22 KiB
Individuals
Andres Tarasco Acuna, atarasco@gmail.com
for suggesting a feature
Santiago Accurso, saccurso@skygear.com.ar
for reporting a bug
Olu Akindeinde, seyi.akin@gmail.com
for reporting a couple of bugs
David Alvarez, david.alvarez.s@gmail.com
for reporting a bug
Sergio Alves, sergioalexandre.alves@gmail.com
for reporting a bug
Thomas Anderson, darkc0de@live.com.ph
for reporting a bug
Chip Andrews, chip@sqlsecurity.com
for his excellent work maintaining the SQL Server versions database at SQLSecurity.com and permission to implement the update feature taking data from his site
Smith Andy, teh.one@hotmail.com
for suggesting a feature
Otavio Augusto, otavioarj@gmail.com
for reporting a minor bug
Simon Baker, simonb@sec-1.com
for reporting some bugs
Ryan Barnett, RBarnett@trustwave.com
for organizing the ModSecurity SQL injection challenge, http://modsecurity.org/demo/challenge.html
Emiliano Bazaes, emiliano@7espejos.com
for reporting a minor bug
Daniele Bellucci, daniele.bellucci@gmail.com
for starting sqlmap project and developing it between July and August 2006
Sebastian Bittig, s.bittig@r-tec.net and the rest of the team at r-tec IT Systeme GmbH for contributing the DB2 support initial patch: fingerprint and enumeration
Anthony Boynes, aboynes@gmail.com
for reporting several bugs
Velky Brat, velkybrat@gmail.com
for suggesting a minor enhancement to the bisection algorithm
James Briggs, james.briggs@ngssecure.com
for suggesting a minor enhancement
Gianluca Brindisi, g@brindi.si
for reporting a couple of bugs
Jack Butler, fattredd@hotmail.com
for contributing the sqlmap site favicon
Ulisses Castro, uss.thebug@gmail.com
for reporting a bug
Roberto Castrogiovanni, castrogiovanni.roberto@gmail.com
for reporting a minor bug
Cesar Cerrudo, cesar@argeniss.com
for his Windows access token kidnapping tool Churrasco included in sqlmap tree as a contrib library and used to run the stand-alone payload stager on the target Windows machine as SYSTEM user if the user wants to perform a privilege escalation attack, http://www.argeniss.com/research/TokenKidnapping.pdf
Karl Chen, quarl@cs.berkeley.edu
for contributing the initial multi-threading patch for the inference algorithm
Y P Chien, ypchien@cox.net
for reporting a minor bug
Pierre Chifflier, pollux@debian.org and Mark Hymers, ftpmaster@debian.org
for uploading and accepting the sqlmap Debian package to the official Debian project repository
Chris Clements, cclements@flatearth.net
for reporting a couple of bugs
John Cobb, johnc@nobytes.com
for reporting a minor bug
Andreas Constantinides, megahz@megahz.org
for reporting a minor bug
Andre Costa, andre.investorsclub@gmail.com
for reporting a minor bug
for suggesting a minor enhancement
Ulises U. Cune, ulises2k@gmail.com
for reporting a bug
Alessandro Curio, alessandro.curio@gmail.com
for reporting a minor bug
Alessio Dalla Piazza, alessio.dallapiazza@gmail.com
for reporting a couple of bugs
Sherif El-Deeb, archeldeeb@gmail.com
for reporting a minor bug
Stefano Di Paola, stefano.dipaola@wisec.it
for suggesting good features
Mosk Dmitri, ya@darkbyte.ru
for reporting a minor bug
Carey Evans, careye@spamcop.net
for his fcrypt module that allows crypt(3) support
on Windows platforms
Adam Faheem, faheem.adam@is.co.za
for reporting a few bugs
James Fisher, www@sittinglittleduck.com
for contributing two very good feature requests
for his great tool too brute force directories and files names on web/application servers, DirBuster, http://tinyurl.com/dirbuster
