04-04 12:43:53 +02:00
Miroslav Stampar
d881a92ee7 Automatic monthly tagging 2016-04-04 12:38:37 +02:00
Miroslav Stampar
60ada89347 Trying once again 2016-04-04 12:38:37 +02:00
Miroslav Stampar
171bfa33a7 Automatic monthly tagging 2016-04-04 12:34:19 +02:00
Miroslav Stampar
acaef90c7b Minor tuning of auto tagging 2016-04-04 12:34:19 +02:00
Miroslav Stampar
31d7021d4c Fixes #1794 2016-04-04 12:25:07 +02:00
Miroslav Stampar
e83d8f6143 Updating colorama (Issue #1784) 2016-03-30 15:11:34 +02:00
Miroslav Stampar
0245ce6228 Fixes #1782 2016-03-28 19:55:33 +02:00
Miroslav Stampar
7e55af2811 Fixes #1778 2016-03-28 16:13:36 +02:00
Miroslav Stampar
ad3b766b65 Adding in-table name boundaries 2016-03-26 09:39:28 +01:00
Miroslav Stampar
074fbbcea5 Implementation for an Issue #1776 2016-03-23 15:45:49 +01:00
Miroslav Stampar
5b0d5970cc Another patch related to the #1773 2016-03-23 10:33:32 +01:00
Miroslav Stampar
6c2f9859be Potential patch for #1773 2016-03-23 10:26:22 +01:00
Miroslav Stampar
d496d99943 Fixes #1774 2016-03-22 13:24:54 +01:00
Miroslav Stampar
d20e9febf2 Fixes #1770 2016-03-19 17:40:05 +01:00
Miroslav Stampar
d76ee8f534 Further update for #1765 2016-03-17 17:06:11 +01:00
Miroslav Stampar
5b88e3e1ad Minor update of version comment 2016-03-17 16:38:39 +01:00
Miroslav Stampar
a68848faf7 (Auto) adjusting micro version (to current month) 2016-03-17 16:31:34 +01:00
Miroslav Stampar
a4f21399e7 Fixes #1760 2016-03-17 16:23:28 +01:00
Miroslav Stampar
e03b2df58f Fixes #1761 2016-03-14 17:21:35 +01:00
Miroslav Stampar
252eb97198 Patch related to the #1755 2016-03-12 19:28:28 +01:00
Miroslav Stampar
67ae620182 Another patch related to the #1752 2016-03-12 15:04:19 +01:00
Miroslav Stampar
13366aeb48 Fixes #1752 2016-03-12 12:26:30 +01:00
Miroslav Stampar
e1ce16144a Fixes #1753 2016-03-10 15:42:01 +01:00
Miroslav Stampar
3307918389 Fixes #1750 2016-03-10 14:48:05 +01:00
Miroslav Stampar
c50849707f Fixes #1748 2016-03-08 14:35:16 +01:00
Miroslav Stampar
06296bd251 Fixes #1743 2016-03-06 20:04:45 +01:00
Miroslav Stampar
0f6e529fb9 Fixes #1745 2016-03-06 12:14:20 +01:00
Miroslav Stampar
242800c085 Minor update related to the #1740 2016-03-01 15:40:34 +01:00
Miroslav Stampar
679f0cf772 Fixes #1738 2016-03-01 15:36:00 +01:00
Miroslav Stampar
1b5a4651a9 Trivial refactoring 2016-03-01 14:48:53 +01:00
Miroslav Stampar
05fa7eb7c6 Minor update 2016-03-01 11:56:56 +01:00
Miroslav Stampar
336169e181 Update of version display 2016-02-29 08:12:38 +01:00
Miroslav Stampar
b2bc3d49fd Minor update 2016-02-29 00:52:46 +01:00
Miroslav Stampar
71aa7deefe Minor beautification 2016-02-29 00:49:45 +01:00
Miroslav Stampar
cf5ae507c8 Minor update of READMEs 2016-02-29 00:44:08 +01:00
Miroslav Stampar
4898a2c332 Dummy commit 2016-02-29 00:30:37 +01:00
Miroslav Stampar
151dcee32e Minor update 2016-02-29 00:23:59 +01:00
Miroslav Stampar
73f1155847 Adding new shutils file 2016-02-29 00:20:58 +01:00
Miroslav Stampar
26b895dd2e Merge pull request #1733 from Aikes/master
Fixes file path traversal issue on win platform.
