sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 09:36:35 +03:00
Code Issues Packages Projects Releases Wiki Activity
Automatic SQL injection and database takeover tool
533 Commits 4 Branches 117 Tags 97 MiB
Python 98.2%
C 0.7%
Shell 0.6%
HTML 0.3%
Perl 0.1%
7d8cc1a482
Go to file
Bernardo Damele 7d8cc1a482 Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 
1. there's kitrap0d (MS10-015) which is far more reliable, just recently fixed
2. works only to priv esc basically on MSSQL when it runs as NETWORK SERVICE and the machine is not patched against MS09-012 which is "rare" (hopefully) nowadays.
Now sqlmap relies on kitrap0d and incognito to privilege escalate the database process' user privileges to SYSTEM, both via Meterpreter.

Minor layout adjustments.
2010-03-12 22:43:35 +00:00
doc Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 2010-03-12 22:43:35 +00:00
extra Extended copyright to 2010 2010-03-04 10:47:31 +00:00
lib Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 2010-03-12 22:43:35 +00:00
plugins Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 2010-03-12 22:43:35 +00:00
shell Improved PHP backdoor 2010-03-11 16:55:38 +00:00
txt Minor enhancement to show the DBMS operating system (if fingerprinted) 2008-11-17 11:22:03 +00:00
udf Adapted Visual Studio files to compile under VS2005 and recompiled UDFs' DLLs for Windows under VS2005 to make DLLs smaller (no need for UPX anymore) 2010-03-01 00:00:40 +00:00
xml some fix/revert of mssql banner file 2010-03-03 14:37:57 +00:00
sqlmap.conf Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 2010-03-12 22:43:35 +00:00
sqlmap.py Updated copyright 2010-03-03 15:26:27 +00:00