sqlmap

sqlmapproject/sqlmap

Fork 0

mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-07-28 09:00:08 +03:00

Commit Graph

Select branches

Hide Pull Requests

gh-pages

master

#102

#102

#1029

#1033

#1037

#1053

#1053

#107

#107

#1112

#1186

#1206

#1227

#1227

#1244

#1244

#1246

#1246

#1300

#1300

#1306

#1306

#1323

#1323

#1328

#1330

#1342

#1342

#1351

#1378

#1378

#1402

#1403

#1403

#1414

#1449

#1449

#1469

#1469

#1500

#1535

#1543

#1565

#1565

#1611

#1611

#1614

#1637

#1678

#1681

#1681

#1700

#1700

#1710

#1727

#1727

#1728

#1732

#1733

#1735

#1740

#1762

#1762

#1763

#1763

#1776

#1776

#1795

#1795

#1805

#1805

#1843

#1843

#1856

#1856

#1898

#1922

#1922

#2011

#2086

#2089

#2134

#2138

#2169

#2169

#2170

#2240

#2250

#2289

#2289

#232

#232

#2323

#2347

#2347

#2350

#2350

#2359

#2369

#2369

#2374

#2378

#2389

#2389

#2397

#2397

#2401

#2410

#2411

#2417

#2417

#2418

#2420

#2420

#2439

#2480

#2481

#2481

#2506

#2506

#252

#252

#2537

#2555

#2590

#2597

#2613

#2613

#2616

#2616

#2618

#2620

#2663

#2663

#2666

#2666

#2667

#2667

#269

#269

#2690

#2690

#2692

#2692

#2695

#2728

#2731

#2732

#2732

#2733

#2733

#2734

#2734

#2742

#2742

#2751

#2751

#2752

#2752

#2756

#2756

#2761

#2782

#2791

#2807

#2807

#2817

#2817

#2823

#2823

#284

#284

#2883

#2883

#2903

#2903

#2904

#2904

#2905

#2905

#2906

#2906

#2931

#2933

#2933

#2951

#2967

#2992

#3009

#3009

#3087

#3087

#3116

#3153

#3153

#3174

#3174

#3188

#320

#320

#321

#321

#3231

#3233

#3233

#3236

#3267

#3267

#3274

#3274

#3316

#3322

#3323

#3326

#3349

#3350

#3351

#3352

#3372

#3376

#3383

#3396

#3398

#3407

#3414

#3416

#3418

#3423

#3432

#3437

#3442

#3443

#3445

#3458

#3472

#3479

#3482

#3488

#3527

#3536

#3573

#3574

#3575

#3579

#3590

#3609

#3645

#3684

#375

#375

#3802

#3855

#3856

#3881

#3896

#39

#39

#3917

#3952

#3955

#3958

#3959

#3965

#3966

#3969

#3970

#3992

#3996

#400

#400

#4007

#4022

#4032

#4033

#4034

#4039

#4041

#4058

#4059

#4077

#4092

#4098

#4099

#41

#41

#4121

#413

#413

#4145

#4146

#4184

#4192

#4198

#4205

#4216

#4218

#4219

#4229

#4243

#4266

#4267

#4279

#4291

#4305

#4323

#4326

#4327

#4344

#4347

#4365

#4374

#4378

#4379

#4385

#4387

#4427

#4429

#4431

#4460

#4501

#4506

#4509

#4573

#4586

#4619

#4620

#4632

#4632

#4633

#4635

#4635

#4643

#4644

#4656

#4657

#466

#466

#4663

#4687

#4691

#4692

#47

#47

#4701

#4732

#4740

#475

#475

#4750

#4815

#4832

#4833

#4833

#4852

#4878

#4918

#4937

#4964

#4975

#4983

#4992

#4998

#5006

#5013

#5021

#5032

#5038

#5055

#5059

#506

#506

#507

#507

#5070

#5095

#5109

#5111

#512

#512

#5127

#5128

#5143

#5156

#5172

#5175

#5175

#5176

#5189

#5198

#5206

#5215

#5229

#5235

#5253

#5260

#5266

#5273

#5288

#53

#53

#530

#530

#5300

#5302

#5305

#5311

#5345

#5354

#5354

#5355

#5356

#536

#536

#5361

#5366

#5377

#5384

#539