Jim Forster, jimforster@goldenwest.com
for reporting a bug
Rong-En Fan, rafan@freebsd.org
for commiting the sqlmap 0.5 port to the official FreeBSD project repository
Giorgio Fedon, giorgio.fedon@gmail.com
for suggesting a speed improvement for bisection algorithm
for reporting a bug when running against Microsoft SQL Server 2005
Kasper Fons, thefeds@mail.dk
for reporting several bugs
Jose Fonseca, jose.r.fonseca@gmail.com
for his Gprof2Dot utility for converting profiler output to dot graph(s) and for his XDot utility to render nicely dot graph(s), both included in sqlmap tree inside extra folder. These libraries are used for sqlmap development purposes only
http://code.google.com/p/jrfonseca/wiki/Gprof2Dot
http://code.google.com/p/jrfonseca/wiki/XDot
Alan Franzoni, alan.franzoni@gmail.com
for helping me out with Python subprocess library
Harold Fry, harold@violaceo.us
for suggesting a minor enhancement
Daniel G. Gamonal, lgrecol@gmail.com
for reporting a minor bug
Marcos Mateos Garcia, mmateos@germinus.com
for reporting a minor bug
Andrew Gecse, andrew.gecse@upcmail.hu
for reporting a minor issue
Ivan Giacomelli, truemilk@insiberia.net
for reporting a bug
for suggesting a minor enhancement
for reviewing the documentation
Nico Golde, nico@ngolde.de
for reporting a couple of bugs
Oliver Gruskovnjak, oliver.gruskovnjak@gmail.com
for reporting a bug
for contributing a minor patch
Davide Guerri, d.guerri@caspur.it
for suggesting an enhancement
Dan Guido, dguido@gmail.com
for promoting sqlmap in the context of the Penetration Testing and Vulnerability Analysis class at the Polytechnic University of New York, http://isisblogs.poly.edu/courses/pentest/
David Guimaraes, skysbsb@gmail.com
for reporting considerable amount of bugs
for suggesting several features
Chris Hall, chris.hall@mod10.net
for coding the prettyprint.py library
Tate Hansen, tate@clearnetsec.com
for donating to sqlmap development
Mario Heiderich, mario.heiderich@gmail.com Christian Matthies, ch0012@gmail.com Lars H. Strojny, lars@strojny.net
for their great tool PHPIDS included in sqlmap tree as a set of rules for testing payloads against IDS detection, http://php-ids.org
Kristian Erik Hermansen, kristian.hermansen@gmail.com
for reporting a bug
for donating to sqlmap development
Alexander Hagenah, ah@primepage.de
for reporting a minor bug
Dennis Hecken, mail@8dh.de
for reporting a minor bug
Choi Ho, counterhacker815@gmail.com
for reporting a minor bug
Jorge Hoya, aquinadie@gmail.com
for suggesting a minor enhancement
Will Holcomb, wholcomb@gmail.com
for his MultipartPostHandler class to handle multipart POST forms and permission to include it within sqlmap source code
Daniel Huckmann, sanitybit@gmail.com
for reporting a couple of bugs
Daliev Ilya, daliser@yandex.ru
for reporting a bug
Jovon Itwaru, jovon.itwaru@gmail.com
for reporting a minor bug
Prashant Jadhav, prashantjadhav.82@gmail.com
for reporting a bug
Dirk Jagdmann, doj@cubic.org
for reporting a typo in the documentation
Luke Jahnke, luke.jahnke@gmail.com
for reporting a bug when running against MySQL < 5.0
David Klein, david.klein@ipfocus.com.au
for reporting a minor code improvement
Sven Klemm, sven@c3d2.de
for reporting two minor bugs with PostgreSQL
Anant Kochhar, anant.kochhar@secureyes.net
for providing with feedback on the user's manual
Dmitriy Kononov, dmitriyknnv@gmail.com
for reporting a minor bug
Alexander Kornbrust, ak@red-database-security.com
