Miroslav Stampar
bdb496eaa5
Fixes #1558
2015-11-23 09:24:30 +01:00
Miroslav Stampar
42649005c2
Lots of fixes and refactoring in search department
2015-11-08 16:37:46 +01:00
Miroslav Stampar
193f8190c4
Adding new warning message
2015-11-07 23:30:24 +01:00
Miroslav Stampar
1b81084106
Fixes #1484
2015-10-23 23:48:41 +02:00
Miroslav Stampar
657d71119b
Fixes #1453
2015-10-07 09:22:11 +02:00
Miroslav Stampar
95ce5a4a09
Fixes #1444
2015-10-05 16:33:10 +02:00
Miroslav Stampar
b98f84a610
Fixes #1443
2015-10-05 16:26:12 +02:00
Miroslav Stampar
1258b354c3
Minor refactoring
2015-10-05 16:09:58 +02:00
Miroslav Stampar
5ce4d4d2ec
Fixes #1439
2015-09-29 10:10:39 +02:00
Miroslav Stampar
5bade7947b
Fixes #1435
2015-09-27 16:09:02 +02:00
Miroslav Stampar
f16389232f
Bug fix for --proxy-file (only first element was fetched in case of fail)
2015-09-25 15:23:42 +02:00
Miroslav Stampar
d28c72b6f1
Another fix for Python 2.6 (bug introduced with ff7be9d0eb
)
2015-09-24 16:26:52 +02:00
Miroslav Stampar
aa2112b360
Update for #1414
2015-09-17 16:18:58 +02:00
daremon
c2fb2161d3
Added flush command
2015-09-16 00:15:16 +03:00
daremon
ff7be9d0eb
Fixed list command
2015-09-16 00:01:57 +03:00
Miroslav Stampar
c59ead36ce
Patch for Python 2.6 (SyntaxError)
2015-09-15 17:23:59 +02:00
Miroslav Stampar
058870635b
Update for an #1414
2015-09-15 14:37:30 +02:00
daremon
1417decdf1
Added commands stop, kill, list to API client
2015-09-14 17:31:02 +03:00
Miroslav Stampar
f494004f44
Switching to the getSafeExString (where it can be used)
2015-09-10 15:51:33 +02:00
Miroslav Stampar
b06a34ab1a
Another update for #1402
2015-09-10 15:06:07 +02:00
Miroslav Stampar
2453b02b63
Update for #1402
2015-09-10 15:01:30 +02:00
Miroslav Stampar
b3fdbe24c2
Merge pull request #1402 from daremon/api-client
...
Minimal API client
2015-09-10 12:03:25 +02:00
Miroslav Stampar
263665637e
Minor bug fix
2015-09-10 11:34:03 +02:00
daremon
a29a3a4e5c
Minimal API client
2015-09-09 16:14:04 +03:00
Miroslav Stampar
90329a8b01
Minor patch
2015-09-09 11:53:44 +02:00
Miroslav Stampar
924e31c414
Fixes #1394
2015-09-08 11:04:36 +02:00
Miroslav Stampar
28a60f5be2
Fixes #1391
2015-09-06 20:22:07 +02:00
Miroslav Stampar
d70215ad6c
Fixes #1237
2015-08-31 10:24:05 +02:00
Miroslav Stampar
1cf012521d
Minor refactoring
2015-08-26 16:18:03 +02:00
Miroslav Stampar
fef8f20565
Minor reporting patch
2015-08-23 20:27:14 +02:00
flsf
9adefb3ffd
Minor change
2015-08-14 16:18:51 +08:00
Jiang Jie
1ac27e9305
fixed pipe and zoombie problems
...
1.we don't need stdin here, and it'll cause OSError: too many openfiles problem.
2. after using /scan/taskid/stop , process turned into a zoombie, need add wait()
2015-08-12 16:25:33 +08:00
Miroslav Stampar
e623ee66ad
Better approach for #1320
2015-07-30 23:29:31 +02:00
Miroslav Stampar
bcb25823e6
Fixes #1320
2015-07-30 23:19:38 +02:00
Miroslav Stampar
16f8e4c8ba
Removing unused imports
2015-07-12 12:25:02 +02:00
Miroslav Stampar
e8f87bfa41
Minor patches related to the #1206
2015-05-11 11:01:21 +02:00
Miroslav Stampar
9010e157e9
Conflict fix
2015-05-11 10:11:33 +02:00
Miroslav Stampar
4b2ff4339a
Fixes #1243
2015-05-07 12:36:23 +02:00
Miroslav Stampar
18e62fd507
Fix for an Issue #1240
2015-05-05 14:36:21 +02:00
Miroslav Stampar
a94dcf94e9
Patch for an Issue #1226đ
2015-04-22 16:41:20 +02:00
Miroslav Stampar
dbfa8f1cfc
Fix for a bug reported by the user (conf.scheme/conf.hostname/conf.port were None in multiple targets mode)
2015-04-14 11:05:17 +02:00
Miroslav Stampar
0e4800f73c
Changing default answer for sitemap checking to N
2015-04-14 09:30:01 +02:00
Miroslav Stampar
1e7f2d6da2
Implements #1215
2015-04-06 22:07:22 +02:00
ricterz
bbfdb02a0e
fix mandatorily depend of websocket #1198
2015-03-24 22:25:16 +08:00
Miroslav Stampar
25b23750e8
Bug fix for crawling over non-80 port
2015-03-12 11:49:52 +01:00
Miroslav Stampar
9bd41ed99d
Fixes #1189
2015-03-09 22:02:20 +01:00
Miroslav Stampar
9f4a32ca2b
Automatically checking for sitemap existence in case of --crawl
2015-01-20 10:03:35 +01:00
Miroslav Stampar
f96f33a984
Fix for an Issue #1100
2015-01-08 22:15:04 +01:00
Miroslav Stampar
45bdefd29b
Update of copyright
2015-01-06 15:02:16 +01:00
Miroslav Stampar
c474c16b4a
Removing ML email address
2015-01-06 12:30:49 +01:00
Miroslav Stampar
33508e3bae
Patch for an Issue #1077
2014-12-30 16:11:33 +01:00
Miroslav Stampar
4f602daa5b
Minor patch
2014-12-30 09:35:56 +00:00
Miroslav Stampar
bc91884c4d
Fix for an Issue #1065
2014-12-25 23:05:34 +01:00
Miroslav Stampar
483158c371
Minor style update
2014-12-23 09:07:33 +01:00
Miroslav Stampar
3c23d616e7
Adding a more user friendly (copy-pastable) client example for sqlmapapi client
2014-12-23 09:01:29 +01:00
Miroslav Stampar
0cb7852754
Patch for an Issue #1046
2014-12-17 10:02:36 +01:00
Miroslav Stampar
5166675ff5
Patch for an Issue #1024
2014-12-13 23:32:18 +01:00
Miroslav Stampar
9c225557d1
Patch for an Issue #1020
