sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-09-21 03:22:27 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 3ee44584d4 i've found a way! thank you hesus! fyea (ASC(MID) was just crashing when MID returned 'empty string') Miroslav Stampar 2010-12-14 12:57:59 +0000
  • c3d0295d21 minor update (checking for --time-sec value) Miroslav Stampar 2010-12-14 12:37:21 +0000
  • b75d7fa348 minor cache based optimization Miroslav Stampar 2010-12-14 12:22:17 +0000
  • 270ae0f080 just in case as maybe there will be some boolean expression to check where we won't expect None, but explicitly True/False Miroslav Stampar 2010-12-14 09:05:00 +0000
  • 4c6e902471 removed obsolete comment Miroslav Stampar 2010-12-14 07:49:30 +0000
  • 04caef6de0 Tuning Bernardo Damele 2010-12-13 23:04:26 +0000
  • cfcee6439e Cosmetics Bernardo Damele 2010-12-13 21:55:30 +0000
  • 86690682c7 Minor bug fix to respect -v value in --common-tables and --common-columns Bernardo Damele 2010-12-13 21:37:12 +0000
  • 4b79227b5a Minor bug fix to properly merge options from .conf file (-c) with command line switches Bernardo Damele 2010-12-13 21:36:23 +0000
  • db844c1785 No point in showing the error-based inject payload, it's same as the one showed in -v3 Bernardo Damele 2010-12-13 21:35:20 +0000
  • 698f30e65e Cosmetics Bernardo Damele 2010-12-13 21:34:35 +0000
  • a02dd6b55b Minor enhancement to speedup active dbms fingerprint (-f). Code cleanup and refactoring. Bernardo Damele 2010-12-13 21:33:42 +0000
  • 207f63cebc Prepare for UNION query tests at detection phase Bernardo Damele 2010-12-13 21:31:34 +0000
  • d56f47d530 fix for a bug reported by black zero (ValueError: invalid literal for int() with base 10: '1-20') Miroslav Stampar 2010-12-12 23:59:55 +0000
  • 33639578ee minor update for MS Access Miroslav Stampar 2010-12-12 15:25:19 +0000
  • 6a3c4485e6 minor update (removing extra ()) Miroslav Stampar 2010-12-12 14:44:39 +0000
  • e98d9c08e1 dumping table is now possible on Firebird too Miroslav Stampar 2010-12-12 14:38:07 +0000
  • f9bc6fc78f minor fix Miroslav Stampar 2010-12-11 22:14:35 +0000
  • c93634b6c7 blind dumping of tables in sqlite implemented Miroslav Stampar 2010-12-11 22:13:19 +0000
  • b1babeefe5 update regarding dumping of tables with blind on Sqlite Miroslav Stampar 2010-12-11 22:00:16 +0000
  • f7344a5fc3 update Miroslav Stampar 2010-12-11 21:28:11 +0000
  • 6a24048aa6 urllib2 doesn't play well with '\n' when non unescaped chars used Miroslav Stampar 2010-12-11 21:17:54 +0000
  • e6c66fa37c update regarding expectingNone in fingerprinting mode to cancel drop down to other techniques available Miroslav Stampar 2010-12-11 17:55:28 +0000
  • e32fa9df43 further update regarding bugtrace's report Miroslav Stampar 2010-12-11 17:32:15 +0000
  • 5d18c98ec2 quick fix for a bug reported by bugtrace (not using __goBooleanProxy because we don't have a proper vector this moment) Miroslav Stampar 2010-12-11 17:20:39 +0000
  • 03447acc1d avoiding some trashy match ratios Miroslav Stampar 2010-12-11 17:12:19 +0000
  • d2a3e8f44f first time firebird error-based query success Miroslav Stampar 2010-12-11 11:17:24 +0000
  • acc7d6d40c fix Miroslav Stampar 2010-12-11 11:03:32 +0000
