sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-07-25 15:39:48 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 90b776c1a2 update Miroslav Stampar 2010-12-07 00:58:54 +0000
  • 0da1ebde7d introducing PostgreSQL time based blind Miroslav Stampar 2010-12-07 00:51:14 +0000
  • 1ba98dc9ec found a fix for a OR time-based MySQL payload :) Miroslav Stampar 2010-12-07 00:31:46 +0000
  • 61f82fd274 introducing [DELAYED] for heavy query time based payloads when response time is non-deterministic Miroslav Stampar 2010-12-07 00:27:26 +0000
  • 32f1909131 Some more "advanced" boundaries Bernardo Damele 2010-12-06 23:15:41 +0000
  • 84a038d0a3 added one more subtag Miroslav Stampar 2010-12-06 23:10:38 +0000
  • 1031723c89 added one more time based blind for Oracle Miroslav Stampar 2010-12-06 23:05:53 +0000
  • 7697d19292 space replace is not needed in other two Oracle error based payloads; removing incorrect dbms_version for ctxsys.drithsx.sn as it also works on 10g Miroslav Stampar 2010-12-06 22:52:18 +0000
  • 2735848ab6 removed ERROR_SPACE Miroslav Stampar 2010-12-06 22:40:07 +0000
  • f516c18a2a minor update Miroslav Stampar 2010-12-06 21:39:57 +0000
  • 0c5c2aa807 adding one more error based payload for Oracle Miroslav Stampar 2010-12-06 21:20:26 +0000
  • 956a155377 adding one more error based payload for Oracle Miroslav Stampar 2010-12-06 20:43:23 +0000
  • ff43a4a955 minor update to preserve consistency of payload naming Miroslav Stampar 2010-12-06 20:28:26 +0000
  • c0e05d6869 update Miroslav Stampar 2010-12-06 19:11:05 +0000
  • 9ccc8f90a3 minor cosmetic update ("heuristics shows" is not grammatically correct) Miroslav Stampar 2010-12-06 18:47:22 +0000
  • d336f1df23 minor update Miroslav Stampar 2010-12-06 18:44:42 +0000
  • d77ddbee47 OR based inference works for the first time in history and fingerprint of 4 major DBMSes is now injection based (instead of AND) Miroslav Stampar 2010-12-06 18:20:57 +0000
  • e4b51dd549 proper way of handling OR based injections (completely compatible with current AND based inference engine) Miroslav Stampar 2010-12-06 17:23:21 +0000
  • 27ee9a5ccf minor refactoring Miroslav Stampar 2010-12-06 15:50:19 +0000
  • e8be14e00a minor refactoring Miroslav Stampar 2010-12-06 07:48:14 +0000
  • a43d252ae9 minor update Miroslav Stampar 2010-12-06 00:14:08 +0000
  • 5189f138d7 increasing socket timeout in case of time based checks Miroslav Stampar 2010-12-05 23:18:16 +0000
  • 17449754fe Got rid of UNION false cond Bernardo Damele 2010-12-05 16:16:15 +0000
  • a1e89d3e94 Minor tweak Bernardo Damele 2010-12-05 13:12:12 +0000
  • da3fd17fc3 Adjustment to make it work also in OR based injection Bernardo Damele 2010-12-05 12:24:23 +0000
  • bf425d90bc More tweaking Bernardo Damele 2010-12-05 12:23:18 +0000
  • 41e1b95c6c Minor code refactoring and finally make exploitation work also on OR boolean-based injections Bernardo Damele 2010-12-05 11:25:44 +0000
  • 7a5cd3b35f minor comment update Miroslav Stampar 2010-12-05 11:15:09 +0000
  • 191ba3118f Cosmetics Bernardo Damele 2010-12-05 11:08:52 +0000
  • 1b17bac494 Sorted out Bernardo Damele 2010-12-05 11:06:37 +0000
  • 618b3b0211 Cosmetics Bernardo Damele 2010-12-05 11:05:57 +0000
  • 8066610217 Minor improvements to OR based injections Bernardo Damele 2010-12-05 10:55:19 +0000
  • 2612615978 Major improvements Bernardo Damele 2010-12-04 16:40:08 +0000
  • 9e5f933ace some updates Miroslav Stampar 2010-12-04 15:47:02 +0000
  • 3f9450b9dc minor fix Miroslav Stampar 2010-12-04 14:43:35 +0000
  • 1f795622b3 some fine tuning of dynamicity removing engine Miroslav Stampar 2010-12-04 13:39:35 +0000
  • eeb199375b usage of compiled regexes in case of dynamic markings and other refactoring Miroslav Stampar 2010-12-04 13:23:28 +0000
  • 0fc7a8f9e8 code refactoring Miroslav Stampar 2010-12-04 10:13:18 +0000
  • 04714374f9 now you can use kb.pageTemplate to set a page which will be used as a template in comparison process (at least in '-[RANDNUM] OR' cases we'll need to use different template(s)) Miroslav Stampar 2010-12-04 10:05:18 +0000