2014-12-13 14:08:37 +01:00
Miroslav Stampar
6d13b67822
Patch for an Issue #1012
2014-12-11 00:32:26 +01:00
Miroslav Stampar
d726050bc4
Patch for an Issue #991
2014-12-05 11:46:03 +01:00
Miroslav Stampar
7673f3e045
Minor style update
2014-12-05 11:15:33 +01:00
Miroslav Stampar
56965e3608
Patch for an Issue #990
2014-12-04 13:36:41 +01:00
Miroslav Stampar
e03aaa7542
Patch for an Issue #982
2014-12-02 10:23:10 +01:00
Miroslav Stampar
605b126758
Patch for an Issue #976
2014-11-26 13:38:21 +01:00
Miroslav Stampar
1a8b58fca6
Minor update
2014-11-20 16:42:06 +01:00
Miroslav Stampar
f8a8cbf9a6
Storing crawling results to a temporary file (for eventual further processing)
2014-11-20 16:29:17 +01:00
Miroslav Stampar
d8d9678947
Patch for an Issue #935
2014-11-14 00:21:04 +01:00
Miroslav Stampar
9fe6ab749b
Bug fix for occureance of ANSI color codes in multiprocessing hash cracking on Windows OS
2014-11-09 15:08:44 +01:00
Miroslav Stampar
78cc3853b6
Fix for an Issue #902
2014-11-05 09:56:50 +01:00
Miroslav Stampar
38978c3e54
Fix for an Issue #884
2014-10-31 16:45:26 +01:00
Miroslav Stampar
8ea22c5124
Fix for an Issue #878
2014-10-28 15:34:53 +01:00
Miroslav Stampar
3b3b8d4ef2
Potential bug fix (escaping formatted regular expressions)
2014-10-28 14:02:55 +01:00
Miroslav Stampar
34aed7cde0
Bug fix (now it's possible to use multiple parsed requests without mixing associated headers)
2014-10-22 13:49:29 +02:00
Miroslav Stampar
4e3a4eb0ff
Added a prompt for choosing a number of threads when in crawling mode
2014-10-10 12:09:08 +02:00
Miroslav Stampar
2aadfc0fd3
Fix for an Issue #851
2014-10-10 10:38:17 +02:00
Miroslav Stampar
5d10bae31f
Removing trailing blank lines
2014-08-20 21:07:19 +02:00
Miroslav Stampar
9e02816cbd
Raising number of used md5 digits in hashdb key value because of birthday paradox (Python can handle it - automatically expanding to long if required; SQLite can handle it - it will use 6 bytes per INTEGERs instead of 4)
2014-05-29 09:21:48 +02:00
Miroslav Stampar
93bf8e2a13
Bug fix
2014-05-10 01:11:19 +02:00
Miroslav Stampar
f29769b7d0
Minor patch
2014-04-16 09:06:17 +02:00
Miroslav Stampar
b74de19213
Trivial style update
2014-04-07 20:06:03 +02:00
Miroslav Stampar
75f447ccf8
Renaming lib/core/purge to lib/utils/purge
2014-04-07 20:04:07 +02:00
Miroslav Stampar
053b0fd0e9
Renaming conf.oDir to conf.outputDir
2014-04-06 16:54:46 +02:00
Miroslav Stampar
b2cc8f00ef
Bug fix (ORACLE_OLD on Windows - resulted in multiple entry per line output due to no locking used)
2014-03-28 00:41:22 +01:00
Miroslav Stampar
f6e1d9e026
Fix for an Issue #650
2014-03-24 10:46:23 +01:00
Miroslav Stampar
d05bfdd7dd
Implementing option '--where' (Issue #605 )
2014-02-11 16:20:45 +01:00
Bernardo Damele
43a4e85749
updated copyright
2014-01-13 17:24:49 +00:00
Miroslav Stampar
cb1f17cb04
Proper patch for an Issue #591
2014-01-02 12:15:56 +01:00
Miroslav Stampar
e0143e397a
Consistency fix (down below we use direct SQL)
2014-01-02 10:59:53 +01:00
Miroslav Stampar
0b4fcb6845
Fix for an Issue #591
2014-01-02 10:55:40 +01:00
Miroslav Stampar
854a55166c
Fix for an Issue #588
2014-01-02 10:29:10 +01:00
Miroslav Stampar
9b4b070ecf
Minor cosmetics
2014-01-02 10:05:58 +01:00
Miroslav Stampar
fd6dcd8bf5
Merge pull request #583 from mattoufoutu/api
...
RESTful API improvements
2013-12-17 14:10:19 -08:00
Miroslav Stampar
7d8eb148ce
Patch for an Issue #565 (DuckDuckGo doesn't like identity encoding)
2013-12-17 09:30:04 +01:00
Miroslav Stampar
4819e19200
Patch for an Issue #584
2013-12-16 22:00:47 +01:00
Mathieu Deous
4c9456dd72
moar logging!
2013-12-15 16:59:47 +01:00
Mathieu Deous
438ad73016
avoid names shadowing
2013-12-15 09:22:01 +01:00
Mathieu Deous
eda9a3da67
all instance attributes should be defined in constructor
2013-12-15 09:16:38 +01:00
Mathieu Deous
3effaee2a1
avoid using global variables, use a "store" class
2013-12-15 00:19:58 +01:00
Mathieu Deous
c70f2a4e6d
unused imports
2013-12-15 00:00:08 +01:00
Mathieu Deous
aa02019638
return file content in a json message when calling download endpoint
2013-12-14 16:33:17 +01:00
Mathieu Deous
c87ad1bab5
make returned values more coherent
2013-12-14 16:22:30 +01:00
Mathieu Deous
72137e85f9
do not reset options when firing a scan
2013-12-14 15:59:47 +01:00
Mathieu Deous
af7ad31182
fix commit method usage (belongs to connection, not cursor)
2013-12-14 15:58:09 +01:00
Mathieu Deous
c5a3f54b89
remove unused imports
2013-12-14 15:47:26 +01:00
Mathieu Deous
8a946509b9
PEP8
2013-12-14 15:44:10 +01:00
Mathieu Deous
c3dd6e1e32
api's get_option function doesn't lookup the right object
2013-12-08 17:46:02 +01:00
Miroslav Stampar
7054586e8a
Update for an Issue #565 (more work TBD - DuckDuckGo has some kind of IP blocking mechanism)
2013-11-25 20:57:07 +01:00
Miroslav Stampar
d7906e8f18
Minor fix
2013-10-15 09:49:27 +02:00
Ben Buchacher
54a6c01005
Fix - Custom objects cannot be serialized in JSON
...