2016-02-28 23:35:09 +01:00
Miroslav Stampar
adfcb1ad67 Adjusting version number 2016-02-27 15:59:52 +01:00
Aikes
b4bb4c393b Fixes file path traversal issue on win platform.
POC: GET /download/b31146dcdb92e5db/C:\windows\win.ini/a
2016-02-27 00:10:32 +08:00
Miroslav Stampar
c5ecdb5403 Minor update related to the Issue #1730 2016-02-25 01:20:48 +01:00
Miroslav Stampar
a90913c57d Proper patch for #1723 2016-02-23 11:46:04 +01:00
Lion Yang
bc6cc4bc1d Remove a whitespace tail 2016-02-23 16:57:06 +08:00
Miroslav Stampar
d6bac363af Minor patch for combo -r and --method 2016-02-18 11:13:51 +01:00
Miroslav Stampar
82abf1f742 Fixes #1714 2016-02-16 09:56:53 +01:00
Miroslav Stampar
cc06871075 Adding some debug messages for future-self 2016-02-16 08:58:18 +01:00
Noelkd
0514946efa Removed dead links. 2016-02-14 15:57:55 +00:00
Miroslav Stampar
78e503d7b2 Minor patch related to the #1706 2016-02-13 21:25:01 +01:00
Miroslav Stampar
410df455ab Minor consistency patch 2016-02-13 21:03:05 +01:00
Miroslav Stampar
d7cdb6cbd8 Minor update 2016-02-06 20:16:33 +01:00
Miroslav Stampar
cedfdc78f4 Adding escapequotes.py (utility tamper script) 2016-02-05 12:00:57 +01:00
Miroslav Stampar
08aae2b7c5 Bug fix (--prefix should not fix the origValue in REPLACEMENT payloads) 2016-02-05 11:53:24 +01:00
Miroslav Stampar
b07685a386 Added checking of localhost for another DNS service on *:53 2016-02-03 11:55:13 +01:00
Miroslav Stampar
4916f1b2b2 Minor path related to the #1676 2016-01-28 09:10:04 +01:00
Miroslav Stampar
954b4ec32b Fix for #1676 2016-01-27 21:25:34 +01:00
Miroslav Stampar
ee0439cf11 Update for #1678 2016-01-27 10:03:30 +01:00
Miroslav Stampar
3605b98e84 Merge pull request #1678 from dozysun/servername-option
add --adapter option to support various of  bottle server adapter
2016-01-27 09:44:31 +01:00
dozysun
997362f61b change option name to adapter 2016-01-27 10:35:18 +08:00
Miroslav Stampar
62f94f6587 Adding comments (Issue #1681) 2016-01-26 07:52:25 +01:00
Miroslav Stampar
c34eaa1ce8 Minor patch 2016-01-24 22:05:08 +01:00
dozysun
f5ffd9fa02 add --servername option to support various of bottle server adapter 2016-01-22 11:33:12 +08:00
Miroslav Stampar
c6c5a937f9 Minor style update 2016-01-21 10:17:17 +01:00
Miroslav Stampar
574b3a79aa Adding support for detection of CloudFlare responses 2016-01-21 10:16:23 +01:00
Miroslav Stampar
8d42a93fdc Fixes #1665 2016-01-16 08:13:56 +01:00
Miroslav Stampar
6fef2948ff Minor consistency update 2016-01-14 22:51:26 +01:00
Miroslav Stampar
66eaac862b Minor consistency update 2016-01-14 22:47:56 +01:00
Miroslav Stampar
59695af101 Minor improvement of heuristic checks 2016-01-14 22:21:47 +01:00
Miroslav Stampar
8b90d146f6 Update of file attributes 2016-01-14 18:02:15 +01:00
Miroslav Stampar