#539

#5393

#5395

#5410

#5436

#5436

#5439

#5439

#544

#544

#5443

#5443

#5459

#5475

#5478

#5478

#5490

#5497

#5501

#5507

#5551

#5552

#5553

#5554

#5555

#5556

#5569

#5580

#5586

#5588

#5590

#5592

#5597

#5598

#5599

#5603

#5604

#5609

#5617

#5621

#5625

#5649

#5658

#5665

#5667

#5677

#5679

#5685

#5685

#5687

#5688

#5690

#5692

#5693

#5699

#5702

#5706

#5715

#5721

#5736

#5750

#5751

#5760

#5764

#5765

#5777

#578

#5820

#5821

#5824

#5825

#5825

#583

#5840

#5841

#5842

#5842

#5845

#5849

#5849

#5852

#5859

#5860

#5864

#5869

#5871

#5873

#5874

#5877

#5878

#5881

#5883

#5890

#5893

#5910

#5913

#5923

#5923

#5930

#5931

#5932

#63

#672

#672

#682

#682

#684

#686

#701

#713

#713

#714

#73

#73

#74

#74

#744

#749

#756

#766

#766

#779

#803

#835

#848

#848

#855

#855

#86

#86

#952

#973

#977

#977

#98

#98

#99

#99

0.19

0.6.2

0.6.3

0.6.4

0.7

0.7-rc1

0.8

0.8-rc2

0.8-rc3

0.8-rc4

0.9

1.0

1.0.10

1.0.11

1.0.12

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

1.0.8

1.0.9

1.1

1.1.10

1.1.11

1.1.12

1.1.2

1.1.3

1.1.4

1.1.5

1.1.6

1.1.7

1.1.8

1.1.9

1.2

1.2.10

1.2.11

1.2.12

1.2.2

1.2.3

1.2.4

1.2.5

1.2.6

1.2.7

1.2.8

1.2.9

1.3

1.3.10

1.3.11

1.3.12

1.3.2

1.3.3

1.3.4

1.3.5

1.3.6

1.3.7

1.3.8

1.3.9

1.4

1.4.10

1.4.11

1.4.12

1.4.2

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.4.8

1.4.9

1.5

1.5.10

1.5.11

1.5.12

1.5.2

1.5.3

1.5.4

1.5.5

1.5.6

1.5.7

1.5.8

1.5.9

1.6

1.6.10

1.6.11

1.6.12

1.6.2

1.6.3

1.6.4

1.6.5

1.6.6

1.6.7

1.6.8

1.6.9

1.7

1.7.1

1.7.10

1.7.11

1.7.12

1.7.2

1.7.3

1.7.4

1.7.5

1.7.6

1.7.7

1.7.8

1.7.9

1.8

1.8.1

1.8.10

1.8.11

1.8.12

1.8.2

1.8.3

1.8.4

1.8.5

1.8.6

1.8.7

1.8.8

1.8.9

1.9

1.9.2

1.9.3

1.9.4

1.9.5

1.9.6

1.9.7

3fc603843e minor fix Miroslav Stampar 2011-07-27 23:26:36 +0000
107089c00b bug fix Miroslav Stampar 2011-07-27 08:25:51 +0000
f7eaffcec5 i believe that this could be ok Miroslav Stampar 2011-07-26 21:28:48 +0000
37de709df2 leftover Bernardo Damele 2011-07-26 11:20:07 +0000
a2483b3bc4 Aligned OS takeover functionalities to recent Metasploit improvements Bernardo Damele 2011-07-26 10:29:14 +0000
ea00c94648 Minor bug fix Bernardo Damele 2011-07-26 10:10:05 +0000
938716e361 Proper fix for --start and --stop consistency amongst different techniques Bernardo Damele 2011-07-26 10:06:28 +0000
e71f96afe7 Reverted dumb "fix" Bernardo Damele 2011-07-26 09:42:09 +0000
6bbb8139a0 update (smaller memory footprint in postprocessing phase because of safecharencode part) Miroslav Stampar 2011-07-25 20:40:31 +0000
5770c08784 minor optimization and refactoring Miroslav Stampar 2011-07-25 20:17:44 +0000
0a7a648694 Minor bug fix for --start, now all techniques return the same result (before blind techniques returned from one entry behind) Bernardo Damele 2011-07-25 11:15:18 +0000
6cbb927012 Partial fix for -o not resumed at following runs if missing from command line Bernardo Damele 2011-07-25 11:05:49 +0000
