PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2026-01-21 05:39:16 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 8e49872d7c Finalizing implementation for an Issue #290 stamparm 2013-02-21 14:33:12 +01:00
  • 6a2129268d Update of year in COPYING file stamparm 2013-02-21 12:48:12 +01:00
  • 6b2981ef4e Update for an Issue #290 (adding tamper-like scripts into (new) directory waf) stamparm 2013-02-21 11:14:57 +01:00
  • f593e1d30f Reverting last commit as there is bunch of similar Miroslav Stampar 2013-02-20 17:35:36 +01:00
  • e2b7384921 Adding a new test case (--sql-query) stamparm 2013-02-20 14:10:39 +01:00
  • ba015608c6 Update for special cases stamparm 2013-02-19 10:12:47 +01:00
  • 69063947b6 Debug message should go with logging.DEBUG stamparm 2013-02-19 09:46:51 +01:00
  • d7247a51ee do not prompt constantly if the page is not found Bernardo Damele 2013-02-18 18:08:20 +00:00
  • 6c8e8e2a0f Minor fix Miroslav Stampar 2013-02-18 15:23:55 +01:00
  • 7f293afe74 Proper escaping for SQL identificators in Oracle (also, revert for 9b5f33560b) Miroslav Stampar 2013-02-18 15:18:53 +01:00
  • f817105db3 Minor bug fix Miroslav Stampar 2013-02-18 14:40:39 +01:00
  • 75a9404cb5 Bug fix (unenclosed 'SELECT * FROM user' returns result for a system function user <- previous results were illegal) Miroslav Stampar 2013-02-18 14:15:48 +01:00
  • 5c099efccc Fix for an Issue #401 Miroslav Stampar 2013-02-18 11:38:01 +01:00
  • 6bacbdb031 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-02-15 17:12:09 +00:00
  • 5abca52924 added one more test case Bernardo Damele 2013-02-15 17:11:40 +00:00
  • 9b5f33560b Oracle is too specific (only column names can be enclosed) - removing it Miroslav Stampar 2013-02-15 17:36:04 +01:00
  • bf82506c1b Oracle can't enclose table names with double quotations Miroslav Stampar 2013-02-15 17:34:12 +01:00
  • 1b3d749488 Proper fix related to the last commit/revert Miroslav Stampar 2013-02-15 17:11:53 +01:00
  • 5a793cbc7c Minor revert Miroslav Stampar 2013-02-15 17:09:25 +01:00
  • 046f347f5d Minor fix Miroslav Stampar 2013-02-15 17:08:50 +01:00
  • 834ae6aac0 Another minor update Miroslav Stampar 2013-02-15 16:58:02 +01:00
  • 799bd51c2e Minor fix when two readInput/dataToStdout are called one at a time Miroslav Stampar 2013-02-15 16:55:30 +01:00
  • 97c06854a4 Minor fixes Miroslav Stampar 2013-02-15 16:48:58 +01:00
  • 0e7f771be6 minor adjustment Bernardo Damele 2013-02-15 16:28:09 +00:00
  • 35aa785870 bug fix to make --predict-output work also with time-based technique Bernardo Damele 2013-02-15 16:25:33 +00:00
  • 014e4e0055 Minor represenation fix Miroslav Stampar 2013-02-15 14:48:24 +01:00
  • 67157fa2ba Some more minor fixes Miroslav Stampar 2013-02-15 14:26:50 +01:00
  • 63ddeb9008 unnecessary variable Bernardo Damele 2013-02-15 13:26:28 +00:00
  • b1c0cabde5 Minor fixes Miroslav Stampar 2013-02-15 14:21:51 +01:00
  • 345d10a9e0 Consistency fix (everywhere else we show unsafe format of identificator names) Miroslav Stampar 2013-02-15 14:05:14 +01:00
  • 2fb599619a Bug fix Miroslav Stampar 2013-02-15 13:54:42 +01:00
  • b472d9809a another consistency fix to readInput() Bernardo Damele 2013-02-15 09:35:09 +00:00
  • 32c8c67888 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-02-15 09:29:41 +00:00
  • 20c5f9a030 consistency fix Bernardo Damele 2013-02-15 09:29:36 +00:00
  • 11bcf28d86 Fix for an Issue #399 Miroslav Stampar 2013-02-15 10:04:13 +01:00
  • 5d068896a9 Minor bug fix Miroslav Stampar 2013-02-15 09:54:51 +01:00