  • 95a3f4b52f Rudimental OR boolean-based tests for login forms Bernardo Damele 2010-12-03 22:58:35 +0000
  • b3a094b9d6 fix for a bug reported by ToR (when resuming: queries[kb.dbms] -> KeyError: u'mysql') Miroslav Stampar 2010-12-03 22:44:29 +0000
  • 5764816891 minor cosmetics Miroslav Stampar 2010-12-03 22:28:09 +0000
  • 5d37df6104 Ugly code to set the cookies when got them from a 302 redirect too Bernardo Damele 2010-12-03 17:41:10 +0000
  • 9d55c4da87 Done with support for injection in ORDER BY and GROUP BY (hopefully) Bernardo Damele 2010-12-03 16:12:47 +0000
  • 91c3cf8fd0 Minor improvement Bernardo Damele 2010-12-03 16:11:57 +0000
  • 0e6359ab6e Minor layout adjustment Bernardo Damele 2010-12-03 16:11:35 +0000
  • 6e73adec47 Get rid of one useless attribute Bernardo Damele 2010-12-03 16:11:13 +0000
  • 126a1479d8 Bug fix for --union-test Bernardo Damele 2010-12-03 14:57:30 +0000
  • 072835e04b Removed for time being Bernardo Damele 2010-12-03 14:48:31 +0000
  • 11058667e4 Better naming Bernardo Damele 2010-12-03 14:45:13 +0000
  • b824826a89 Minor enhancement to prefix payload in ORDER BY and GROUP BY clauses Bernardo Damele 2010-12-03 14:39:51 +0000
  • bb40ab9fb0 Major bug fix for default boolean-based vector still work and minor adjustments Bernardo Damele 2010-12-03 14:31:11 +0000
  • 612ee08a0b added response time kb attribute Miroslav Stampar 2010-12-03 13:19:34 +0000
  • 73dfb69308 minor update for OR based time injection (Firebird) Miroslav Stampar 2010-12-03 12:15:41 +0000
  • 4dec049c22 Major bug fix for test on ORDER BY and GROUP BY clauses. Minor bug fix to skip following tests if they do not match any of the clause previously identified (injection.clause value). Bernardo Damele 2010-12-03 12:00:03 +0000
  • 827a0aea05 Minor bug fix Bernardo Damele 2010-12-03 11:15:11 +0000
  • 23a86ed612 minor bug fix related to Firebird time based test vectors Miroslav Stampar 2010-12-03 11:05:16 +0000
  • 7690aa85ce Added a comment needed to understand this hack when looking at the code in a month or so ;) Bernardo Damele 2010-12-03 11:00:41 +0000
  • 0069a21a0d Added also OR error-based checks, tweaked some TODOs and added some new boundaries for login forms (yet to test) Bernardo Damele 2010-12-03 10:52:24 +0000
  • a9d4b37987 Code cleanup and minor refactoring Bernardo Damele 2010-12-03 10:51:27 +0000
  • 22de82634a Important update to parse correctly the <where> tag during exploitation phase. Minor code cleanup. Bernardo Damele 2010-12-03 10:44:16 +0000
  • 7d6f51f758 Avoid blank space between prefix and test's payload if it's a stacked queries test Bernardo Damele 2010-12-03 10:42:46 +0000
  • b0928e02c6 Proper comment Bernardo Damele 2010-12-03 10:39:36 +0000
  • 2cc167a42e fix for a bug reported by ToR: "AttributeError: 'NoneType' object has no attribute 'isdigit'" Miroslav Stampar 2010-12-02 18:57:43 +0000
  • bf09b8a6d9 added Firebird error based (WHERE) attack vector Miroslav Stampar 2010-12-02 15:09:21 +0000
  • 283a04e29a On my way to properly parse test's <where> tag in exploitation phase Bernardo Damele 2010-12-01 23:32:58 +0000
  • 09b265a1ea Got rid of conf.logic for the moment, haven't decided yet what to do with parenthesis check Bernardo Damele 2010-12-01 23:32:02 +0000
  • df4cb1a601 On the way to get full support for injection on ORDER BY and GROUP BY clauses Bernardo Damele 2010-12-01 23:30:38 +0000
  • 47f2d22181 Minor bug fix Bernardo Damele 2010-12-01 17:18:31 +0000
  • 089c16a1b8 Added tag <epayload> to the payloads.xml's <test> tag to define which payload to use when exploiting the test type. Removed some useless tests. Moved <error> from queries.xml to payloads.xml as it makes more sense. Beeps at sql inj found only if --beep is provided. Minor fix in order to be able to pickle advancedDict() objects. Minor code refactoring. Removed useless folders. Bernardo Damele 2010-12-01 17:09:52 +0000
  • c00ea7f5e5 Store and resume also UNION char to session file (--union-char) Bernardo Damele 2010-12-01 10:59:58 +0000
  • 025361c970 Higher precedence to union query sql inj than error-based Bernardo Damele 2010-12-01 10:57:17 +0000
