Bernardo Damele
|
d905e5ef9f
|
Minor bug fix to --os-cmd/--os-shell for Microsoft SQL Server
|
2009-07-25 11:45:23 +00:00 |
|
Bernardo Damele
|
b2b2ec8a26
|
Preparing to release sqlmap 0.7 stable
|
2009-07-24 23:20:57 +00:00 |
|
Bernardo Damele
|
b4fd71e8b9
|
Minor adjustment to reflect Metasploit r6849 (http://trac.metasploit.com/changeset/6849) and minor code refactoring.
|
2009-07-20 14:36:33 +00:00 |
|
Bernardo Damele
|
cb3d2bac16
|
Minor improvement so that sqlmap tests also all parameters with no value (ig. par=).
|
2009-07-09 11:25:35 +00:00 |
|
Bernardo Damele
|
516fdb9356
|
Avoid to upload the web backdoor to unexisting empty-name directory
|
2009-07-09 11:11:25 +00:00 |
|
Bernardo Damele
|
24a3a23159
|
Minor bug fix to --dbms, updated user's manual
|
2009-07-09 11:05:24 +00:00 |
|
Bernardo Damele
|
4b622ed860
|
Minor bug fix.
Adapted Metasploit wrapping functions to work with latest msf3 development version too.
|
2009-07-06 14:40:33 +00:00 |
|
Bernardo Damele
|
0fc4587f02
|
Added support for reflective meterpreter by default when the target OS
is Windows and minor layout fix
|
2009-07-03 17:59:20 +00:00 |
|
Bernardo Damele
|
3b9303186e
|
Fixed minor bug with --eta
|
2009-06-24 13:44:14 +00:00 |
|
Bernardo Damele
|
e5a01d500e
|
Minor bug fix in --update option, updated also Microsoft XML versions file
|
2009-06-16 15:12:02 +00:00 |
|
Bernardo Damele
|
03a6739fbf
|
Minor layout adjustments
|
2009-06-11 15:34:31 +00:00 |
|
Bernardo Damele
|
150abc0f1e
|
sqlmap 0.7-rc3: Reset takeover OOB features (if any of --os-pwn, --os-smbrelay or --os-bof is selected) when running under Windows because msfconsole and msfcli are not supported on the native Windows Ruby interpreter. Correctly handle fcntl to be imported only on systems different from Windows. Minor code refactoring.
|
2009-06-11 15:01:48 +00:00 |
|
Bernardo Damele
|
3bca0d4b28
|
Minor improvement so that user's options can also be passed directly as a dictionary/advancedDict rather than only as an optparse instance.
|
2009-06-05 10:15:55 +00:00 |
|
Bernardo Damele
|
5ac2b0658c
|
Fixed regular expression to parse burp log file hosts' scheme/port
|
2009-06-04 14:42:53 +00:00 |
|
Bernardo Damele
|
cfd8a83655
|
Minor adjustment to get also the port when parsing burp logs
|
2009-06-04 14:36:31 +00:00 |
|
Bernardo Damele
|
966f34f381
|
Minor parsing syntax adjustment due to sligh differences between Burp 1.2 lite and professional editions
|
2009-06-03 15:26:18 +00:00 |
|
Bernardo Damele
|
c7b72abc0e
|
Minor bug fix in parsing Burp (WebScarab too?) log to correctly parse httpS urls
|
2009-06-03 15:04:40 +00:00 |
|
Bernardo Damele
|
93ee4a01e5
|
HTTPS requests over HTTP proxy now work on either Python 2.4, 2.5 and 2.6+
|
2009-05-20 14:27:25 +00:00 |
|
Bernardo Damele
|
81d1a767ac
|
Minor bug fix in output manager (dumper) object
|
2009-05-20 13:56:23 +00:00 |
|
Bernardo Damele
|
8e7282f7c7
|
Major bug fix to properly pass HTTPS request to HTTP proxy when its provided. It works with both Python 2.4 and Python 2.5 now. It still crashes at httplib level with Python 2.6.
|
2009-05-20 13:51:25 +00:00 |
|
Bernardo Damele
|
13de8366d0
|
Major silent bug fix to multi-threading functionality. Thanks Nico Leidecker for reporting!
