sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-07-28 00:50:06 +03:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • a5968fff3e Added --count switch to count the number of entries for a specific table (when -T is provided), all database's tables (when only -D is provided) or all databases' tables when neither -D nor -T are provided Bernardo Damele 2011-04-30 00:22:22 +0000
  • 529595fd85 Moved method below Bernardo Damele 2011-04-29 22:37:43 +0000
  • 956e75e2b5 Minor adjustment to --mobile. Bug fix to --random-agent. Bernardo Damele 2011-04-29 21:50:48 +0000
  • 14bf6abb7e Minor layout adjustment Bernardo Damele 2011-04-29 21:40:48 +0000
  • f449688f93 Proper resume of --schema data when calling with --columns switch, minor fixes too Bernardo Damele 2011-04-29 21:17:59 +0000
  • a23ca952e4 Actually brute-force switches make more sense just after their "normal" version. Also, getSchema() method is preferably to be called before getColumns(), see next commit for reason Bernardo Damele 2011-04-29 21:09:07 +0000
  • 46f96f3c4c removing Kindle from list as it's not really a smartphone Miroslav Stampar 2011-04-29 19:32:30 +0000
  • 11124b21f9 implemented --mobile switch Miroslav Stampar 2011-04-29 19:27:23 +0000
  • b299912de4 fix for a bug reported by ahmed@isecur1ty.org (UnicodeDecodeError: 'ascii' codec can't decode byte 0x84 in position 396: ordinal not in range(128)) for multipartpost Miroslav Stampar 2011-04-29 16:56:02 +0000
  • 6bb4dce3aa minor refactoring Miroslav Stampar 2011-04-29 15:22:32 +0000
  • a2bb0d72e8 fix for a bug reported by rdsears@mtu.edu (TypeError: expected string or buffer) Miroslav Stampar 2011-04-29 14:40:28 +0000
  • a6015b59df fix for a bug reported by jaccovantuijl@gmail.​com (entries = zip(*[entries[colName] for colName in colList])) Miroslav Stampar 2011-04-29 14:33:47 +0000
  • 9927f5a7db Let --schema work also for Sybase and MaxDB Bernardo Damele 2011-04-29 00:02:28 +0000
  • edac0b2558 Added switch --schema to enumerate DBMS schema and now --columns does not require a mandatory table (-T) anymore, instead it will act as an alias for --schema Bernardo Damele 2011-04-28 23:59:00 +0000
  • d3ed3268c3 minor adjustments Bernardo Damele 2011-04-28 21:17:06 +0000
  • 8e63e1b70d more people to thanks Bernardo Damele 2011-04-28 21:15:15 +0000
  • 3e66dae103 as we don't use UPX anymore.. Bernardo Damele 2011-04-28 20:54:21 +0000
  • 441c288dd9 cosmeticados Bernardo Damele 2011-04-25 00:36:09 +0000
  • 98f9f3e774 Minor bug fix in local shellcodeexec for Windows path Bernardo Damele 2011-04-25 00:03:12 +0000
  • e35f25b2cb Major recode of --os-pwn functionality. Now the Metasploit shellcode can not be run as a Metasploit generated payload stager anymore. Instead it can be run on the target system either via sys_bineval() (as it was before, anti-forensics mode, all the same) or via shellcodeexec executable. Advantages are that: * It is stealthier as the shellcode itself does not touch the filesystem, it's an argument passed to shellcodeexec at runtime. * shellcodeexec is not (yet) recognized as malicious by any (Avast excluded) AV product. * shellcodeexec binary size is significantly smaller than a Metasploit payload stager (even when packed with UPX). * UPX now is not needed anymore, so sqlmap package is also way smaller and less likely to be detected itself as malicious by your AV software. shellcodeexec source code, compilation files and binaries are in extra/shellcodeexec/ folder now - copied over from https://github.com/inquisb/shellcodeexec. Minor code refactoring. Bernardo Damele 2011-04-24 23:01:21 +0000
  • d0a534dee5 Do not even prompt for ICMP tunnel if the target OS is not Windows Bernardo Damele 2011-04-23 21:57:07 +0000
  • d0dff82ce0 Minor code refactoring relating set/get back-end DBMS operating system and minor bug fix to properly enforce OS value with --os switch Bernardo Damele 2011-04-23 16:25:09 +0000
  • 75142b383d huge speed up (4x times faster) Miroslav Stampar 2011-04-22 21:00:42 +0000