  • 87db5d0dab minor bug fix to avoid duplicates - #297 Bernardo Damele 2013-02-15 00:53:05 +00:00
  • c3f1e196e1 added missing parameter Bernardo Damele 2013-02-15 00:43:46 +00:00
  • 4727589135 code consistency Bernardo Damele 2013-02-15 00:17:13 +00:00
  • 515be4ee0b Minor just in case commit related to the last one Miroslav Stampar 2013-02-14 19:58:10 +01:00
  • fef60b73f4 Minor update for proper display of [PAYLOAD] in JSON/XML/SOAP cases Miroslav Stampar 2013-02-14 19:53:12 +01:00
  • 0c79d7b1e2 unnecessary import Bernardo Damele 2013-02-14 18:33:47 +00:00
  • d8942d2ae0 fixes #396 - adapted the engine to properly verify all steps of takeover were successul, minor code refactoring too Bernardo Damele 2013-02-14 18:32:22 +00:00
  • 614ff6029d working on #396 - handle the case when we dont have a web backdoor/file stager for the language API, added a few more log messages to give further information about what is going on, minor bug fix to docRoot Bernardo Damele 2013-02-14 18:31:14 +00:00
  • 3b38b20176 working on #396 - adaptation for the verification phase Bernardo Damele 2013-02-14 18:29:55 +00:00
  • 261db6ed4f working on #396 - verify shellcodeexec executable has been properly uploaded Bernardo Damele 2013-02-14 18:29:35 +00:00
  • 4d5ecc3b03 working on #396 - verify icmpsh executable has been properly uploaded Bernardo Damele 2013-02-14 18:28:48 +00:00
  • 66cee83ca4 if needed, allow to reinitialize the environment for takeover - issue #396 Bernardo Damele 2013-02-14 17:39:19 +00:00
  • d91530f885 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-02-14 17:16:55 +00:00
  • 52264f544e minor fix for Windows file paths, do not strip the windows drive letter Bernardo Damele 2013-02-14 17:16:49 +00:00
  • fdf00e4842 Fix for an Issue #397 Miroslav Stampar 2013-02-14 17:14:36 +01:00
  • 368a2fd297 Fix for an Issue #393 Miroslav Stampar 2013-02-14 16:18:16 +01:00
  • f97f575018 Trivial restyling Miroslav Stampar 2013-02-14 15:41:27 +01:00
  • 605c5b089e Minor style update Miroslav Stampar 2013-02-14 15:34:03 +01:00
  • 06d8547916 Implementation for an Issue #394 Miroslav Stampar 2013-02-14 15:32:16 +01:00
  • 7944684ff2 This was supposed to be a separate commit (going to commit it in next one) Miroslav Stampar 2013-02-14 15:31:32 +01:00
  • 6c0054bc5f Putting that ugly parameter xyz is not inside the Cookie into the debug messages Miroslav Stampar 2013-02-14 15:29:48 +01:00
  • d42d28392a avoid tracebacks because the parameter does not exist Bernardo Damele 2013-02-14 13:18:33 +00:00
  • c9c520a325 no need to repeat the debug message each time this function is called Bernardo Damele 2013-02-14 13:18:15 +00:00
  • 646df37884 minor bug fix for --reg-read Bernardo Damele 2013-02-14 13:17:30 +00:00
  • f191b9bdf4 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-02-14 12:39:24 +00:00
  • 1de109747f minor bug fix introduced in 2267dd8f47 Bernardo Damele 2013-02-14 12:39:17 +00:00
  • c72353321d Minor update for an Issue #392 Miroslav Stampar 2013-02-14 13:36:33 +01:00
  • 0b8de94ace Putting cases with INTO here too Miroslav Stampar 2013-02-14 12:35:05 +01:00
  • 4b9d8ed673 reverted a previous commit as not all distributions create a link file /usr/bin/python2 to the Python interpreter Bernardo Damele 2013-02-14 11:32:17 +00:00
  • 2267dd8f47 working on #392 to fix --os-cmd and --os-shell output parsing Bernardo Damele 2013-02-14 11:31:20 +00:00
  • cb6d549e57 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-02-14 11:25:12 +00:00