bdcf3fffba Minor update related to the last (error results in OR boolean-based blind should not be the same as True to be able to do proper comparison) 2016-01-14 13:40:50 +01:00
Miroslav Stampar
c7ef9429ae Minor check for problematic injections 2016-01-14 13:16:44 +01:00
Miroslav Stampar
c78a9cd156 Consistency patch 2016-01-14 12:14:00 +01:00
Miroslav Stampar
4c1fc095d8 Adding heuristic check for FI vulnerability 2016-01-14 09:59:13 +01:00
Miroslav Stampar
a8c6c6fca1 Minor update related to the last one 2016-01-13 23:47:34 +01:00
Miroslav Stampar
4e29e1b351 Fixing wrong commit #4f939b5719716dfe9bd085c4f67696bc11064edd 2016-01-13 23:34:42 +01:00
Miroslav Stampar
8362bdcf66 Fix for screw up made by #52dd92748a50bcee4fb979ea49185840ff6743b9 2016-01-13 23:16:27 +01:00
Miroslav Stampar
87676eb4bb Minor update for #1660 2016-01-13 23:05:28 +01:00
Miroslav Stampar
c410f16f3f Fixes #1660 2016-01-13 23:02:11 +01:00
Miroslav Stampar
0c8c4fa0d9 Fixes #1663 2016-01-13 14:38:59 +01:00
Miroslav Stampar
c37f4855bb Another patch for Issue #1659 2016-01-12 10:34:56 +01:00
Miroslav Stampar
eb989469f3 Minor just in case update 2016-01-12 10:27:04 +01:00
Miroslav Stampar
9b716fcce9 Patch related to the #1659 2016-01-12 10:24:28 +01:00
Miroslav Stampar
a0b67418c7 Just in case update 2016-01-11 00:34:03 +01:00
Miroslav Stampar
7e78554e97 For frenzy Ctrl-C pressing 2016-01-11 00:08:38 +01:00
Miroslav Stampar
1f01d6022c Minor style update 2016-01-10 23:50:24 +01:00
Miroslav Stampar
2280cd191a Fixes #1654 2016-01-10 23:15:43 +01:00
Miroslav Stampar
e53e4dddf1 Minor patch 2016-01-10 23:12:46 +01:00
Miroslav Stampar
e519ed2e18 Another patch related to the #1655 2016-01-10 23:07:11 +01:00
Miroslav Stampar
8b01996adf Patch related to the #1655 2016-01-10 22:59:40 +01:00
Miroslav Stampar
6b40e0aa8c Minor style update (nongit-version) 2016-01-10 02:08:23 +01:00
Miroslav Stampar
5908964db4 Another (better) patch for #1636 2016-01-09 17:32:19 +01:00
Miroslav Stampar
0f8a551227 Potential patch for #1636 2016-01-09 00:55:01 +01:00
Miroslav Stampar
3c9be947c5 Fixes #1649 2016-01-09 00:15:05 +01:00
Miroslav Stampar
48ac2101f2 Using only once the dummy checkWaf payload 2016-01-08 23:23:41 +01:00
Miroslav Stampar
de06ae6803 Fixes #1647 2016-01-08 23:10:32 +01:00
Miroslav Stampar
c7ea3d65be Fixes #1644 2016-01-08 15:33:14 +01:00
Miroslav Stampar
e3650342bd Fixes #1639 2016-01-08 11:47:12 +01:00
Miroslav Stampar
b427f6c03e Minor bug fix 2016-01-08 10:52:02 +01:00
Miroslav Stampar
6f3511dcc3 Error chunk length bug fix (reported privately) 2016-01-08 10:45:31 +01:00
Miroslav Stampar
d0d676ccce Update of copyright string 2016-01-06 00:06:12 +01:00
Miroslav Stampar
59ff8114ff Fixes #1635 2016-01-04 12:09:08 +01:00
Miroslav Stampar
03160d99eb Fixes #1630 2015-12-30 13:39:08 +01:00