PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-29 10:59:03 +00:00
Code Issues Projects Releases Wiki Activity

Updated

Browse Source
This commit is contained in:
Bernardo Damele
2010-05-12 22:02:18 +00:00
parent 893bc04fe4
commit b2c5807109
3 changed files with 1284 additions and 1281 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
doc/README.html
View File

@@ -279,9 +279,9 @@ bug fixes.</LI>
<P>
<UL>
<LI><B>December 18</B>, Miroslav Stampar replies to my public call
for developers. He contributes actively in the development of sqlmap from
version <B>0.8 release candidate 2</B>.
<LI><B>December 18</B>, Miroslav Stampar replies to the call for
developers. Along with Bernardo, he actively develops sqlmap from version
<B>0.8 release candidate 2</B>.
</LI>
<LI><B>December 12</B>, Bernardo writes to the mailing list a post
titled
@@ -289,7 +289,7 @@ titled
achieved during these first three years of the project and launches a call
for developers.
</LI>
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged
<LI><B>December 4</B>, sqlmap-devel mailing list has been merged into
sqlmap-users
<A HREF="http://sqlmap.sourceforge.net/#ml">mailing list</A>.
</LI>
@@ -313,7 +313,7 @@ inject custom user-defined functions.
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009/schedule">present</A> their research (
<A HREF="http://www.slideshare.net/inquis/expanding-the-control-over-the-operating-system-from-the-database">slides</A>) at SOURCE Conference 2009 in Barcelona, Spain.
</LI>
<LI><B>August</B>, Bernardo is accepted as a speaker to two others IT
<LI><B>August</B>, Bernardo is accepted as a speaker at two others IT
security conferences,
<A HREF="http://www.sourceconference.com/index.php/pastevents/source-barcelona-2009">SOURCE Barcelona 2009</A> and
<A HREF="http://200902.confidence.org.pl/">CONfidence 2009 Warsaw</A>.
@@ -329,7 +329,7 @@ an updated version of his
<A HREF="http://www.digitalsecurityforum.eu/">2nd Digital Security Forum</A> in
Lisbon, Portugal.
</LI>
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made it way to
<LI><B>June 2</B>, sqlmap version <B>0.6.4</B> has made its way to
the official Ubuntu repository too.
</LI>
<LI><B>May</B>, Bernardo presents again his research on operating
@@ -424,9 +424,10 @@ away from SourceForge and goes private for a while.</LI>
<UL>
<LI><B>November 4</B>, release <B>0.5</B> marks the end of the OWASP
Spring of Code 2007 contest participation. Bernardo has
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include initial support
for Oracle, enhanced support for UNION query SQL injection and support to
test and exploit injections on HTTP Cookie and User-Agent headers.
<A HREF="http://www.owasp.org/index.php/SpoC_007_-_SQLMap_-_Progress_Page">accomplished</A> all the propsed objects which include also initial
support for Oracle, enhanced support for UNION query SQL injection and
support to test and exploit SQL injections in HTTP Cookie and User-Agent
headers.
</LI>
<LI><B>June 15</B>, Bernardo releases version <B>0.4</B> as a
result of the first OWASP Spring of Code 2007 milestone. This release
@@ -677,7 +678,7 @@ Metasploit's <CODE>getsystem</CODE> command which include, among others,
the
<A HREF="http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0346.html">kitrap0d</A> technique (
<A HREF="http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx">MS10-015</A>) or via
<A HREF="http://www.argeniss.com/research/TokenKidnapping.pdf">Windows Access Tokens kidnapping</A> by using Meterpreter's
<A HREF="http://labs.mwrinfosecurity.com/files/Publications/mwri_security-implications-of-windows-access-tokens_2008-04-14.pdf">Windows Access Tokens insecure design</A> by using Meterpreter's
<CODE>incognito</CODE> extension.
</LI>
<LI>Support to access (read/add/delete) Windows registry hives.</LI>