Automatic SQL injection and database takeover tool
Go to file
2010-12-07 16:39:31 +00:00
doc Added new switch --union-char to be able to provide the character used in union-test and exploit (default is still NULL, but can be any) 2010-11-19 14:56:20 +00:00
extra foundations for dictionary attack support combined with the sqlmap's password/hash retrieval functionality (--password switch) 2010-11-20 13:14:13 +00:00
lib added standard deviation check in time based tests 2010-12-07 16:39:31 +00:00
plugins OR based inference works for the first time in history and fingerprint of 4 major DBMSes is now injection based (instead of AND) 2010-12-06 18:20:57 +00:00
shell removed a trailer blank like (cosmetics) 2010-11-24 14:25:16 +00:00
tamper further refactoring (all enumerations are now put into enums.py) 2010-11-08 09:20:02 +00:00
txt more code refactoring 2010-11-23 14:50:47 +00:00
udf Removed duplicate UDFs files 2010-07-20 10:44:27 +00:00
xml number crunching based time payloads are now affected by conf.timeSec 2010-12-07 13:24:18 +00:00
sqlmap.conf Got rid of unreliable 'ORDER BY' technique to detect UNION query SQL injection, consequently switch --union-tech has gone now. 2010-11-29 17:18:38 +00:00
sqlmap.py Minor code refactoring 2010-10-20 22:09:03 +00:00