Custom objects cannot be serialized in JSON, convert tasks into list before serializing.
2013-10-10 16:06:29 -07:00
Miroslav Stampar
8e2f4669d8
Removing dependency for bz2 as there are some reported problems with the library on non-standard platforms
2013-10-02 20:32:18 +02:00
Miroslav Stampar
c586559e30
Patch for an Issue #510
2013-08-20 18:54:32 +02:00
Miroslav Stampar
f54082111d
Better way how to deal with required extensions
2013-07-13 19:25:49 +02:00
stamparm
1ae68b9bb3
Update for an Issue #405 (fix for usage of old 'complete' data from previous runs)
2013-07-10 17:18:09 +02:00
stamparm
f6c7b398fd
Update for an Issue #405 (fix for persistent options problem)
2013-07-10 16:57:44 +02:00
stamparm
db536427f0
Adding a question for storing hashes to a temporary file (after a mention of it on Twitter)
2013-07-04 15:34:00 +02:00
stamparm
5ff09aff63
Some more adjustments (Issue #475 )
2013-07-01 12:50:12 +02:00
Miroslav Stampar
a1842f44f5
Fix for an Issue #477
2013-06-29 20:55:48 +02:00
stamparm
a53823f9b7
Minor refactoring
2013-06-19 10:59:26 +02:00
Miroslav Stampar
63d0e9bb12
Adding support for MsSQL >=2012 hash format (based on commit 70107f74f0be5357654f170a3f321e3e55e81881)
2013-06-13 21:50:35 +02:00
stamparm
f4ca4cd6c5
Minor update
2013-05-29 15:49:09 +02:00
stamparm
bc4e1dab19
Getting rid of those ugly warning messages
2013-05-28 11:24:56 +02:00
Miroslav Stampar
4f49dad2ba
Minor cosmetics
2013-05-19 01:19:54 +02:00
Miroslav Stampar
6cfcc1af63
Minor cosmetic
2013-05-19 01:17:22 +02:00
stamparm
cb9ea67c8d
Code refactoring (moving progress.py to lib/utils)
2013-05-13 14:48:39 +02:00
stamparm
2bfdac5ebc
Minor update for crawler
2013-04-30 18:32:46 +02:00
stamparm
ebe8ee3500
Fix for crawler and redirection case
2013-04-30 18:08:26 +02:00
stamparm
3c110b3620
Minor bug fix
2013-04-30 16:40:16 +02:00
stamparm
9d045e14e8
Implementation for an Issue #437
2013-04-18 17:06:45 +02:00
Miroslav Stampar
840ee26a14
If SQLAlchemy is available and it has problems while connecting then it should be smarter to not force the other (standard) method - if available
2013-04-15 18:42:26 +02:00
stamparm
de99717b00
Disable sqlalchemy warnings if applicable
2013-04-15 16:29:08 +02:00
stamparm
1c2197e8de
Minor bug fix for an Issue #361 (removal of that ugly garbage clean warning message after sqlmap ends)
2013-04-15 16:18:40 +02:00
stamparm
6ab2e8eca4
Trivial style update
2013-04-15 16:09:04 +02:00
stamparm
9ccbdb3fdf
Added a check for an Issue #361
2013-04-15 15:36:10 +02:00
stamparm
1c47b33020
Few bug fixes in -d (there were late values in payloads in some cases; sqlalchemy returns RowProxy for tuple)
2013-04-15 15:23:45 +02:00
stamparm
f936746423
Code restyling
2013-04-15 14:31:27 +02:00
stamparm
aed738d6e6
Update for an Issue #361
2013-04-15 14:20:21 +02:00
stamparm
8853e43616
Applying patch from Brandon Perry via ML
2013-04-15 11:01:07 +02:00
stamparm
3e65037a05
Introducing lib/utils/sqlalchemy.py (Issue #361 )
2013-04-15 10:33:25 +02:00
stamparm
8c9da95343
Style and consistency update (url -> URL)
2013-04-09 11:48:42 +02:00
stamparm
3948b527dd
Update for an Issue #429
2013-04-09 11:36:33 +02:00
stamparm
91054099aa
Minor style update
2013-04-09 10:42:58 +02:00
stamparm
d1ae62b22b
Patch for an Issue #422
2013-03-19 12:27:49 +01:00
stamparm
7111cdabe3
Minor cosmetics
2013-03-18 11:41:15 +01:00
Miroslav Stampar
eb08c8d752
Another update for an Issue #352
2013-03-13 19:42:22 +01:00
Miroslav Stampar
9e49d8c68f
Adding support for SHA2 hash functions
2013-03-05 11:04:46 +01:00
Bernardo Damele
63ddeb9008
unnecessary variable
2013-02-15 13:26:28 +00:00
Bernardo Damele
20c5f9a030
consistency fix
2013-02-15 09:29:36 +00:00
Bernardo Damele
87db5d0dab
minor bug fix to avoid duplicates - #297
2013-02-15 00:53:05 +00:00
Bernardo Damele
4b9d8ed673
reverted a previous commit as not all distributions create a link file /usr/bin/python2 to the Python interpreter
2013-02-14 11:32:17 +00:00
Bernardo Damele
cb6d549e57
Merge branch 'master' of github.com:sqlmapproject/sqlmap
2013-02-14 11:25:12 +00:00
Bernardo Damele
a67ef4117f
make sure to use Python 2 interpreter when default system Python is version 3
2013-02-14 11:25:04 +00:00
Miroslav Stampar
efe1bf0ded
Minor fix (for those multiline cases like in MsSQL)
2013-02-14 12:20:40 +01:00
Miroslav Stampar
9b231f87d6
Minor bug fix (regarding Issue #379 ) - in case that two processes enter the same proc_count decrementing line sqlmap would halt
2013-02-13 15:31:50 +01:00
Miroslav Stampar
8138d1318e
Minor fix
2013-02-13 15:10:49 +01:00
Miroslav Stampar
6a98d375b1
More general except
2013-02-12 14:39:21 +01:00
Miroslav Stampar
ee1017a5a7
Minor fix
2013-02-08 13:46:39 +01:00
Bernardo Damele
b477c56b52
first steps to allow multiple scans on the same taskid - issue #297
2013-02-07 00:05:26 +00:00
Bernardo Damele
dd6c73ea24
fixed --passwords output for API - #297
2013-02-06 21:45:51 +00:00