  • a67ef4117f make sure to use Python 2 interpreter when default system Python is version 3 Bernardo Damele 2013-02-14 11:25:04 +00:00
  • efe1bf0ded Minor fix (for those multiline cases like in MsSQL) Miroslav Stampar 2013-02-14 12:20:40 +01:00
  • 6629233de5 Minor update Miroslav Stampar 2013-02-14 10:18:40 +01:00
  • b3b3899dab Fix for an Issue #273 (must for MsSQL 2000; works on MsSQL > 2000) Miroslav Stampar 2013-02-14 10:08:29 +01:00
  • a0b44da5d8 Minor fix for --threads>1 --binary-fields Miroslav Stampar 2013-02-13 20:47:27 +01:00
  • 3483fd4347 MAX not supported by MSSQL < 2005 Miroslav Stampar 2013-02-13 18:33:28 +01:00
  • 8abd014a3e updated doc Bernardo Damele 2013-02-13 16:30:11 +00:00
  • 0a4605644e Minor fix for previous commit Miroslav Stampar 2013-02-13 16:31:03 +01:00
  • 2b121c938b Minor fix Miroslav Stampar 2013-02-13 16:24:21 +01:00
  • 9b231f87d6 Minor bug fix (regarding Issue #379) - in case that two processes enter the same proc_count decrementing line sqlmap would halt Miroslav Stampar 2013-02-13 15:31:50 +01:00
  • 8138d1318e Minor fix Miroslav Stampar 2013-02-13 15:10:31 +01:00
  • cbb5c79d29 typo fix Bernardo Damele 2013-02-13 13:07:47 +00:00
  • d9e716b95d added two debug messages for clarity Bernardo Damele 2013-02-13 12:46:45 +00:00
  • c6d29e093e Fixing issue with newlines after the data in -r mode Miroslav Stampar 2013-02-13 12:36:01 +01:00
  • 965fa04a33 Trivial update Miroslav Stampar 2013-02-13 12:28:51 +01:00
  • d78a3e977b Update (allowing regular char * to be inside SOAP/JSON/XML) Miroslav Stampar 2013-02-13 12:24:42 +01:00
  • 6314d64a70 Renaming --binary to --binary-fields Miroslav Stampar 2013-02-13 11:27:03 +01:00
  • dd6f50a00e Removing unused imports Miroslav Stampar 2013-02-13 11:15:24 +01:00
  • 7c802ed8cc Minor fix Miroslav Stampar 2013-02-13 11:14:45 +01:00
  • dc41484b3f Refactoring of funcionality for finding out if stacking is available Miroslav Stampar 2013-02-13 09:57:16 +01:00
  • 8b4f72322a Adding (for now hidden) option --binary (works like -C but deliberately retrieves data in hex format and displays in hex format) Miroslav Stampar 2013-02-13 09:56:44 +01:00
  • 1d42aba01e Minor update regarding 093a93938c (for goStacked to work properly with stacked conditional payloads - e.g. proper suffix/prefix) Miroslav Stampar 2013-02-12 17:35:14 +01:00
  • c34f6e25b2 Minor fix for --eval (urldecoded values should be used inside evaluation) Miroslav Stampar 2013-02-12 17:01:47 +01:00
  • b6f7da6832 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-02-12 15:49:03 +01:00
  • cf6c3a84b5 Adding support for symbolic linking sqlmap.py Miroslav Stampar 2013-02-12 15:48:49 +01:00
  • ae0544d05f minor fix Bernardo Damele 2013-02-12 14:41:04 +00:00
  • 1384b8794f add parsed error messages to console_output for better debugging of failed regression test cases Bernardo Damele 2013-02-12 13:48:11 +00:00
  • 6a98d375b1 More general except Miroslav Stampar 2013-02-12 14:39:21 +01:00
  • 212e92ea01 Minor update regarding --load-cookies (warning about expired ones) Miroslav Stampar 2013-02-12 14:29:56 +01:00
  • c9447fbbe7 Minor patch to return False if --is-dba returns None Miroslav Stampar 2013-02-12 13:04:42 +01:00
  • c67b39d14d Update for a last update Miroslav Stampar 2013-02-12 12:58:15 +01:00
  • 72984a578d Update for --load-cookies Miroslav Stampar 2013-02-12 12:42:12 +01:00
  • c2672e78fc Support for multiple injection marks inside the same header value (Issue #48) Miroslav Stampar 2013-02-12 12:06:13 +01:00