for reporting a couple of bugs
Krzysztof Kotowicz, kkotowicz@gmail.com
for reporting a minor bug
Nicolas Krassas, krasn@deventum.com
for reporting a couple of bugs
Oliver Kuckertz, oliver.kuckertz@mologie.de
for contributing a minor patch
Alex Landa, landa.alex86@gmail.com
for contributing a patch adding beta support for XML output
Guido Landi, lists@keamera.org
for reporting a couple of bugs
for the great technical discussions
for Microsoft SQL Server 2000 and Microsoft SQL Server 2005 'sp_replwritetovarbin' stored procedure heap-based buffer overflow (MS09-004) exploit development
for presenting with me at SOURCE Conference 2009 in Barcelona (Spain) on September 21, 2009 and at CONfidence 2009 in Warsaw (Poland) on November 20, 2009
Lee Lawson, Lee.Lawson@dns.co.uk
for reporting a minor bug
John J. Lee, jjl@pobox.com and others
for developing the clientform Python library used by sqlmap to parse forms when --forms switch is specified
Nico Leidecker, nico@leidecker.info
for providing with feedback on a few features
for reporting a couple of bugs
for his great tool icmpsh included in sqlmap tree to get a command prompt via an out-of-band tunnel over ICMP, http://leidecker.info/downloads/icmpsh.zip
Gabriel Lima, pato@bugnet.com.br
for reporting a couple of bugs
Svyatoslav Lisin, sel@3d-tech.ru
for suggesting a minor feature
Miguel Lopes, theoverblue@gmail.com
for reporting a minor bug
Truong Duc Luong, luongductruong@gmail.com
for reporting a minor bug
Pavol Luptak, pavol.luptak@nethemba.com
for reporting a bug when injecting on a POST data parameter
Till Maas, opensource@till.name
for suggesting a minor feature
Michael Majchrowicz, mmajchrowicz@gmail.com
for extensively beta-testing sqlmap on various MySQL DBMS
for providing really appreciated feedback
for suggesting a lot of ideas and features
Ahmad Maulana, matdhule@gmail.com
for contributing one tamper scripts, halfversionedmorekeywords.py
Ferruh Mavituna, ferruh@mavituna.com
for exchanging ideas on the implementation of a couple of features
David McNab, david@conscious.co.nz
for his XMLObject module that allows XML files to be operated on like Python objects
Spencer J. McIntyre, smcintyre@securestate.com
for reporting a minor bug
for contributing a patch for OS fingerprinting on DB2
Brad Merrell, bradmer12@gmail.com
for reporting a minor bug
Michael Meyer, m.meyer2k@gmail.com
for suggesting a minor feature
Enrico Milanese, enricomilanese@gmail.com
for reporting a minor bug
for sharing some ideas for the PHP backdoor
Liran Mimoni, reactor.leet@gmail.com
for reporting a minor bug
Marco Mirandola, mmmccc0@gmail.com
for reporting a minor bug
Devon Mitchell, devon.mitchell1988@yahoo.com
for reporting a minor bug
Anton Mogilin, azarmaster81@yahoo.com
for reporting a few bugs
Anastasios Monachos, anastasiosm@gmail.com
for providing some useful data
for suggesting a feature
for reporting a couple of bugs
Kirill Morozov, l0rda@l0rda.biz
for reporting a bug
for suggesting a feature
Alejo Murillo Moya, alex@65535.com
for reporting a minor bug
for suggesting a few features
Yonny Mutai, yonnym@googlemail.com
for reporting a minor bug
Roberto Nemirovsky, roberto.paes@gmail.com
for pointing me out some enhancements
Simone Onofri, simone.onofri@gmail.com
for patching the PHP web backdoor to make it work properly also on Windows
Michele Orru, michele.orru@antisnatchor.com
for reporting a minor bug
Shaohua Pan, pan@knownsec.com
for reporting several bugs