Bernardo Damele
21afba9571
got the partial output finally properly replaced by complete output in IPC database - #297
2013-02-06 21:32:26 +00:00
Bernardo Damele
2fa2f30d21
slighlty better, still not optimal
2013-02-06 17:45:52 +00:00
Bernardo Damele
e439c3d3f5
minor refactoring - #297
2013-02-06 17:09:43 +00:00
Miroslav Stampar
060eac110a
Cleaner version checking
2013-02-06 10:28:17 +01:00
Miroslav Stampar
b1f31103f9
Removing that ugly disk I/O error in live testing mode
2013-02-05 17:04:42 +01:00
Miroslav Stampar
934808f53b
Fix for an Issue #379
2013-02-05 16:13:45 +01:00
Bernardo Damele
f7d826fee1
first case where partial output is retrievable via RESTful API - issue #297
2013-02-05 14:43:03 +00:00
Miroslav Stampar
4faa5f0f49
Fix for stalling in retrieving international letters (--technique=B)
2013-02-05 10:27:31 +01:00
Miroslav Stampar
74e82b2b53
Removing redundant check
2013-02-04 20:42:28 +01:00
Miroslav Stampar
cf8e5d535d
Minor cleanup
2013-02-04 20:15:44 +01:00
Miroslav Stampar
c5ae967fe0
Potential fix for an Issue #379
2013-02-04 17:43:58 +01:00
Bernardo Damele
9370f96a67
step by step getting there to partial output presentation to restful API (issue #297 ), not quite yet though..
2013-02-03 22:09:33 +00:00
Bernardo Damele
b55555e4e5
minor bug fix
2013-02-03 21:39:26 +00:00
Bernardo Damele
bd1ea13b8d
Merge branch 'master' of github.com:sqlmapproject/sqlmap
2013-02-03 11:31:12 +00:00
Bernardo Damele
f8bc74758c
improvement to restful API to store to IPC database partial entries, not yet functional (issue #297 )
2013-02-03 11:31:05 +00:00
Miroslav Stampar
6d942f92b5
Removing --check-payload (PHPIDS doesn't update rules lately; also, WAF/IDS/IPS is more than just regexes (unencoding, removing junk, etc.))
2013-02-01 10:03:06 +01:00
Bernardo Damele
e8bd3c9c9f
cosmetics
2013-01-29 17:00:28 +00:00
Bernardo Damele
edd6699ed1
code refactoring and added /status method for scan (issue #297 )
2013-01-29 16:11:25 +00:00
Bernardo Damele
1152cf8958
increased SQLite connection timeout to 3 seconds, the object will now wait for the lock to go away max 3 seconds, no longer 1 only. Relevant code refactoring and minor improvements all over the API library (issue #297 )
2013-01-29 15:38:09 +00:00
Bernardo Damele
f1ab887c55
major enhancement, code refactoring for issue #297
2013-01-29 01:39:27 +00:00
Bernardo Damele
d07881b6c3
apply a little bit of secure coding practices to the API
2013-01-27 12:26:40 +00:00
Bernardo Damele
195d17449e
first test of stdout/stderr redirect to a database when sqlmap is executed from restful API ( #297 )
2013-01-25 17:11:31 +00:00
Bernardo Damele
5b3c8d8991
first implementation of asynchronous inter-protocol communication between the sqlmap RESTful API and the sqlmap engine with SQLite
2013-01-24 12:57:24 +00:00
Miroslav Stampar
601eb1e49a
Unescaping is renamed to escaping
2013-01-18 15:40:37 +01:00
Bernardo Damele
a43202f3c0
updated copyright
2013-01-18 14:07:51 +00:00
Miroslav Stampar
33ea811c6c
Removing some unused stuff (mainly imports)
2013-01-18 11:50:02 +01:00
Bernardo Damele
5e059ab6db
added check for DB2 lib
2013-01-17 14:20:34 +00:00
Miroslav Stampar
7a1d484115
Implementation for an Issue #340
2013-01-15 16:05:33 +01:00
Miroslav Stampar
2cac7e860e
Minor refactoring
2013-01-14 16:27:50 +01:00
Miroslav Stampar
31302eb707
Minor update
2013-01-14 16:26:07 +01:00
Miroslav Stampar
2a86c1cadc
Another cosmetics
2013-01-14 16:24:55 +01:00
Miroslav Stampar
1e1f560d0c
Minor cosmetics
2013-01-14 16:24:28 +01:00
Miroslav Stampar
0c2474cc22
Minor update
2013-01-14 16:21:40 +01:00
Miroslav Stampar
a5a309212a
Fix for an Issue #339
2013-01-14 16:18:03 +01:00
Miroslav Stampar
834be1eddc
Restyling redundant 'except Exception' form
2013-01-10 15:54:28 +01:00
Miroslav Stampar
934d41dac2
Minor style update (PEP8)
2013-01-10 15:02:28 +01:00
Miroslav Stampar
ca3d35a878
Some PEP8 related style cleaning
2013-01-10 13:18:44 +01:00
Bernardo Damele
8093f3950d
properly distinguish stdout from stderr with a separate pipe (tracebacks go to stderr) - issue #297
2013-01-10 00:52:44 +00:00
Bernardo Damele
ef40779ad3
upgraded to use custom subprocessng for non-blocking send and read functions for spawned processes. Added new method to display range of log messages, just in case and improved parsing/unpickling of read log messages
2013-01-10 00:01:28 +00:00
Bernardo Damele
9766f6025e
logging is now handled in a separate file descriptor :) - issue #297
2013-01-09 22:09:50 +00:00
Miroslav Stampar
bf5544903b
Minor style update
2013-01-09 16:10:26 +01:00
Miroslav Stampar
bdd2592848
Merge branch 'master' of github.com:sqlmapproject/sqlmap
2013-01-09 15:22:30 +01:00
Miroslav Stampar
3d4f381ab5
Patch for an Issue #169
2013-01-09 15:22:21 +01:00
Bernardo Damele
c44a829b9b
pass a pickled options object to sqlmap engine when called from API
2013-01-09 12:34:45 +00:00
Bernardo Damele
1e1892c962
prep for subprocess..