50f4c4af52 Minor bug fix to parse also MSSQL 2008 R2 signatures Bernardo Damele 2011-07-24 23:43:01 +0000
b8e2d60bfa Added MSSQL 2008 R2 signatures Bernardo Damele 2011-07-24 23:42:32 +0000
48f580fb10 Minor adjustments to MSSQL fingerprint Bernardo Damele 2011-07-24 23:30:23 +0000
4550fa9e40 update Bernardo Damele 2011-07-24 22:43:22 +0000
99a0b62d0d Minor adjustments Bernardo Damele 2011-07-24 22:26:11 +0000
ca83305b58 added MySQL updatexml error-based payload Miroslav Stampar 2011-07-24 21:08:32 +0000
2033a28ae7 minor update regarding last commit (cleaner code) Miroslav Stampar 2011-07-24 20:44:17 +0000
3a3561fdaa doing proper big table support for partial union too Miroslav Stampar 2011-07-24 20:36:44 +0000
ec1bc0219c hello big tables, this is sqlmap, sqlmap this is big tables Miroslav Stampar 2011-07-24 09:19:33 +0000
82e1e61554 minor speedup Miroslav Stampar 2011-07-23 19:51:19 +0000
094dc91e2d minor update (prior to some changes regarding large content retrieval) Miroslav Stampar 2011-07-23 19:04:59 +0000
a89140e1ce revisit of Oracle error-based payloads (added replace for '@' as a problematic char for XMLType function) Miroslav Stampar 2011-07-23 06:07:00 +0000
8a00ca83af refactoring. nothing special changed Miroslav Stampar 2011-07-21 10:18:11 +0000
963f54e6d2 minor fix for parameters containing '=' inside values itself (remark: no parameter name will have '=' nor '%3d' inside; tested and it does a good job) Miroslav Stampar 2011-07-21 10:06:52 +0000
7881ded60d quick fix (this other library was doing problems) Miroslav Stampar 2011-07-20 22:20:16 +0000
d6b52242c7 Meterpreter's sniffer extension freezes 64-bit systems Meterpreter's priv extension is loaded by default since Metasploit 3.5 or so. There is no shellcodeexec 64-bit yet, anyway as the Metasploit payload is encoded with a 32-bit encoded (alphanumeric), it's all fine. Bernardo Damele 2011-07-20 13:50:02 +0000
5a1c9a42a3 Minor bug fix Bernardo Damele 2011-07-20 13:45:34 +0000
29b5115906 Minor bug fix Bernardo Damele 2011-07-20 13:28:10 +0000
9d996c07fb another quick fix Miroslav Stampar 2011-07-20 13:00:34 +0000
fad77dd078 fix for a ImportError bug reported by g@brindi.si Miroslav Stampar 2011-07-20 12:18:36 +0000
9cf33ec997 now status is no longer represented in percentage (impossible in cases where we need to support too small and too large dictionaries - technical issues regarding counting) but by the rotating char Miroslav Stampar 2011-07-15 13:24:13 +0000
ff8fc90ac7 bug fix Miroslav Stampar 2011-07-13 06:44:15 +0000
9c694ce3ec bug fix (--tables --columns) Miroslav Stampar 2011-07-12 23:27:47 +0000
5c162efbd8 more optimization Miroslav Stampar 2011-07-12 23:21:15 +0000
9933edc718 optimization of reflective removal mechanism Miroslav Stampar 2011-07-12 22:28:19 +0000
4cb9988243 quick fix Miroslav Stampar 2011-07-12 21:09:33 +0000
cda25cda2f Cosmetics Bernardo Damele 2011-07-12 20:49:27 +0000
3583d6dd1b quick fixes, more work to do Miroslav Stampar 2011-07-12 20:32:19 +0000
0126b8eb0e minor revert (it's illegal to use append for updating one array with another array) Miroslav Stampar 2011-07-12 19:34:54 +0000