  • 56d2b2f322 Avoid storing to session file also payload delimiters Bernardo Damele 2010-12-01 10:55:59 +0000
  • 2708aad504 Unified start and stop delimiters accross errror-based (detection engine) and union query (--union-test) tests. Bernardo Damele 2010-12-01 10:31:50 +0000
  • 8d84dcc5dc More sense Bernardo Damele 2010-12-01 09:17:17 +0000
  • c8f943f5e4 Now, if the back-end dbms type has been identified by the detection engine, skips the fingerprint phase. Major code refactoring and commenting to detection engine. Ask user whether or not to proceed to test remaining parameters after an injection point has been identified. Restore beep at SQL injection find. Avoid reuse of same variable in DBMS handler code. Minor adjustment of payloads XML file. Bernardo Damele 2010-11-30 22:40:25 +0000
  • fcdebbd55f cosmeticados Miroslav Stampar 2010-11-30 14:48:13 +0000
  • 47a7708950 minor improvement of dynamic content detection/removal part Miroslav Stampar 2010-11-30 12:45:42 +0000
  • 8b9706656e Got rid of unreliable 'ORDER BY' technique to detect UNION query SQL injection, consequently switch --union-tech has gone now. Minor code refactoring too. Bernardo Damele 2010-11-29 17:18:38 +0000
  • e9291932e5 Apply --level also to User-Agent (level >= 4) and Cookie (level >= 3). GET and POST parameters are always tested. Bernardo Damele 2010-11-29 16:33:20 +0000
  • e735f2960a minor update Miroslav Stampar 2010-11-29 15:25:45 +0000
  • c76d740a25 just a precaution Bernardo Damele 2010-11-29 15:21:56 +0000
  • 70e87d959e update of dynamicity engine Miroslav Stampar 2010-11-29 15:14:49 +0000
  • ee4e04ebca Minor adjustment Bernardo Damele 2010-11-29 15:09:40 +0000
  • 2efb3b78ea Consider also --dbms value during the detection phase Bernardo Damele 2010-11-29 14:48:07 +0000
  • be6df7abd9 improvement of dynamicity engine Miroslav Stampar 2010-11-29 14:30:57 +0000
  • 76ce9cc888 Minor bug fix for --forms Bernardo Damele 2010-11-29 12:46:18 +0000
  • 6525e08d6b Minor adjustment to detect the proper parameter type based upon --prefix and --suffix values Bernardo Damele 2010-11-29 12:13:42 +0000
  • c22338ce90 Removed --error-test, --stacked-test and --time-test switches and adapted the code accordingly. This is due to the fact that the new XML based detection engine already supports all of those tests (and more). Bernardo Damele 2010-11-29 11:47:58 +0000
  • e8c6c01e27 precaution Bernardo Damele 2010-11-29 09:54:30 +0000
  • 9d7087e2ff Proper saving and resuming when more than a parameter are injectable. Minor bug fix to --stacked-test Minor code refactoring. Bernardo Damele 2010-11-29 01:04:42 +0000
  • 75f7df75b6 Minor fix Bernardo Damele 2010-11-28 23:33:51 +0000
  • 472f4465a6 Prioritize DBMS fingerprint based on DBMS (<dbms>) identified during the detection phase. Minor bug fix to properly handle the case that no injections are found. Nicer display of injection vulnerabilities detected. Minor code refactoring. Bernardo Damele 2010-11-28 21:27:47 +0000
  • 7e3b24afe6 Rewrite from scratch the detection engine. Now it performs checks defined in payload.xml. User can specify its own. All (hopefully) functionalities should still be working. Added two switches, --level and --risk to specify which injection tests and boundaries to use. The main advantage now is that sqlmap is able to identify initially which injection types are present so for instance if boolean-based blind is not supported, but error-based is, sqlmap will keep going and work! Bernardo Damele 2010-11-28 18:10:54 +0000
  • a8b38ba76b removed a trailer blank like (cosmetics) Miroslav Stampar 2010-11-24 14:25:16 +0000
  • 6712f4da55 some refactoring and one less request for aspx maintanance during --os-shell Miroslav Stampar 2010-11-24 14:20:43 +0000
  • 253eafb643 paranoid cosmetics Bernardo Damele 2010-11-24 12:03:01 +0000
  • b2b521fc8a gready regex bastard :) Miroslav Stampar 2010-11-24 12:01:36 +0000
  • 9579a97039 now ASPX works too for --os-shell Miroslav Stampar 2010-11-24 11:38:27 +0000
  • ca58bdbc66 minor update Miroslav Stampar 2010-11-24 10:54:15 +0000