  • f021548bd0 added inference failsafe (like in for instance Firebirds SUBSTR always returns a string value, no matter which starting index you use) Miroslav Stampar 2010-12-11 10:52:04 +0000
  • c17f444aab minor fix Miroslav Stampar 2010-12-11 10:22:18 +0000
  • 1beb1dd2cc minor update Miroslav Stampar 2010-12-11 09:30:38 +0000
  • 3dc0a51d34 major bug fix with boolean expressions Miroslav Stampar 2010-12-11 08:46:19 +0000
  • ac9080c07b update Miroslav Stampar 2010-12-11 08:24:29 +0000
  • 66db80804d fix Miroslav Stampar 2010-12-10 16:03:32 +0000
  • 435f48b8cc polite cosmetics Miroslav Stampar 2010-12-10 15:28:56 +0000
  • 977988c0ab cosmetics Miroslav Stampar 2010-12-10 15:24:25 +0000
  • fa8d378e80 another update Miroslav Stampar 2010-12-10 15:18:15 +0000
  • 1ef44cfe60 fix Miroslav Stampar 2010-12-10 15:06:53 +0000
  • fe186cde55 proper fix Miroslav Stampar 2010-12-10 13:26:31 +0000
  • 9957881040 you won't believe commit Miroslav Stampar 2010-12-10 13:20:59 +0000
  • 7c87ad4065 Minor speedup in -f mysql Bernardo Damele 2010-12-10 13:05:46 +0000
  • b02bd55edc minor refactoring Miroslav Stampar 2010-12-10 13:04:36 +0000
  • 1fc9ed10a8 minor refactoring Miroslav Stampar 2010-12-10 12:30:36 +0000
  • 4d8628e8fb fix for booleans Miroslav Stampar 2010-12-10 12:26:01 +0000
  • fe2039f5ba coollyy little commits Miroslav Stampar 2010-12-10 11:32:46 +0000
  • d71e51e765 Minor improvement Bernardo Damele 2010-12-10 11:31:27 +0000
  • 4741874e9e Enhancement to speedup MySQL fingerprint Bernardo Damele 2010-12-10 11:27:36 +0000
  • e98b81fe32 another update Miroslav Stampar 2010-12-10 10:56:55 +0000
  • d5e7a8d305 update Miroslav Stampar 2010-12-10 10:54:17 +0000
  • b6dcbcef5b Minor fix Bernardo Damele 2010-12-10 10:52:55 +0000
  • 471d9ccd65 another fix of my lala Miroslav Stampar 2010-12-10 10:11:25 +0000
  • 029a6abba2 quick fix Miroslav Stampar 2010-12-10 09:54:25 +0000
  • 441fc8dbd9 update regarding boolean based expressions Miroslav Stampar 2010-12-09 21:15:18 +0000
  • d5fb921154 removed debug print Miroslav Stampar 2010-12-09 20:08:59 +0000
  • 1492823de0 it wasn't pretty, now it's pretty Miroslav Stampar 2010-12-09 20:06:20 +0000
  • bbffea2cbc bug fix Miroslav Stampar 2010-12-09 17:10:22 +0000
  • 0eb2c408a9 code refactoring Miroslav Stampar 2010-12-09 16:49:02 +0000
  • 7e2984b4b6 added stacked query support for Oracle Miroslav Stampar 2010-12-09 15:24:48 +0000
  • 4bb40c0a06 Higher the level for Oracle stacked tests just in case the SQL inj is within a PL/SQL function ('cause of no support for stacked queries by design on Oracle) Bernardo Damele 2010-12-09 15:14:18 +0000
  • d8edc5b244 adding stacked-query vector for Firebird Miroslav Stampar 2010-12-09 15:11:21 +0000
  • 13b522efc2 Added error-based support for MySQL < 5.0 - closes #14 Bernardo Damele 2010-12-09 15:09:03 +0000
  • 5aafd19957 added vector for SQLite's stacked query payload Miroslav Stampar 2010-12-09 15:06:40 +0000
  • df5f6bc1b7 Little precaution Bernardo Damele 2010-12-09 14:06:43 +0000
  • 9230877d98 cosmetics Bernardo Damele 2010-12-09 13:57:38 +0000
  • 5114c887ea minor minor update Miroslav Stampar 2010-12-09 13:51:44 +0000
  • 5fb04515d3 Added hidden (for the moment) switch --technique Bernardo Damele 2010-12-09 13:47:17 +0000
