sqlmap

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 17:46:37 +03:00

Author	SHA1	Message	Date
Bernardo Damele	e8b0fd90c8	Minor bug fix	2010-01-29 19:32:02 +00:00
Bernardo Damele	767c67e37a	--priv-esc now relieas on more powerful and complete getsystem Meterpreter command that also implements kitrap0d as 4th technique	2010-01-29 14:57:33 +00:00
Miroslav Stampar	061794650f	minor fix	2010-01-29 10:15:05 +00:00
Miroslav Stampar	92817159dc	cloaked upx for windows (used mkstemp because of execution and file access rights problem)	2010-01-29 10:12:09 +00:00
Bernardo Damele	200518724c	By default do not use Churrasco, but still let the user choose it. The default technique to privilege escalate the OS user to SYSTEM when --priv-esc is provided now it 'run kitrap0d'.	2010-01-29 02:27:50 +00:00
Bernardo Damele	7b8316728c	Major bug fix in takeover functionalities on Microsoft SQL Server	2010-01-29 00:09:05 +00:00
Bernardo Damele	6f5d2ed171	Minor cosmetic adjustments	2010-01-28 17:07:34 +00:00
Miroslav Stampar	a2077bfc0e	quick fix	2010-01-28 16:56:00 +00:00
Miroslav Stampar	732ed48e2b	some refactoring regarding decloaking	2010-01-28 16:50:34 +00:00
Bernardo Damele	dcbbad642d	Minor self fix, switched to rc6	2010-01-28 10:27:47 +00:00
Miroslav Stampar	f6b447f6e7	fix for "NameError: global name 'webFileStreamUpload' is not defined"	2010-01-28 08:54:47 +00:00
Miroslav Stampar	645afee359	some changes	2010-01-28 00:25:36 +00:00
Miroslav Stampar	921e449454	added support for cloaking Churrasco.exe file	2010-01-28 00:07:33 +00:00
Miroslav Stampar	4559ded6c1	added new line at the end of the file	2010-01-27 17:02:23 +00:00
Miroslav Stampar	f4b8ce5c72	fix for 'No such file or directory' OSError exception	2010-01-27 17:00:54 +00:00
Miroslav Stampar	d0acb1c5a3	another fix. hope it works :)	2010-01-27 16:01:50 +00:00
Miroslav Stampar	f8056f4098	quick fix regarding usage of StringIO instead of file stream	2010-01-27 15:44:35 +00:00
Miroslav Stampar	1d15c595a4	minor fix	2010-01-27 14:08:09 +00:00
Miroslav Stampar	e63428207c	modified a way to handle shell scripts	2010-01-27 13:59:25 +00:00
Bernardo Damele	6437c16156	run kitrap0d script along with listing Windows Impersonation Tokens via meterpreter's incognito extension when --priv-esc is provided (see #149 ).	2010-01-26 01:14:44 +00:00
Miroslav Stampar	3197fada59	update of IDS checking method	2010-01-25 10:06:52 +00:00
Bernardo Damele	952c280083	Added svn keyword	2010-01-25 09:21:39 +00:00
Miroslav Stampar	e689c2ec99	another minor fix (svn header comment)	2010-01-25 00:29:19 +00:00
Miroslav Stampar	44a74ccee8	minor grammar fix	2010-01-25 00:26:51 +00:00
Miroslav Stampar	b183b9cbb4	contains method for detecting if the generated payload is detectable by the PHPIDS filter rules	2010-01-25 00:25:58 +00:00
Miroslav Stampar	a4d8234875	minor update	2010-01-24 14:23:19 +00:00
Miroslav Stampar	98205cc488	another fix for Bug #148	2010-01-23 23:29:34 +00:00
Miroslav Stampar	39652bfbf4	update regarding Unicode char logging (Bug #148 )	2010-01-23 15:36:55 +00:00
Miroslav Stampar	97840535c6	fix for situations where proxy is set in environment, but the user tries to test something on localhost	2010-01-19 13:47:35 +00:00
Bernardo Damele	574880ba73	Warn user of HTTP error codes in HTTP responses	2010-01-19 10:27:54 +00:00
Bernardo Damele	5c58747740	More tweaking on --update	2010-01-18 15:20:50 +00:00
Bernardo Damele	051db588a5	Minor tweaking to --update	2010-01-18 14:59:24 +00:00
Miroslav Stampar	44adbc5776	changes regarding Feature #125	2010-01-18 14:05:23 +00:00
Bernardo Damele	2825ab5e4e	Major bug fix in url-encoding	2010-01-16 21:56:40 +00:00
Bernardo Damele	c18a5cb92f	Fixed a minor bug when displaying requested page in -v >= 3	2010-01-16 21:47:52 +00:00
Bernardo Damele	f337cd6e0a	Minor speedup to check if sqlmap's UDF have already been created	2010-01-16 21:46:35 +00:00
Bernardo Damele	4ce3abc56d	Minor adjustments	2010-01-15 17:42:46 +00:00
Miroslav Stampar	1a764e1f08	minor commit	2010-01-15 16:10:21 +00:00
Miroslav Stampar	5f171340f5	introduced safe string formatting	2010-01-15 16:06:59 +00:00
Miroslav Stampar	dcf0b2a3c1	minor update	2010-01-15 11:45:48 +00:00
Miroslav Stampar	f5c422efb4	updated and renamed sanitizeCookie to urlEncodeCookieValues because of it's different nature than before	2010-01-15 11:44:05 +00:00
Bernardo Damele	505647b00f	Minor bug fix to --cookie-urlencode	2010-01-15 11:24:30 +00:00
Bernardo Damele	c4215ce8d2	Minor code refactoring	2010-01-14 20:42:45 +00:00
Miroslav Stampar	26c7b74e65	changes regarding Data (GET/POST/Cookie) encoding (Bug #129 )	2010-01-14 18:05:03 +00:00
Bernardo Damele	1d968f51e9	More code refactoring	2010-01-14 15:11:32 +00:00
Bernardo Damele	c9863bc1d2	Minor code refactoring	2010-01-14 14:33:08 +00:00
Bernardo Damele	070ccc30e9	Added automatic support in --os-pwn to use the web uploader/backdoor to upload and execute the Metasploit payload stager when stacked queries SQL injection is not supported, for instance on MySQL/PHP and MySQL/ASP. Updated ChangeLog. Major code refactoring.	2010-01-14 14:03:16 +00:00
Bernardo Damele	50bbb0cf8a	Deprecate sqlmap update code, will use pysvn to update from latest development version from subversion repository.	2010-01-13 14:52:23 +00:00
Bernardo Damele	0ad43952bd	Minor bug fix	2010-01-12 23:56:43 +00:00
Miroslav Stampar	3434a22872	HTTP header HOST is now mandatory in a HTTP request file	2010-01-12 14:07:58 +00:00

1 2 3 4 5

225 Commits