  • f88aa4b165 implemented suppressResumeInfo mechanism (huge slowdown on large tables) Miroslav Stampar 2011-04-22 19:58:10 +0000
  • 493b9adf8e speed up of resume values (compiled regexes used) Miroslav Stampar 2011-04-22 19:27:41 +0000
  • 7b3b9e6a87 it seems that this was indeed not meant to be here Miroslav Stampar 2011-04-22 15:07:09 +0000
  • 304500a2e8 implemented checkFalsePositives method (simple Turing like tests) Miroslav Stampar 2011-04-22 12:24:16 +0000
  • 7df954dd9f paranoy Bernardo Damele 2011-04-21 23:41:25 +0000
  • 0764c4c752 parenthesis were missing; banning OR NOT from payloads Miroslav Stampar 2011-04-21 23:32:53 +0000
  • 41924a6ead fix for a bug reported by saccurso@skygear.com​.ar (UnicodeDecodeError: 'ascii' codec can't decode byte 0xe9 in position 0: ordinal not in range(128)) Miroslav Stampar 2011-04-21 23:17:16 +0000
  • 1d61611145 leftover Bernardo Damele 2011-04-21 22:46:43 +0000
  • f3088079c0 error message adjustment Bernardo Damele 2011-04-21 22:31:02 +0000
  • eabb5a2ba7 More adjustments to the error message when no sql injections are detected Bernardo Damele 2011-04-21 22:04:20 +0000
  • 6d07dddf60 updated doc and minor layout adjustments Bernardo Damele 2011-04-21 21:53:35 +0000
  • 06a00fe85e For development version, print also the revision number in the banner Bernardo Damele 2011-04-21 21:34:57 +0000
  • 770b1523ff More verbose output when no SQL injections are detected Bernardo Damele 2011-04-21 21:31:16 +0000
  • edc2d75702 Cosmetics and major bug fix Bernardo Damele 2011-04-21 21:15:23 +0000
  • 870f773d70 In some old versions of MySQL (perhaps others DBMS too) the NOT clause is not supported, hence we need also OR tests without NOT - tested and works like this Bernardo Damele 2011-04-21 20:36:50 +0000
  • d2f102f5a1 cosmetics Bernardo Damele 2011-04-21 20:21:37 +0000
  • 148fb26301 quick fix Miroslav Stampar 2011-04-21 17:34:26 +0000
  • e181d5412e fix for a bug reported by aboynes@gmail.com (@@datadir not available on MySQL 4) Miroslav Stampar 2011-04-21 17:33:07 +0000
  • bd4fbb3251 fix for a bug reported by l0rda@l0rda.biz (TypeError: cannot concatenate 'str' and 'NoneType' objects) Miroslav Stampar 2011-04-21 14:53:02 +0000
  • b667c50588 store/resume info on xp_cmd available in session file Bernardo Damele 2011-04-21 14:25:04 +0000
  • 930872cf3b fix Miroslav Stampar 2011-04-21 14:20:09 +0000
  • a313df4d37 Allow user to force temporary folder with --tmp-path even if it has been saved one in the session file Bernardo Damele 2011-04-21 14:05:37 +0000
  • fbe5ba5394 cosmetics Bernardo Damele 2011-04-21 10:54:12 +0000
  • e1a8d268d8 fix for UPX linux/macos Miroslav Stampar 2011-04-21 10:52:34 +0000
  • 8d8fc2bbd8 cosmetics Bernardo Damele 2011-04-21 10:17:41 +0000
  • 11ecd16099 cosmetics Bernardo Damele 2011-04-21 10:08:38 +0000
  • 9ccf720c05 removing funny remark Miroslav Stampar 2011-04-21 10:06:13 +0000
  • a91e6a8440 layout Bernardo Damele 2011-04-21 10:03:18 +0000
  • cbfe743bad added a comment Miroslav Stampar 2011-04-21 10:01:58 +0000
  • c84c4d835f minor update Miroslav Stampar 2011-04-21 09:31:35 +0000
  • 8e2e06a7a3 layout adjustment Bernardo Damele 2011-04-21 09:25:42 +0000
  • 5052013ffa minor update Miroslav Stampar 2011-04-20 14:48:23 +0000
  • f909ecb369 bug fix for mssqlserver escape Miroslav Stampar 2011-04-20 13:41:01 +0000
  • e4d3190f41 reverting back to NVARCHAR because of error technique Miroslav Stampar 2011-04-20 12:59:23 +0000
  • 3607f03a9e fix of a minor typo Miroslav Stampar 2011-04-20 12:42:35 +0000
  • 1286cc0913 now showing trimmed output in for of warning message (UNION and ERROR techniques affected) Miroslav Stampar 2011-04-20 12:41:58 +0000
  • 7993f3f12d way better for storing bulk of data (like BLOB on mysql) Miroslav Stampar 2011-04-20 11:44:52 +0000
  • 04653684cd revert Miroslav Stampar 2011-04-20 10:34:34 +0000
  • 4fadcf0615 improvement for UNION/ERROR case Miroslav Stampar 2011-04-20 10:17:42 +0000
