Commit Graph

5993 Commits

Author SHA1 Message Date
Meatballs
20a5d9a16e Include HSQL dummy table 2013-06-24 14:37:42 +01:00
Meatballs
355d3f86be hsql payloads and queries xml 2013-06-24 14:34:54 +01:00
Meatballs
d739d5062d hsql plugin folder 2013-06-24 14:34:25 +01:00
Miroslav Stampar
0355e29b7c Minor fix (NoneType has no attribute split) 2013-06-24 14:49:53 +02:00
Miroslav Stampar
95ed6b7203 Minor patch (Issue #470) 2013-06-24 14:37:45 +02:00
Miroslav Stampar
4336a8fa7c Fix for overnight (previously removed : from prefix/suffix was important for XMLType payload) 2013-06-24 14:18:42 +02:00
Miroslav Stampar
fca6772df6 Implementation for an Issue #468 2013-06-22 00:13:46 +02:00
Bernardo Damele
a72096a345 slightly more appropriate definition of output variable 2013-06-19 20:25:01 +01:00
Bernardo Damele
cae108d9fc careful at merging pull requests with TABs (#466) 2013-06-19 19:49:53 +01:00
stamparm
a53823f9b7 Minor refactoring 2013-06-19 10:59:26 +02:00
stamparm
690645f6c7 Cosmetic fix 2013-06-19 10:50:00 +02:00
stamparm
20b8186fcc Fix for an Issue #467 2013-06-19 10:41:58 +02:00
stamparm
a7787e83b8 Minor fix for case-insensitive union duplicates 2013-06-18 12:52:36 +02:00
Miroslav Stampar
aff7092736 Merge pull request #466 from Meatballs1/xp_cmdshell_output
Unable to retrieve XP_Cmdshell Output
2013-06-18 00:47:08 -07:00
stamparm
9a6f5a95f5 Minor patch for SQLAlchemy/MSSQL 2013-06-18 09:36:09 +02:00
Miroslav Stampar
92dfb0f817 Minor patch 2013-06-16 12:35:20 +02:00
Miroslav Stampar
c2dce66a46 Fix for an user reported bug (tbl can be None) 2013-06-16 12:35:05 +02:00
Meatballs
c5087399c1 Fix exception if init technique not available 2013-06-16 10:47:27 +01:00
Meatballs
2c98507f1e Add better error msg 2013-06-16 10:27:08 +01:00
Meatballs
caa326774c Fallback to blind 2013-06-16 10:22:20 +01:00
Miroslav Stampar
63d0e9bb12 Adding support for MsSQL >=2012 hash format (based on commit 70107f74f0be5357654f170a3f321e3e55e81881) 2013-06-13 21:50:35 +02:00
Miroslav Stampar
540493a69f Fix for empty strings (previously '' was just removed) 2013-06-11 12:56:20 +02:00
Miroslav Stampar
f185e5cdd5 Fix for an Issue #463 2013-06-10 22:26:34 +02:00
Miroslav Stampar
cdb434805a Using alpha character as a boundary in union/error techniques (instead of ':') to support wider range of (output filtering) cases 2013-06-10 22:14:45 +02:00
Miroslav Stampar
6f49b96a2d Fix for an Issue #462 2013-06-10 12:20:58 +02:00
Miroslav Stampar
3583f45ee7 Fix for an Issue #461 2013-06-10 11:44:56 +02:00
Miroslav Stampar
ad07add549 Fixing MySQL/stacked payloads (also removing stacked conditional-error version as it's syntatically incorrect) 2013-06-05 14:32:06 +02:00
Miroslav Stampar
39612b5d87 Fix for an Issue #457 2013-06-04 23:46:39 +02:00
Miroslav Stampar
c1592e8508 Code refactoring (moving import ctypes to be used only when needed) 2013-06-04 22:23:44 +02:00
Miroslav Stampar
3e0f747fad Minor fix 2013-06-04 00:05:25 +02:00
Miroslav Stampar
213d0ecfb9 Minor fix 2013-06-03 23:32:57 +02:00
Miroslav Stampar
edc9da1226 Minor refactoring 2013-06-03 15:14:56 +02:00
Miroslav Stampar
351c70b390 Locale module screws string.letters, etc. in some cases (e.g. IDLE run) 2013-06-01 14:06:58 +02:00
Miroslav Stampar
ca53dfad84 Minor fix 2013-06-01 13:44:50 +02:00
Miroslav Stampar
b7989f93c5 Trivial update regarding last commit 2013-05-30 12:04:56 +02:00
Miroslav Stampar
ed8f16e754 Minor update on user's request 2013-05-30 12:01:13 +02:00
Miroslav Stampar
12870e6ff3 Minor fix 2013-05-30 11:42:27 +02:00
Miroslav Stampar
793a8ad349 Minor fix 2013-05-30 11:38:24 +02:00
stamparm
f456b5a28d Bug fix (this payload was also doable on MySQL - with CAST it's strictly being bound to Oracle only) 2013-05-29 17:41:42 +02:00
stamparm
f4ca4cd6c5 Minor update 2013-05-29 15:49:09 +02:00
stamparm
c3038fcb65 Minor cosmetic update 2013-05-29 15:46:59 +02:00
stamparm
8fbf4b11d2 Trivial update regarding last commit 2013-05-29 15:45:13 +02:00
stamparm
dfd6ee20bb Patch for an Issue #454 2013-05-29 15:26:11 +02:00
stamparm
60df3e9d1e Minor cosmetic update (displaying 'Technique: DIRECT' instead of 'Technique: None' in case of direct access) 2013-05-29 15:04:14 +02:00
stamparm
e28b056028 Dummy fix 2013-05-29 14:26:00 +02:00
stamparm
840af1fa7b Fix for missing global name __file__ 2013-05-29 10:20:43 +02:00
stamparm
6b280d8da4 Putting 2 decimal places for debug messages with performed queries (e.g. to handle a problem with 0 seconds roundup) 2013-05-28 14:40:45 +02:00
stamparm
bc4e1dab19 Getting rid of those ugly warning messages 2013-05-28 11:24:56 +02:00
Bernardo Damele A. G.
ba4ed30eed minor update 2013-05-28 10:53:43 +02:00
Bernardo Damele A. G.
bca058e667 minor fix 2013-05-28 10:49:24 +02:00