  • b80a86a669 that's it for common stuff today Miroslav Stampar 2010-12-09 12:59:22 +0000
  • b26e09fc71 another minor update Miroslav Stampar 2010-12-09 12:49:29 +0000
  • f712d2477e removed duplicate entries inside common wordlists (tables & columns) and added a script which does that automatically Miroslav Stampar 2010-12-09 12:41:16 +0000
  • c5b1f336ee another update Miroslav Stampar 2010-12-09 12:07:06 +0000
  • 06395b5408 update Miroslav Stampar 2010-12-09 12:03:10 +0000
  • cdff29ada7 update Miroslav Stampar 2010-12-09 11:23:44 +0000
  • 196131bbca minor cosmetics Miroslav Stampar 2010-12-09 10:42:00 +0000
  • 71761ba9a5 another fix for another beautiful heavy query payload which took a few 100 megs and 5 mins to run Miroslav Stampar 2010-12-09 10:35:18 +0000
  • 094baadc5b bug fix (in SELECT based heavy queries COUNT(*) should be used; otherwise multiple row error happens without proper delay) Miroslav Stampar 2010-12-09 10:17:04 +0000
  • ec5c08ca7a cosmetics Miroslav Stampar 2010-12-09 09:24:20 +0000
  • 3fd1c37d53 update Miroslav Stampar 2010-12-09 07:49:18 +0000
  • db39dc32fc minor update Miroslav Stampar 2010-12-09 00:59:39 +0000
  • 0c01be0eeb Ugly work-around to avoid unescaping WAITFOR DELAY time between single quotes (unescaped CHAR(..) value does not work). Bernardo Damele 2010-12-09 00:34:02 +0000
  • 9c61adb21d Cosmetics Bernardo Damele 2010-12-09 00:26:06 +0000
  • b5c6527c72 Minor fix Bernardo Damele 2010-12-09 00:25:48 +0000
  • 3b293c4ea7 Added possible stacked queries time-based blind vector for MSSQL Bernardo Damele 2010-12-08 23:55:42 +0000
  • f5ce739bdf Added support for time-based blind SQL injection via stacked queries too. Need to add vectors for some DBMS yet. Bernardo Damele 2010-12-08 23:52:31 +0000
  • 10ef2b5de8 Minor bug fix Bernardo Damele 2010-12-08 23:09:42 +0000
  • 54f6673609 update Miroslav Stampar 2010-12-08 22:38:26 +0000
  • d6077273e0 update Miroslav Stampar 2010-12-08 22:14:42 +0000
  • 5aee1fd8e0 updated THANKS file Miroslav Stampar 2010-12-08 21:19:46 +0000
  • 258e9fb50e fix for a "bug" reported by Spencer J. McIntyre (os.makedirs(conf.outputPath, 0755) -> permission denied) Miroslav Stampar 2010-12-08 21:16:18 +0000
  • 69c4f94980 update Miroslav Stampar 2010-12-08 15:40:01 +0000
  • 81c16926c1 code refactoring some more Miroslav Stampar 2010-12-08 14:46:07 +0000
  • 40fadf2f35 minor update Miroslav Stampar 2010-12-08 14:33:10 +0000
  • 95b48746a6 cosmetics Miroslav Stampar 2010-12-08 14:29:09 +0000
  • ed09c53ee4 minor minor update Miroslav Stampar 2010-12-08 14:27:37 +0000
  • 01cf1394a4 code refactoring Miroslav Stampar 2010-12-08 14:26:40 +0000
  • af22679605 minor update Miroslav Stampar 2010-12-08 13:09:27 +0000
  • 6223f25dd9 code beautification Miroslav Stampar 2010-12-08 13:04:48 +0000
  • 64cc2588f1 now resume is available for time-based blinds too Miroslav Stampar 2010-12-08 12:49:26 +0000
  • 537b619165 removing junk Miroslav Stampar 2010-12-08 12:30:25 +0000
  • b5e45939e3 sqlmap premiere of blind time based query/bisection Miroslav Stampar 2010-12-08 12:28:54 +0000
  • ad00fe13c1 another fix for MySQL time based payloads Miroslav Stampar 2010-12-08 12:00:27 +0000