Miroslav Stampar
|
f1e2c1867f
|
Cosmetics
|
2010-10-22 21:13:12 +00:00 |
|
Miroslav Stampar
|
2194d47782
|
setting conf.threads when -o switch is used
|
2010-10-22 19:10:45 +00:00 |
|
Miroslav Stampar
|
e4089e86e8
|
new tamper script (reference: http://hakipedia.com/index.php/SQL_Injection)
|
2010-10-22 18:57:04 +00:00 |
|
Miroslav Stampar
|
e6e48c5556
|
fix for Bug #204
|
2010-10-22 18:23:46 +00:00 |
|
Bernardo Damele
|
1288def3b7
|
Cosmetics
|
2010-10-22 14:23:14 +00:00 |
|
Miroslav Stampar
|
dec4d858b3
|
fix for Bug #207
|
2010-10-22 14:01:48 +00:00 |
|
Miroslav Stampar
|
1b2ec826bf
|
misc fixes regarding new query retrieval format
|
2010-10-21 23:17:06 +00:00 |
|
Miroslav Stampar
|
a9b50a1e82
|
minor fix
|
2010-10-21 23:09:57 +00:00 |
|
Miroslav Stampar
|
2de3081b50
|
minor update
|
2010-10-21 23:03:42 +00:00 |
|
Miroslav Stampar
|
24e4429bf6
|
or better yet, there is no need for _ or *args on getPrivileges (tried with SQLite and MSSql which crashed)
|
2010-10-21 13:31:06 +00:00 |
|
Miroslav Stampar
|
fe3967bdec
|
fix for --privileges (on MSSql --privileges returned exception)
|
2010-10-21 13:28:29 +00:00 |
|
Miroslav Stampar
|
bc79eec702
|
removed queriesfile.py, implemented XMLObject approach (still shell.py and udf.py TODO)
|
2010-10-21 13:13:12 +00:00 |
|
Miroslav Stampar
|
be443c6947
|
refactoring regarding __START__,...
|
2010-10-21 09:51:07 +00:00 |
|
Miroslav Stampar
|
2668c95ef4
|
added default HTTP version used by httplib and urllib2
|
2010-10-21 09:10:07 +00:00 |
|
Bernardo Damele
|
7f1aa3b94f
|
Removed unused imports
|
2010-10-20 22:48:51 +00:00 |
|
Bernardo Damele
|
c60edf7c17
|
Minor cosmetics
|
2010-10-20 22:43:02 +00:00 |
|
Bernardo Damele
|
526694c80c
|
Minor fix
|
2010-10-20 22:24:06 +00:00 |
|
Bernardo Damele
|
e5485a9958
|
Updated doc
|
2010-10-20 22:14:52 +00:00 |
|
Bernardo Damele
|
d8bfa76dca
|
Minor possible bug fix
|
2010-10-20 22:12:53 +00:00 |
|
Bernardo Damele
|
e73e06069b
|
Minor code refactoring
|
2010-10-20 22:09:03 +00:00 |
|
Bernardo Damele
|
862cc9ac53
|
Minor cosmetic fixes
|
2010-10-20 21:58:33 +00:00 |
|
Bernardo Damele
|
22ed09a358
|
Updated
|
2010-10-20 21:52:33 +00:00 |
|
Bernardo Damele
|
3b5c5cc457
|
Minor possible bug fix
|
2010-10-20 21:49:05 +00:00 |
|
Bernardo Damele
|
f95098693f
|
Removed unused functions
|
2010-10-20 21:16:28 +00:00 |
|
Bernardo Damele
|
430bb7478f
|
Minor bug fix
|
2010-10-20 21:15:06 +00:00 |
|
Miroslav Stampar
|
34f70657ee
|
fix for NULL values
|
2010-10-20 10:29:18 +00:00 |
|
Miroslav Stampar
|
00449f1402
|
fix/upgrade/chicken soup
|
2010-10-20 09:54:17 +00:00 |
|
Miroslav Stampar
|
e24bff0497
|
nice refactoring
|
2010-10-20 09:46:57 +00:00 |
|
Miroslav Stampar
|
5d3cbec457
|
no more regex. web server independent.
|
2010-10-20 09:35:46 +00:00 |
|
Miroslav Stampar
|
934adb5e8d
|
code refactoring
|
2010-10-20 09:09:04 +00:00 |
|
Miroslav Stampar
|
b032fdbf74
|
added randInt to error injection vectors
|
2010-10-20 08:56:58 +00:00 |
|
Miroslav Stampar
|
dabbcf9e23
|
fix for that 'Subquery returns more than 1 row'
|
2010-10-20 08:50:05 +00:00 |
|
Miroslav Stampar
|
82f44989ce
|
update of error based injection and bug fix for --roles on MSSQL server
|
2010-10-20 06:40:33 +00:00 |
|
Miroslav Stampar
|
f2dae98448
|
fix for MySQL error queries
|
2010-10-19 23:30:08 +00:00 |
|
Bernardo Damele
|
0817d1b78d
|
Cosmetics
|
2010-10-19 23:09:30 +00:00 |
|
Miroslav Stampar
|
8776db872c
|
minor refactoring
|
2010-10-19 23:05:24 +00:00 |
|
Miroslav Stampar
|
1b376c99a6
|
removed temp dictionary and replaced with kb.misc
|
2010-10-19 23:00:19 +00:00 |
|
Bernardo Damele
|
813f44da16
|
Minor bug fix for MSSQL connector --tables option
|
2010-10-19 22:11:17 +00:00 |
|
Miroslav Stampar
|
7927e97007
|
update
|
2010-10-19 18:34:57 +00:00 |
|
Miroslav Stampar
|
415524bd5a
|
remove --error, now it's only --error-test (it needs to return True to be able to use it)
|
2010-10-19 18:34:14 +00:00 |
|
Miroslav Stampar
|
8d9201a3dc
|
minor update
|
2010-10-19 18:23:21 +00:00 |
|
Miroslav Stampar
|
4009ef385e
|
more update regarding error based injection support
|
2010-10-19 18:17:34 +00:00 |
|
Miroslav Stampar
|
b2e0b615f8
|
fix for that MySQL checking
|
2010-10-19 17:38:39 +00:00 |
|
Miroslav Stampar
|
34d7de1d46
|
cosmetics
|
2010-10-19 15:28:54 +00:00 |
|
Miroslav Stampar
|
d7622bb9cf
|
major fix for MySQL error based injections
|
2010-10-19 15:17:16 +00:00 |
|
Miroslav Stampar
|
1fce9683f8
|
now --users work for MSSQL too
|
2010-10-19 15:05:32 +00:00 |
|
Miroslav Stampar
|
80505de15b
|
now --users work on Oracle and Postgre (tested)
|
2010-10-19 14:56:57 +00:00 |
|
Miroslav Stampar
|
4bc541ec3c
|
error based update
|
2010-10-19 14:47:13 +00:00 |
|
Miroslav Stampar
|
d0ebe428da
|
i've left error flag
|
2010-10-19 14:12:34 +00:00 |
|
Miroslav Stampar
|
bf850af2d8
|
fix for Oracle error based query "space" problem
|
2010-10-19 14:10:09 +00:00 |
|