48b7245a33 Minor bug fix Bernardo Damele 2011-07-12 15:47:04 +0000
0b8c6e4c81 Minor bug fix Bernardo Damele 2011-07-12 15:30:40 +0000
eeb4436471 renamed Bernardo Damele 2011-07-12 12:48:15 +0000
42c5bab013 renamed Bernardo Damele 2011-07-11 23:37:10 +0000
a46b5230f5 minor "patch" Miroslav Stampar 2011-07-11 20:33:16 +0000
1f826684f6 disabling multiprocessing (maybe permanently) support for Windows as of complications with sharing dictionary iterator Miroslav Stampar 2011-07-11 13:16:59 +0000
7bc6280d53 possible fix for a multi-processing "problem" reported by christopher.oakley@gmail.com Miroslav Stampar 2011-07-11 11:40:27 +0000
4ae71fd5f4 Updated docstring Bernardo Damele 2011-07-11 10:39:30 +0000
86d28947aa updated Bernardo Damele 2011-07-11 10:07:36 +0000
2b6b80d7f8 Updated docstring Bernardo Damele 2011-07-11 10:04:19 +0000
c9e6fc7695 Added new tamper script, tamper/space2mssqlblank.py from RS Bernardo Damele 2011-07-11 09:49:58 +0000
e47f873fa4 Renamed space2extrarandomblank.py to space2mysqlblank.py Bernardo Damele 2011-07-11 09:49:03 +0000
c9ba58acb6 Moved MS Access UNION query tests after generic as generic test must identify MSSQL Bernardo Damele 2011-07-11 09:47:52 +0000
1e1f429668 Minor minor fix Bernardo Damele 2011-07-11 09:22:47 +0000
5014475637 minor update (changing form of payload[i+1] with payload[i+1:i+2] which is much safer for not crashing the script with invalid char index) Miroslav Stampar 2011-07-11 09:22:29 +0000
7a6bddf811 minor fixes pointed by RS Miroslav Stampar 2011-07-11 09:08:24 +0000
f5e45bf113 quick fix for a bug reported by jovon.itwaru@gmail.com Miroslav Stampar 2011-07-11 08:54:39 +0000
98958f8808 minor minor update Miroslav Stampar 2011-07-10 15:41:45 +0000
0d6afca7db adding new switch '--smart' by request Miroslav Stampar 2011-07-10 15:16:58 +0000
5d31eb5ef7 cosmetics and also tested against testing env - works perfectly Miroslav Stampar 2011-07-10 09:07:07 +0000
b3acaf85d8 minor update Miroslav Stampar 2011-07-10 08:58:55 +0000
eb42cedf2a adding extractvalue MySQL >= 5.1 error payload (http://www.notsosecure.com/folder2/2010/06/29/mysql-exploitation-with-error-messages/) - untested (lack of particular ver for testing) and prone to level/risk adjustment Miroslav Stampar 2011-07-10 08:54:22 +0000
b7433011f8 new tamper script by request Miroslav Stampar 2011-07-08 22:48:03 +0000
1e182e6c72 quick fix Miroslav Stampar 2011-07-08 22:34:44 +0000
05cb65b106 Added one more tamper script from Roberto Salgado and minor adjustment to others Bernardo Damele 2011-07-08 13:43:34 +0000
3985a81cb9 Update email addresses Bernardo Damele 2011-07-08 13:39:47 +0000
651349e229 More verbose critical message Bernardo Damele 2011-07-08 13:12:53 +0000
062c156fc0 Added another tamper script from Roberto Salgado Bernardo Damele 2011-07-08 11:03:14 +0000
93219b9e13 i've accidentally left table_schema removed while doing some tests. now it should be ok Miroslav Stampar 2011-07-08 10:24:46 +0000