for suggesting a few features
Antonio Parata, s4tan@ictsc.it
for sharing some ideas for the PHP backdoor
Adrian Pastor, ap@gnucitizen.org
for donating to sqlmap development
Christopher Patten, cpatten@sunera.com
for reporting a bug in the blind SQL injection bisection algorithm
Zack Payton, zack.payton@executiveinstruments.com
for reporting a minor bug
Jaime Penalba, nighterman@painsec.com
for contributing a patch for INSERT/UPDATE generic boundaries
Pedrito Perez, 0ark1ang3l@gmail.com
for reporting a bug
Brandon Perry, bperry.volatile@gmail.com
for reporting a couple of bugs
Travis Phillips, perfect_insanity2004@yahoo.com
for suggesting a minor enhancement
Mark Pilgrim, mark@diveintomark.org
for porting chardet package (Universal Encoding Detector) to Python
Steve Pinkham, steve.pinkham@gmail.com
for suggesting a feature
for contributing a new SQL injection vector (MSSQL time-based blind)
for donating to sqlmap development
Adam Pridgen, adam.pridgen@gmail.com
for suggesting some features
Ole Rasmussen, olerass@gmail.com
for reporting a bug
for suggesting a feature
Alberto Revelli, r00t@northernfortress.net
for inspiring me to write sqlmap user's manual in SGML
for his great Microsoft SQL Server take over tool, sqlninja, http://sqlninja.sourceforge.net
David Rhoades, david.rhoades@mavensecurity.com
for reporting a bug
Andres Riancho, andres.riancho@gmail.com
for beta-testing sqlmap
for reporting a bug and suggesting some features
for including sqlmap in his great web application audit and attack framework, w3af, http://w3af.sourceforge.net
for suggesting a way for handling DNS caching
Jamie Riden, jamie.riden@ngssecure.com
for reporting a minor bug
Alexander Rigbo, alex@rigbo.se
for contributing a minor patch
Antonio Riva, antonio.riva@gmail.com
for reporting a bug when running with python 2.5
Ethan Robish, ethan.robish@gmail.com
for reporting a bug
Levente Rog, levidos@gmail.com
for reporting a minor bug
Andrea Rossi, andyroyalbattle@yahoo.it
for reporting a minor bug
for suggesting a feature
Frederic Roy, frederic.roy@telindus.fr
for reporting a couple of bugs
Vladimir Rutsky, rutsky.vladimir@gmail.com
for suggesting a couple of minor enhancements
Richard Safran, allapplyhere@yahoo.com
for donating the sqlmap.org domain
Tomoyuki Sakurai, cherry@trombik.org
for submitting to the FreeBSD project the sqlmap 0.5 port
Roberto Salgado, lightos@gmail.com
for contributing considerable amount of tamper scripts
Pedro Jacques Santos Santiago, pedro__jacques@hotmail.com
for reporting considerable amount of bugs
Marek Sarvas, marek.sarvas@gmail.com
for reporting several bugs
Philippe A. R. Schaeffer, schaeff@compuphil.de
for reporting a minor bug
Mohd Zamiri Sanin, zamiri.sanin@gmail.com
for reporting a minor bug
Jorge Santos, jorge_a_santos@hotmail.com
for reporting a minor bug
Sven Schluter, sschlueter@netzwerk.cc
for contributing a patch
for waiting a number of seconds between each HTTP request
Ryan Sears, rdsears@mtu.edu
for suggesting a couple of enhancements
for donating to sqlmap development
Uemit Seren, uemit.seren@gmail.com
for reporting a minor adjustment when running with python 2.6
Shane Sewell, ssewell@gmail.com
for suggesting a feature
Ahmed Shawky, ahmed@isecur1ty.org
for reporting a major bug with improper handling of parameter values
for reporting a bug
Brian Shura, bshura@appsecconsulting.com
for reporting a bug
Sumit Siddharth, sid@notsosecure.com
for sharing ideas on the implementation of a couple of features