2013-01-07 11:10:33 +00:00
Miroslav Stampar
e4a3c015e5
Replacing old and deprecated raise Exception style (PEP8)
2013-01-03 23:20:55 +01:00
Miroslav Stampar
cb91729913
Fix for an Issue #324 (crawling when HTML is not well-formed)
2012-12-27 20:55:37 +01:00
Bernardo Damele
832567ecf6
import order
2012-12-21 23:34:37 +00:00
Miroslav Stampar
352e516400
Bottle is a 3rd party tool (not going to extra folder)
2012-12-21 10:18:30 +01:00
Miroslav Stampar
0d5d84edc7
Minor cleanup
2012-12-20 21:03:41 +01:00
Miroslav Stampar
712cf4e4db
Fix for an Issue #316
2012-12-20 20:55:59 +01:00
Bernardo Damele
89d8c58fd1
poor attempt at forking a child process for sqlmap engine execution, output is not handled yet
2012-12-20 17:56:53 +00:00
Bernardo Damele
912323c12d
minor bug fix ( #297 )
2012-12-20 17:05:44 +00:00
Bernardo Damele
7adaffa71b
fixed options initiation
2012-12-20 16:53:43 +00:00
Bernardo Damele
b0635bddcc
adjustments
2012-12-20 15:29:23 +00:00
Bernardo Damele
e9ab33e9dd
standalone REST API, code cleanup ( #297 )
2012-12-20 14:35:02 +00:00
Bernardo Damele
5632279bf7
removed deprecated feature ( #287 )
2012-12-20 13:21:07 +00:00
Miroslav Stampar
c2c4601d6e
Minor restyling
2012-12-20 11:06:52 +01:00
Bernardo Damele
0500712a03
removed unuseful prints
2012-12-17 13:29:19 +00:00
Bernardo Damele
f40c52cc17
comment adjustment
2012-12-17 11:28:03 +00:00
Bernardo Damele
d4a061d0c3
code cleanup - #297
2012-12-15 00:29:35 +00:00
Bernardo Damele
0c3da5c7eb
code refactoring and first time logger is handled by a separate file descriptor (issue #297 )
2012-12-15 00:12:22 +00:00
Bernardo Damele
2f6a31605c
code refactoring ( #279 )
2012-12-14 22:00:42 +00:00
Bernardo Damele
8dee8355c2
on our way to make it thread safe.. it is a long way actually (issue #297 )
2012-12-14 18:13:21 +00:00
Bernardo Damele
21ecffb750
added more comments, improved cleanup method
2012-12-14 17:21:19 +00:00
Bernardo Damele
1421e6a9d4
implemented cleanup and status admin methods
2012-12-14 16:18:45 +00:00
Bernardo Damele
4fa2f400ec
minor fix
2012-12-14 15:55:30 +00:00
Bernardo Damele
4c4cb856ff
minor bug fix to the /scan/<taskid>output method, forced each taskid to have its own temporary folder for output - issue #297
2012-12-14 15:52:35 +00:00
Bernardo Damele
27906f388f
added first methods to interact with sqlmap core, it is now possible to launch a scan from the API, hurray! (issue #297 )
2012-12-14 14:51:01 +00:00
Bernardo Damele
f52d81c834
Merge branch 'master' of github.com:sqlmapproject/sqlmap
2012-12-14 13:40:36 +00:00
Bernardo Damele
0b71c85d95
refactoring, code cleanup, more security-related headers and first /scan method implementation (issue #297 )
2012-12-14 13:40:25 +00:00
Miroslav Stampar
a3acf72e52
Fix for argparse issue
2012-12-14 14:35:11 +01:00
Bernardo Damele
3d9779ffd4
further improvements to RESTful API: enforce security headers across all HTTP responses properly and make consistent responses across methods ( #297 )
2012-12-14 12:15:04 +00:00
Bernardo Damele
7b43837238
cleaner solution for imports as standalone client/server (issue #297 )
2012-12-14 12:04:44 +00:00
Bernardo Damele
90d5696b25
enhanced RESTful API to support JSON requests and improved standalone client/server skeleton (issue #297 )
2012-12-14 12:01:13 +00:00
Bernardo Damele
2e97405ffa
bundle bottle library in sqlmap (it is MIT license) - issue #297
2012-12-14 03:00:30 +00:00
Bernardo Damele
0ec420cc70
leftovers
2012-12-14 02:54:16 +00:00
Bernardo Damele
a1b83cd56f
added first implementation of REST-JSON API library - issue #297
2012-12-14 02:52:31 +00:00
Bernardo Damele
6e31e87de1
added initial support (hidden from -hh and not yet usable) for REST-JSON API
2012-12-14 02:49:25 +00:00
Miroslav Stampar
c040323821
Minor update
2012-12-13 14:55:20 +01:00
Miroslav Stampar
b78b56d782
Update for an Issue #287 regarding read_output returning values
2012-12-12 17:17:36 +01:00
Miroslav Stampar
e381158058
Hmmm... Let me guess. Update for an Issue #287
2012-12-12 16:31:20 +01:00
Miroslav Stampar
c3f20a136f
Minor update for an Issue #287
2012-12-12 14:03:03 +01:00
Miroslav Stampar
32b39c72e4
Minor update
2012-12-12 12:07:56 +01:00
Miroslav Stampar
af52e8e8c2
Minor update for an Issue #287
2012-12-12 12:01:18 +01:00
Miroslav Stampar
a6448e8768
Update for an Issue #287
2012-12-12 11:54:59 +01:00
Miroslav Stampar
ef33729381
Writing only unique hashes to an output file (for eventual cracking with 3rd party tools)
2012-12-12 09:59:24 +01:00
Miroslav Stampar
b9f6fc5f4e
First commit (and working one) for an Issue #287 (XML-RPC server)
2012-12-11 16:02:06 +01:00
Miroslav Stampar
75e6d77fbc
Minor refactoring
2012-12-07 11:54:34 +01:00
Miroslav Stampar
974407396e
Doing some more style updating (capitalization of exception classes; using _ is enough for private members - __ is used in Python specific methods)