|
2009-05-20 09:34:13 +00:00 |
|
Bernardo Damele
|
ef3846e0de
|
Minor fix in Host header value by Oliver Gruskovnjak
|
2009-05-19 14:40:04 +00:00 |
|
Bernardo Damele
|
45dff4a00a
|
Added new function to search a file within the PATH environment variable paths:
it will be used when sqlmap will be packaged as DEB and RPM
|
2009-05-12 20:24:47 +00:00 |
|
Bernardo Damele
|
b463205544
|
Minor fixes for MacOSX
|
2009-05-12 20:24:00 +00:00 |
|
Bernardo Damele
|
06cc2a6d70
|
Minor bug fixes and code refactoring
|
2009-05-11 15:37:48 +00:00 |
|
Bernardo Damele
|
c5d20b8a86
|
Initial support for ASP web backdoor functionality
|
2009-05-06 12:14:38 +00:00 |
|
Bernardo Damele
|
ccedadd780
|
Finished Mac OS X
|
2009-04-30 21:42:54 +00:00 |
|
Bernardo Damele
|
e8c115500d
|
Now it works also on Mac OS X
|
2009-04-30 10:46:50 +00:00 |
|
Bernardo Damele
|
722ca8bf2f
|
Minor "fix"
|
2009-04-29 19:45:12 +00:00 |
|
Bernardo Damele
|
57b8bb4c8e
|
Minor syntax adjustment for web backdoor functionality
|
2009-04-28 21:51:22 +00:00 |
|
Bernardo Damele
|
58f3eee390
|
Updated Microsoft SQL Server XML signatures file and minor bug fix in connection library
|
2009-04-28 11:11:35 +00:00 |
|
Bernardo Damele
|
1d7de719b9
|
Almost done with web backdoor functionality
|
2009-04-28 11:05:07 +00:00 |
|
Bernardo Damele
|
16b4530bbe
|
Minor bug fixes to --os-shell (altought web backdoor functionality still to be reviewed).
Minor common library code refactoring.
Code cleanup.
Set back the default User-Agent to sqlmap for comparison algorithm reasons.
Updated THANKS.
|
2009-04-27 23:05:11 +00:00 |
|
Bernardo Damele
|
5121a4dcba
|
Send IE7.0 as default User-Agent
|
2009-04-24 20:13:21 +00:00 |
|
Bernardo Damele
|
406d5df195
|
Minor layout adjustments
|
2009-04-24 20:12:52 +00:00 |
|
Bernardo Damele
|
546a6c32e3
|
Avoid deprecation warning on sha and md5 libraries on Python >= 2.6
|
2009-04-24 20:10:30 +00:00 |
|
Bernardo Damele
|
6f4035938b
|
Let the user choose also the local address in reverse OOB connection
|
2009-04-24 10:27:52 +00:00 |
|
Bernardo Damele
|
4ce74764b7
|
More verbose when reporting failure to create shellcode/payload stager (via Metasploit)
|
2009-04-23 20:39:32 +00:00 |
|
Bernardo Damele
|
1af6898618
|
Fixed POST parsing when -l option is provided (burp/webscarab log file)
|
2009-04-23 15:04:28 +00:00 |
|
Bernardo Damele
|
aefa7ef988
|
Avoid libmagic traceback on Windows.
WARNING: this release is a candidate, it only works on Linux/Unices for the moment!
|
2009-04-22 12:44:16 +00:00 |
|
Bernardo Damele
|
8c0ac767f4
|
Updated to sqlmap 0.7 release candidate 1
|
2009-04-22 11:48:07 +00:00 |
|
Bernardo Damele
|
0c1a6b3edf
|
Minor typo fix
|
2009-02-19 00:38:54 +00:00 |
|
Bernardo Damele
|
2efee058ea
|
Major enhancement in comparison algorithm
|
2009-02-12 00:17:44 +00:00 |
|
Bernardo Damele
|
ba00a17205
|
Minor layout adjustment
|
2009-02-09 10:58:44 +00:00 |
|
Bernardo Damele
|
2355885712
|
Minor adjustment
|
2009-02-09 10:29:07 +00:00 |
|
Bernardo Damele
|
207e96e2b2
|
Major bug fix in the comparison algorithm to correctly handle also the
case that the url is stable and the False response changes the page
content very little.
|
2009-02-09 10:28:03 +00:00 |
|
Bernardo Damele
|
b12d955274
|
Updated packaging scripts, site and finalized the documentation to release version 0.6.4
|
2009-02-03 15:38:40 +00:00 |
|
Bernardo Damele
|
770e000cb4
|
Fixed another bug on Microsoft SQL Server custom "limited" query reported by Konrads Smelkovs
|
2009-02-02 23:44:19 +00:00 |
|
Bernardo Damele
|
dded57f1cd
|
Minor bug fix to correctly unpack user's custom queries on Microsoft SQL Server
|
2009-01-30 23:58:48 +00:00 |
|
Bernardo Damele
|
6054090191
|
sqlmap 0.6-rc5: major bug fix to make --sql-shell and --sql-query work properly also with mixed case statements (i.e oRDeR bY). Thanks Konrads Smelkovs to notifying.
|
2009-01-28 14:53:11 +00:00 |
|