Andre Silva, andreoaz@gmail.com
for reporting a bug
M Simkin, mlsimkin@cox.net
for suggesting a feature
Konrads Smelkovs, konrads@smelkovs.com
for reporting a few bugs in --sql-shell and --sql-query on Microsoft SQL Server
Chris Spencer, chris.spencer@ngssecure.com
for reviewing the user's manual grammar
Michael D. Stenner, mstenner@linux.duke.edu
for his keepalive module that allows handling of persistent HTTP 1.1 keep-alive connections
Marek Stiefenhofer, m.stiefenhofer@r-tec.net
for reporting a few bugs
Jason Swan, jasoneswan@gmail.com
for reporting a bug when enumerating columns on Microsoft SQL Server
for suggesting a couple of improvements
Chilik Tamir, phenoman@gmail.com
for contributing a patch for initial support SOAP requests
Alessandro Tanasi, alessandro@tanasi.it
for extensively beta-testing sqlmap
for suggesting many features and reporting some bugs
for reviewing the documentation
Andres Tarasco, atarasco@gmail.com
for contributing good feedback
Tom Thumb, k1971@live.co.uk
for reporting a major bug
Kazim Bugra Tombul, mhackmail@gmail.com
for reporting a minor bug
Efrain Torres, et@metasploit.com
for helping me out to improve the Metasploit Framework sqlmap auxiliary module and for commiting it on the Metasploit official subversion repository
for his great Metasploit WMAP Framework
Sandro Tosi, matrixhasu@gmail.com
for helping to create sqlmap Debian package correctly
Jacco van Tuijl, jaccovantuijl@gmail.com
for reporting several bugs
Vitaly Turenko, dsu@dsu.com.ua
for reporting a bug
Augusto Urbieta, x2xpy50@gmail.com
for reporting a minor bug
Bedirhan Urgun, bedirhanurgun@gmail.com
for reporting a few bugs
for suggesting some features and improvements
for benchmarking sqlmap in the context of his SQL injection benchmark project, OWASP SQLiBench, http://code.google.com/p/sqlibench
Kyprianos Vasilopoulos, kyprianos.vasilopoulos@gmail.com
for reporting a couple of minor bugs
Vlado Velichkovski, ketejadam@hotmail.com
for reporting a couple of bugs
Johnny Venter, johnny.venter@zoho.com
for reporting a couple of bugs
Carlos Gabriel Vergara, carlosgabrielvergara@gmail.com
for suggesting couple of good features
Patrick Webster, patrick@aushack.com
for suggesting an enhancement
Ed Williams, ed.williams@ngssecure.com
for suggesting a minor enhancement
Anthony Zboralski, anthony.zboralski@bellua.com
for providing with detailed feedback
for reporting a few minor bugs
for donating to sqlmap development
Thierry Zoller, thierry@zoller.lu
for reporting a couple of major bugs
Zhen Zhou, zhouzhenster@gmail.com
for suggesting a feature
-insane-, insane_@gmx.de
for reporting a minor bug
1ndr4 joe, c0d3w4st3r@gmail.com
for reporting a couple of bugs
abc abc, biedimc@gmx.net
for reporting a minor bug
Abuse 007, abuse007@gmail.com
for reporting a bug
Alex, m3zero@gmail.com
for reporting a minor bug
anonymous anonymous, tmp@2ch.so
for reporting a couple of bugs
Brandon E., brandonpoc@gmail.com
for reporting a bug
black zero, timeisflowing@gmail.com
for reporting a minor bug
blueBoy, blueboy4444@gmail.com
for reporting a bug
buawig, buawig@gmail.com
for reporting considerable amount of bugs
Bugtrace, bugtrace@gmail.com
for reporting several bugs
cats, dump@alcor.se
for reporting a couple of bugs
Christian S, christian_s@linuxmail.org
for reporting a minor bug
clav, elclav@gmail.com
for reporting a minor bug
dragoun dash, dragoun.dash@gmail.com
for reporting a minor bug
fufuh, fufuh@users.sourceforge.net