2012-12-06 14:14:19 +01:00
Miroslav Stampar
baccbd6f48
Implementation for an Issue #283
2012-12-06 11:57:57 +01:00
Miroslav Stampar
ab67344448
Removed unused imports and variables (pyflake-ing)
2012-12-06 11:15:05 +01:00
Miroslav Stampar
b6650add46
Introducing 'new style classes' (idea from Pull request #284 )
2012-12-06 10:42:53 +01:00
Miroslav Stampar
0f191f624c
Taking some goodies from Pull request #284
2012-12-06 10:21:53 +01:00
Miroslav Stampar
d4b5133df7
Update for an Issue #272
2012-12-04 17:04:32 +01:00
Miroslav Stampar
a14697e8cf
Implementation for an Issue #272
2012-12-04 16:47:34 +01:00
Miroslav Stampar
0664e72bea
Minor fix for an Issue #230
2012-11-30 12:13:34 +01:00
Miroslav Stampar
181c3534f0
Patch for an Issue #237
2012-11-08 19:16:37 +01:00
Miroslav Stampar
3cf5fc2f5a
Fix for an Issue #230
2012-11-05 15:10:49 +01:00
Miroslav Stampar
2de52927f3
Code refactoring (epecially Google search code)
2012-10-30 18:38:10 +01:00
Miroslav Stampar
76b793b199
Fix for an Issue #228
2012-10-30 18:08:25 +01:00
Miroslav Stampar
6e2041bc13
Better language than in last commit
2012-10-30 11:54:21 +01:00
Miroslav Stampar
1bbeb92eb6
Better language (used formation 'not required' in case of help for --dependencies while 'required'->'needs' in a check itself)
2012-10-30 11:19:39 +01:00
Miroslav Stampar
919f75db9b
Improvement and fix for pivotDumpTable mechanism
2012-10-28 23:09:35 +01:00
Miroslav Stampar
d7973c3e32
Improvement of pivotDumpTable mechanism (no more fail on first entry)
2012-10-28 22:18:22 +01:00
Miroslav Stampar
c1b8226329
Massive renaming (proper naming is inband = union & error techniques! - query naming stays as they are/in code things like forgeInbandQuery are renamed to forgeUnionQuery)
2012-10-28 00:36:09 +02:00
Miroslav Stampar
a435ba6863
Minor fix
2012-10-28 00:19:00 +02:00
Miroslav Stampar
06805b27f2
Bug fix (time was also meant to be disabled in case of error/inband getvalues)
2012-10-27 23:16:25 +02:00
Miroslav Stampar
7207cf29dd
Minor update
2012-10-26 11:05:44 +02:00
Miroslav Stampar
afd82b92dd
Patch for an Issue #221
2012-10-25 10:21:36 +02:00
Miroslav Stampar
eb6f17b561
Fix for --dump and -d=mssql
2012-10-23 15:02:43 +02:00
Miroslav Stampar
fccdb824bb
Patch for an Issue #193
2012-09-25 11:21:39 +02:00
Miroslav Stampar
12d33c7a38
Fix for Issue #180 and #181 (missing module from an Issue #179 )
2012-09-10 22:39:56 +02:00
Miroslav Stampar
f1f6364690
Changing default readInput value on dictionary-based attack depending on conf.multipleTargets
2012-08-22 16:10:38 +02:00
Miroslav Stampar
01f481c332
Minor refactoring of dictionaries
2012-08-21 11:19:15 +02:00
Miroslav Stampar
b7415d36df
Minor refactoring
2012-08-21 10:28:25 +02:00
Miroslav Stampar
142fc887f1
Fix for an Issue #129
2012-07-31 11:03:44 +02:00
Miroslav Stampar
cba387a0a0
Minor speed up
2012-07-26 15:42:04 +02:00
Miroslav Stampar
655dd55a6f
Implementation of an Issue #105
2012-07-18 13:32:34 +02:00
Miroslav Stampar
41d16e55cb
Typo fix ( #102 )
2012-07-17 09:13:19 +02:00
Miroslav Stampar
c1a14257a4
Removing --disable... switches and making changes in default choice(s) for respectable sections
2012-07-16 11:31:51 +02:00
Miroslav Stampar
87ecf205cb
More work for Issue #66
2012-07-14 17:01:04 +02:00
Bernardo Damele
162da75a04
modified homepage address
2012-07-12 18:38:03 +01:00
Miroslav Stampar
bc5025b06c
Fix for Issue #59
2012-07-05 12:34:27 +02:00
Miroslav Stampar
8eefe4b71f
Getting back revision number - displayed like in GitHub commits (Issue #52 )
2012-07-02 13:01:20 +02:00
Miroslav Stampar
2a72fcce2b
Fix for Issue #42
2012-06-28 13:55:30 +02:00
jekil
c39e5a85ba
Removed $id$ tags
2012-06-27 20:56:43 +02:00
Miroslav Stampar
6c4bd84d18
minor fix (turning back the functionality of kb.suppressResumeInfo)
2012-06-25 16:19:51 +00:00
Miroslav Stampar
ec44e88db8
lots of refactoring regarding removal of already obsolete session file mechanism
2012-06-21 10:09:10 +00:00
Miroslav Stampar
d2dd47fb23
some more refactoring
2012-06-14 13:52:56 +00:00
Miroslav Stampar
75dd1d6a2b
minor fix
2012-05-27 21:54:56 +00:00
Miroslav Stampar
00d22f013f
some consistency in variable naming at the file level
2012-05-25 10:08:55 +00:00
Miroslav Stampar
e00f4a8934
minor cosmetics
2012-05-08 10:50:04 +00:00
Miroslav Stampar
a121339395
automatically writing uncracked hashes to a file for eventual further processing
2012-05-08 10:46:05 +00:00
Miroslav Stampar
83387d92bb
minor bug fix
2012-04-04 23:32:20 +00:00
Miroslav Stampar
5e358b51f9
few fixes related to bug report by Shadow Folder (AttributeError: 'list' object has no attribute 'isdigit')
2012-04-04 09:25:05 +00:00
Miroslav Stampar
b0787f193c
getting rid of obsolete getCompiledRegex (in newer versions of Python regexes are already cached)