b5dd4d4a63 Minor bug fix for Microsoft Access case expressions (like --common-tables) in UNION query SQL injection Bernardo Damele 2011-07-08 10:19:01 +0000
02bfd05b20 more general approach Miroslav Stampar 2011-07-08 10:03:14 +0000
5443e06430 cosmetics (in debug mode [0] is used) Miroslav Stampar 2011-07-08 09:43:52 +0000
c463c411b9 minor update Miroslav Stampar 2011-07-08 09:32:58 +0000
ba2c06c9dc quick fix Miroslav Stampar 2011-07-08 09:01:32 +0000
c517e97a44 few fixes and minor cosmetics Miroslav Stampar 2011-07-08 06:02:31 +0000
aedcf8c8d7 Changed homepage address Bernardo Damele 2011-07-07 20:10:03 +0000
736327c893 Added two tamper scripts contributed by Roberto Salgado Bernardo Damele 2011-07-07 18:45:07 +0000
067354b97f Revert of last commit and proper fix to detect UNION query SQL injection against Microsoft Access Bernardo Damele 2011-07-07 13:20:40 +0000
c6a0b84242 Some more common tables and columns Bernardo Damele 2011-07-07 00:23:54 +0000
9e1a6beb7a Major bug fix in UNION detection, it was a leftover Bernardo Damele 2011-07-07 00:06:20 +0000
fcd4e94c04 Higher chances to detect UNION query SQL injection against Microsoft Access Bernardo Damele 2011-07-06 23:52:44 +0000
9d2aadd4a6 missing docstring details Bernardo Damele 2011-07-06 22:53:22 +0000
23b4efdcaf Revamp of tamper scripts, now supporting dependencies() function as well. Improved a lot the docstring and retested all. Added a new one from Ahmad too. Bernardo Damele 2011-07-06 21:04:45 +0000
0d28c1e9e7 cosmetics Bernardo Damele 2011-07-06 20:41:13 +0000
6f6038b534 Quick fix (revert..) Bernardo Damele 2011-07-06 11:32:12 +0000
93b296e02c few bug fixes (NTLM credential parsing was wrong), some switch reordering (few Misc to General), implemented --check-waf switch (irony is that this will also be called highly experimental/unstable while other things will be called "major/turbo/super bug fix/implementation") Miroslav Stampar 2011-07-06 05:44:47 +0000
b8ffcf9495 few fixes here and there and multi-core processing for dictionary based hash attack Miroslav Stampar 2011-07-04 19:58:41 +0000
da049110df Minor revert Bernardo Damele 2011-07-04 15:23:05 +0000
a1fe9d07ca minor revert Miroslav Stampar 2011-07-02 23:00:22 +0000
34d9a91af1 bulk of fixes Miroslav Stampar 2011-07-02 22:48:56 +0000
861cdb1b14 cosmetics Bernardo Damele 2011-07-01 10:04:34 +0000
4513ef409e massive (like really massive) dictionary support Miroslav Stampar 2011-06-30 23:44:49 +0000
43db6b03a7 update with a feature request (file with list of wordlist files) Miroslav Stampar 2011-06-30 08:42:43 +0000
366c2d279d minor update Miroslav Stampar 2011-06-30 08:02:52 +0000
d063ae91eb propset update Miroslav Stampar 2011-06-30 07:55:07 +0000
b361f60644 minor changes Miroslav Stampar 2011-06-30 07:52:13 +0000
f3013e4a29 minor update Miroslav Stampar 2011-06-30 06:39:32 +0000
caf22b58bc new tamper script Miroslav Stampar 2011-06-30 06:34:24 +0000
8a36f7fc03 fix for a bug reported by aboynes@gmail.com (UnboundLocalError: local variable 'infoMsg' referenced before assignment) Miroslav Stampar 2011-06-29 18:04:58 +0000