for reporting a bug when running on Windows
Hans Wurst, wurstwass0r@googlemail.com
for reporting a couple of bugs
james, james@ev6.net
for reporting a bug
Joe "Pragmatk", pragmatk@gmail.com
for reporting a few bugs
John Smith, tixos@live.com
for reporting several bugs
for suggesting some features
m4l1c3, malice.anon@gmail.com
for reporting considerable amount of bugs
mariano, marianoso@gmail.com
for reporting a bug
mitchell, mitchell@tufala.net
for reporting a few bugs
Nadzree, nadzree@bake180.com
for reporting a minor bug
nightman, nightman@email.de
for reporting considerable amount of bugs
Oso Dog osodog123@yahoo.com for reporting a minor bug
pacman730, pacman730@users.sourceforge.net
for reporting a bug
pentestmonkey, pentestmonkey@pentestmonkey.net
for reporting several bugs
for suggesting a few minor enhancements
Phat R., phatthanaphol@gmail.com
for reporting a few bugs
Phil P, <@superevr>
for suggesting a minor enhancement
ragos, ragos@joker.ms
for reporting a minor bug
rmillet, rmillet42@gmail.com
for reporting a bug
shiftzwei, shiftzwei@gmail.com
for reporting a couple of bugs
smith, esmyl911@gmail.com
for reporting a minor bug
Soma Cruz, oleg.kupreev@gmail.com
for reporting a minor bug
Stuffe, stuffe.dk@gmail.com
for reporting a minor bug and a feature request
Sylphid, sylphid.su@sti.com.tw
for suggesting some features
syssecurity.info, syssecurity7@googlemail.com
for reporting a minor bug
This LittlePiggy, thislittlepiggyhadroastbeef@hotmail.com
for reporting a minor bug
ToR, sstidus@email.it
for reporting considerable amount of bugs
for suggesting a feature
ultramegaman, seclists@ultramegaman.com
for reporting a minor bug
Vinicius, viniciusmaxdaloop@gmail.com
for reporting a minor bug
wanglei, wanglei@17uxi.cn
for reporting a minor bug
warninggp, warninggp@gmail.com
for reporting a few minor bugs
for reporting a bug
Organizations
Black Hat team, info@blackhat.com
for the opportunity to present my research titled 'Advanced SQL injection to operating system full control' at Black Hat Europe 2009 Briefings on April 16, 2009 in Amsterdam (NL). I unveiled and demonstrated some of the sqlmap 0.7 release candidate version new features during my presentation
Homepage: http://goo.gl/BKfs7
Slides: http://goo.gl/Dh65t
White paper: http://goo.gl/spX3N
SOURCE Conference team, press@sourceconference.com
for the opportunity to present my research titled 'Expanding the control over the operating system from the database' at SOURCE Conference 2009 on September 21, 2009 in Barcelona (ES). I unveiled and demonstrated some of the sqlmap 0.8 release candidate version new features during my presentation
Homepage: http://goo.gl/IeXV4
Slides: http://goo.gl/OKnfj
AthCon Conference team, cfp@athcon.org
for the opportunity to present my research titled 'Got database access? Own the network!' at AthCon Conference 2010 on June 3, 2010 in Athens (GR). I unveiled and demonstrated some of the sqlmap 0.8 version features during my presentation
Homepage: http://goo.gl/Fs71I
Slides: http://goo.gl/QMfjO
Metasploit Framework development team, msfdev@metasploit.com
for their powerful tool Metasploit Framework, used by sqlmap, among others things, to create the shellcode and establish an out-of-band connection between sqlmap and the database server
Homepage: http://www.metasploit.com
OWASP Board, info@owasp.org
for sponsoring part of the sqlmap development in the context of OWASP Spring of Code 2007
Homepage: http://www.owasp.org