sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 17:46:37 +03:00
Code Issues Packages Projects Releases Wiki Activity
c42c4982c3
sqlmap/lib/takeover
History
Bernardo Damele 7d8cc1a482 Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 
1. there's kitrap0d (MS10-015) which is far more reliable, just recently fixed
2. works only to priv esc basically on MSSQL when it runs as NETWORK SERVICE and the machine is not patched against MS09-012 which is "rare" (hopefully) nowadays.
Now sqlmap relies on kitrap0d and incognito to privilege escalate the database process' user privileges to SYSTEM, both via Meterpreter.

Minor layout adjustments.
2010-03-12 22:43:35 +00:00
..
__init__.py Updated copyright 2010-03-03 15:26:27 +00:00
abstraction.py Updated copyright 2010-03-03 15:26:27 +00:00
metasploit.py Get rid of Churrasco (Token kidnapping technique to --priv-esc). Reasons why: 2010-03-12 22:43:35 +00:00
registry.py final fix for reading registry keys (now both parse and non-parse reads work fine) 2010-03-12 22:26:06 +00:00
udf.py Minor layout adjustments 2010-03-09 22:14:26 +00:00
upx.py Updated copyright 2010-03-03 15:26:27 +00:00
web.py Updated copyright 2010-03-03 15:26:27 +00:00
xp_cmdshell.py Updated copyright 2010-03-03 15:26:27 +00:00