2012-04-03 14:34:15 +00:00
Miroslav Stampar
1e01203562
few just in case "patches"
2012-04-02 12:58:10 +00:00
Miroslav Stampar
b4cf8b05b3
added switch --load-cookies
2012-03-07 14:48:45 +00:00
Miroslav Stampar
8b9c5c66cc
code refactoring regarding charsetType inside inference/bisection
2012-02-29 14:36:23 +00:00
Miroslav Stampar
3909658fc2
few minor just in case updates
2012-02-27 11:15:53 +00:00
Miroslav Stampar
f94b91ad87
added helper function for HashDB data storing/retrieval
2012-02-24 13:07:20 +00:00
Miroslav Stampar
b3bd4144f5
removing of unused imports together with some general code refactoring
2012-02-22 10:40:11 +00:00
Miroslav Stampar
bc4dd7c0dd
fix for -g
2012-02-20 10:02:19 +00:00
Miroslav Stampar
aee269cc14
gazillion changes, nothing will work, muhahaha
2012-02-17 14:22:48 +00:00
Miroslav Stampar
e1f86c97c4
minor refactoring
2012-02-16 09:46:41 +00:00
Miroslav Stampar
95f89ab63a
updating copyright date
2012-01-11 14:59:46 +00:00
Miroslav Stampar
18930539cd
more concise language
2012-01-07 17:45:45 +00:00
Miroslav Stampar
29f502fe29
some refactoring
2011-12-28 16:27:17 +00:00
Miroslav Stampar
22c3fe49bb
some refactoring
2011-12-28 13:50:03 +00:00
Miroslav Stampar
dda979a15a
minor refactoring
2011-12-27 12:31:29 +00:00
Miroslav Stampar
89d2c7c042
minor update
2011-12-22 20:54:20 +00:00
Miroslav Stampar
9f68e54fff
minor cleanup
2011-12-22 10:59:28 +00:00
Miroslav Stampar
526aacb640
code cleanup
2011-12-21 22:59:23 +00:00
Miroslav Stampar
81bd9a201b
minor refactoring
2011-12-21 11:50:49 +00:00
Miroslav Stampar
113ebf5e9d
minor update
2011-12-20 16:08:17 +00:00
Miroslav Stampar
bdc724cb46
minor bug fix
2011-12-20 10:34:28 +00:00
Miroslav Stampar
14e8ca6d41
minor fix
2011-11-23 14:26:40 +00:00
Miroslav Stampar
9b99530add
minor bug fix
2011-11-23 08:14:20 +00:00
Miroslav Stampar
e33f70269b
minor optimization
2011-11-22 12:44:28 +00:00
Miroslav Stampar
ac041399f0
minor patch
2011-11-22 11:04:43 +00:00
Miroslav Stampar
9697e80013
some more optimizations
2011-11-22 10:54:29 +00:00
Miroslav Stampar
267d67b024
minor update
2011-11-22 10:41:56 +00:00
Miroslav Stampar
b117c40aa5
major improvement of HashDB speed in multi-threaded mode
2011-11-22 10:09:35 +00:00
Miroslav Stampar
f1f0828b28
minor update
2011-11-21 22:27:47 +00:00
Miroslav Stampar
704e1a4e74
minor minor update
2011-11-21 22:19:52 +00:00
Miroslav Stampar
fcac3d494b
minor beautification
2011-11-21 22:18:04 +00:00
Miroslav Stampar
753dcb3450
minor update
2011-11-21 22:12:24 +00:00
Miroslav Stampar
da51e8a9d1
minor fix
2011-11-21 21:55:05 +00:00
Miroslav Stampar
440b7efe55
minor optimization
2011-11-20 20:14:47 +00:00
Miroslav Stampar
e1a92d59de
implementing WordPress phpass hash cracking routine
2011-11-20 19:10:46 +00:00
Miroslav Stampar
6c07573e30
minor update
2011-11-06 11:42:02 +00:00
Miroslav Stampar
030c57a0c8
minor update
2011-11-06 11:18:16 +00:00
Miroslav Stampar
2dbd51e357
fix for google searches
2011-11-06 08:55:09 +00:00
Miroslav Stampar
24bda96d9e
adding items from John the Ripper's word list to the dictionary for Oracle cracking
2011-11-02 11:21:49 +00:00
Miroslav Stampar
ea125d820d
some more speed ups for hash cracking
2011-11-02 09:57:42 +00:00
Miroslav Stampar
2f355db230
minor fix
2011-11-02 09:32:15 +00:00
Miroslav Stampar
0e96af65e6
minor update
2011-11-02 07:06:07 +00:00
Miroslav Stampar
d735582536
major speed improvement of hash cracking
2011-11-02 06:53:43 +00:00
Miroslav Stampar
b3a57391e4
minor update
2011-11-01 20:39:22 +00:00
Miroslav Stampar
3e3f037f1e
improvement of hash cracking routine
2011-11-01 19:58:22 +00:00
Miroslav Stampar
4cafc5f31b
language update
2011-11-01 19:09:17 +00:00
Miroslav Stampar
f9bb762d1d
minor improvement (resuming of already cracked values)
2011-11-01 19:00:34 +00:00
Miroslav Stampar
ef987c6954
adding compatibility support for using --crawl and --forms together
2011-10-29 09:32:20 +00:00
Miroslav Stampar
3c31ccd16e
minor update
2011-10-26 22:37:04 +00:00
Miroslav Stampar
9d31230d5e
minor update
2011-10-26 21:56:26 +00:00
Miroslav Stampar
d64c0af461
minor update
2011-10-26 14:31:00 +00:00
Miroslav Stampar
9c1d1ca5d8
minor update
2011-10-26 14:13:38 +00:00
Miroslav Stampar
2a72c1ae68
minor fix
2011-10-26 11:30:10 +00:00
Miroslav Stampar
a99547363f
some fixes
2011-10-26 11:24:15 +00:00
Miroslav Stampar
3d883a2218
minor update
2011-10-26 11:10:15 +00:00
Miroslav Stampar
d467b40ff6
minor fix
2011-10-26 10:54:43 +00:00
Miroslav Stampar
8d668b1833
some updates regarding hash attack
2011-10-26 10:30:32 +00:00
Miroslav Stampar
f41ae9cf49
minor update
2011-10-26 09:40:47 +00:00
Miroslav Stampar
0b68144c8f
minor fixes for hash cracking
2011-10-26 09:29:41 +00:00
Miroslav Stampar
18affca0bc
minor update
2011-10-26 09:14:18 +00:00