  • 1c1c20fb64 minor update Miroslav Stampar 2011-04-20 09:34:00 +0000
  • 4b6c524d4c one more minor update regarding last commit Miroslav Stampar 2011-04-20 09:26:03 +0000
  • 44926757da minor update Miroslav Stampar 2011-04-20 09:23:08 +0000
  • 52c98afe93 minor fix Miroslav Stampar 2011-04-20 08:38:46 +0000
  • 24435a2c20 implemented "break a tie" request by Andres Riancho Miroslav Stampar 2011-04-20 08:35:47 +0000
  • df0331fe9b some more refactoring Miroslav Stampar 2011-04-19 23:04:10 +0000
  • 3b133303bf refactoring Miroslav Stampar 2011-04-19 22:54:13 +0000
  • de2479b864 dealing with http://bugs.python.org/issue1602 Miroslav Stampar 2011-04-19 22:33:03 +0000
  • 9a9838f1e6 cleaning a mess with UPX and virus scanners Miroslav Stampar 2011-04-19 21:57:04 +0000
  • 44bbef42f8 minor cosmetics Miroslav Stampar 2011-04-19 20:23:08 +0000
  • b7efa255d6 minor update of usage string Miroslav Stampar 2011-04-19 20:14:56 +0000
  • fc90974940 revert of last commit because of the situation in detection phase where payload is made at the starting point (can't change conf.timeSec in that phase) Miroslav Stampar 2011-04-19 14:50:09 +0000
  • 7abbd0c029 removing a leftover Miroslav Stampar 2011-04-19 14:29:51 +0000
  • 96b5fede5a automatic increasing of time delay on lagging connections Miroslav Stampar 2011-04-19 14:28:51 +0000
  • 13f8c001a7 minor update Miroslav Stampar 2011-04-19 11:13:53 +0000
  • 7a06af9a92 added "lagging" critical message Miroslav Stampar 2011-04-19 10:37:20 +0000
  • 959204cff9 minor cosmetics Miroslav Stampar 2011-04-19 09:55:35 +0000
  • 597f4dc445 adding procs directory for storing SQL procedure declarations Miroslav Stampar 2011-04-19 09:54:34 +0000
  • 9b0db33cc5 initial page request can result in unwanted lag (e.g. slow DNS response,...), hence it's response time shouldn't be a part of response time statistical model Miroslav Stampar 2011-04-19 08:55:38 +0000
  • a7c26366b4 doing that auto default value for --time-sec only for --tor Miroslav Stampar 2011-04-19 08:43:29 +0000
  • 4d48ac54dc automatically increasing default --time-sec value when --tor/--proxy used (not touching anything if explicit --time-sec set) Miroslav Stampar 2011-04-19 08:34:21 +0000
  • b79d4f70f3 cleaner solution for the problem solved with last commit Miroslav Stampar 2011-04-18 14:51:48 +0000
  • f5cff067c6 little hack for --time-sec Miroslav Stampar 2011-04-18 14:46:18 +0000
  • 6463cad8c5 minor update for SOAP payloads Miroslav Stampar 2011-04-18 14:29:52 +0000
  • c6a0209649 update of THANKS file Miroslav Stampar 2011-04-18 14:01:45 +0000
  • da9ec67869 removing leftover Miroslav Stampar 2011-04-18 13:43:22 +0000
  • 354a2ce249 'chardet' heuristic engine added to the project Miroslav Stampar 2011-04-18 13:38:46 +0000
  • b5aef9bcf9 fix for a bug reported by nightman (TypeError: unsupported operand type(s) for +: 'NoneType' and 'str') Miroslav Stampar 2011-04-18 10:16:38 +0000
  • 6fab44d635 minor refactoring and improving of used regex Miroslav Stampar 2011-04-17 22:37:00 +0000
  • 76d1f09b0a minor cosmetics Miroslav Stampar 2011-04-17 22:25:25 +0000
  • 9aae447553 minor update for matching SOAP messages Miroslav Stampar 2011-04-17 22:21:32 +0000
  • 4fa00121e4 that CONSTANT_RATIO was a pure black magic for dynamic pages. now we have better injection detection workflow than before (False, True, False) and it was just a matter of time for removing this one Miroslav Stampar 2011-04-17 21:58:34 +0000
  • a7366bf710 SOAP refactoring Miroslav Stampar 2011-04-17 21:39:00 +0000
  • c7ff5dcbeb minor update Miroslav Stampar 2011-04-17 08:48:13 +0000
  • ee88ccf0ac well, this could be important :) Miroslav Stampar 2011-04-17 08:33:46 +0000
  • ad53e3f551 update of doc/THANKS Miroslav Stampar 2011-04-17 07:39:49 +0000
  • 29ee760021 improving time based data retrieval mechanism Miroslav Stampar 2011-04-17 07:24:18 +0000
  • 5e70eac98c fix for a "popular" typo 'iso-5889-1' reported by David Guimaraes Miroslav Stampar 2011-04-16 06:44:29 +0000