Miroslav Stampar
eaaf6041b9
minor fix
2011-10-25 11:20:42 +00:00
Miroslav Stampar
25f0ec3597
some minor range to xrange conversion (where safe to do)
2011-10-21 22:34:27 +00:00
Miroslav Stampar
7956390631
minor update
2011-10-11 22:27:49 +00:00
Miroslav Stampar
dacfeafc5f
minor optimization
2011-10-10 17:45:16 +00:00
Miroslav Stampar
47b27a5988
minor improvement of HashDB
2011-10-10 14:23:17 +00:00
Miroslav Stampar
fd9acfd7d2
fix
2011-09-26 13:36:08 +00:00
Miroslav Stampar
744636a8c1
switching to SQLite resume support (on error and union techniques this moment)
2011-09-25 20:36:32 +00:00
Bernardo Damele
c15439ab7f
Minor improvement to --passwords output
2011-08-02 09:04:34 +00:00
Miroslav Stampar
457f501bbd
proper fix
2011-08-01 23:48:38 +00:00
Miroslav Stampar
93ae1dfa2b
minor bug fix
2011-07-31 08:52:48 +00:00
Miroslav Stampar
3fc603843e
minor fix
2011-07-27 23:26:36 +00:00
Miroslav Stampar
f7eaffcec5
i believe that this could be ok
2011-07-26 21:28:48 +00:00
Miroslav Stampar
5770c08784
minor optimization and refactoring
2011-07-25 20:17:44 +00:00
Miroslav Stampar
ec1bc0219c
hello big tables, this is sqlmap, sqlmap this is big tables
2011-07-24 09:19:33 +00:00
Miroslav Stampar
7881ded60d
quick fix (this other library was doing problems)
2011-07-20 22:20:16 +00:00
Miroslav Stampar
9d996c07fb
another quick fix
2011-07-20 13:00:34 +00:00
Miroslav Stampar
fad77dd078
fix for a ImportError bug reported by g@brindi.si
2011-07-20 12:18:36 +00:00
Miroslav Stampar
9cf33ec997
now status is no longer represented in percentage (impossible in cases where we need to support too small and too large dictionaries - technical issues regarding counting) but by the rotating char
2011-07-15 13:24:13 +00:00
Bernardo Damele
cda25cda2f
Cosmetics
2011-07-12 20:49:27 +00:00
Miroslav Stampar
3583d6dd1b
quick fixes, more work to do
2011-07-12 20:32:19 +00:00
Miroslav Stampar
0126b8eb0e
minor revert (it's illegal to use append for updating one array with another array)
2011-07-12 19:34:54 +00:00
Bernardo Damele
48b7245a33
Minor bug fix
2011-07-12 15:47:04 +00:00
Bernardo Damele
0b8c6e4c81
Minor bug fix
2011-07-12 15:30:40 +00:00
Miroslav Stampar
1f826684f6
disabling multiprocessing (maybe permanently) support for Windows as of complications with sharing dictionary iterator
2011-07-11 13:16:59 +00:00
Miroslav Stampar
7bc6280d53
possible fix for a multi-processing "problem" reported by christopher.oakley@gmail.com
2011-07-11 11:40:27 +00:00
Miroslav Stampar
f5e45bf113
quick fix for a bug reported by jovon.itwaru@gmail.com
2011-07-11 08:54:39 +00:00
Bernardo Damele
aedcf8c8d7
Changed homepage address
2011-07-07 20:10:03 +00:00
Miroslav Stampar
93b296e02c
few bug fixes (NTLM credential parsing was wrong), some switch reordering (few Misc to General), implemented --check-waf switch (irony is that this will also be called highly experimental/unstable while other things will be called "major/turbo/super bug fix/implementation")
2011-07-06 05:44:47 +00:00
Miroslav Stampar
b8ffcf9495
few fixes here and there and multi-core processing for dictionary based hash attack
2011-07-04 19:58:41 +00:00
Bernardo Damele
861cdb1b14
cosmetics
2011-07-01 10:04:34 +00:00
Miroslav Stampar
4513ef409e
massive (like really massive) dictionary support
2011-06-30 23:44:49 +00:00
Miroslav Stampar
43db6b03a7
update with a feature request (file with list of wordlist files)
2011-06-30 08:42:43 +00:00
Miroslav Stampar
e00cf81f7e
minor update
2011-06-24 19:50:13 +00:00
Miroslav Stampar
e9286ddd5b
fix for a bug reported by g@brindi.si (UnicodeDecodeError: 'ascii' codec can't decode byte 0xc2 in position
...
47: ordinal not in range(128))
2011-06-24 19:24:11 +00:00
Miroslav Stampar
eaa2a4202f
changing to: --crawl=CRAWLDEPTH
2011-06-24 05:40:03 +00:00
Bernardo Damele
1cb12ea659
replaced third-party library python-mysql with python pymysql, http://code.google.com/p/pymysql/ (MIT license)
2011-06-22 13:31:07 +00:00
Miroslav Stampar
dfc02d8c3c
sorry Bernardo, i hope your mobile is turned off :)))
2011-06-20 22:47:24 +00:00
Miroslav Stampar
2a4a284a29
crawler fix (skip binary files)
2011-06-20 22:41:38 +00:00
Miroslav Stampar
20bb1a685b
really minor update
2011-06-20 21:57:53 +00:00
Miroslav Stampar
812cd2f19b
minor update
2011-06-20 21:47:03 +00:00
Miroslav Stampar
e8ac7414f2
bug fix
2011-06-20 21:36:15 +00:00
Miroslav Stampar
d6062e8fc9
minor fix for crawler and far less message overlaps in future
2011-06-20 21:18:12 +00:00
Miroslav Stampar
8968c708a0
minor update
2011-06-20 14:27:24 +00:00
Miroslav Stampar
17fac6f67f
minor update
2011-06-20 13:53:39 +00:00
Miroslav Stampar
4d1fa5596b
added support for --scope in --crawl mode
2011-06-20 12:37:51 +00:00
Miroslav Stampar
42746cc706
bug fix
2011-06-20 12:18:46 +00:00