PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2026-01-20 21:39:02 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 93c59c7277 Fix for a --privileges --technique=B --dbms=Oracle (when one user has no privileges everything is foobared) Miroslav Stampar 2013-01-30 16:41:57 +01:00
  • 103045d284 variable renamed Bernardo Damele 2013-01-30 15:30:34 +00:00
  • 95998e3989 Implementing undocumented way how to retrieve w+ temporary directory name on MsSQL (suggested by Vlado Velichkovski) Miroslav Stampar 2013-01-30 14:38:21 +01:00
  • 742c66fad2 Adding one more test (switch --hex) Miroslav Stampar 2013-01-30 11:40:12 +01:00
  • f33bf06c88 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-30 11:38:20 +01:00
  • 6005046280 Bug fix (--dbms=mysql --tables -D testdb --exclude-sysdbs --technique=E was not working) Miroslav Stampar 2013-01-30 11:36:04 +01:00
  • 6dfe91165d Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-30 10:34:51 +00:00
  • 8519717f25 minor fixes to --live-test Bernardo Damele 2013-01-30 10:32:56 +00:00
  • f391937083 Minor refactoring Miroslav Stampar 2013-01-30 10:43:46 +01:00
  • d6fb0e8545 Update for an Issue #352 Miroslav Stampar 2013-01-30 10:38:11 +01:00
  • bd08ede117 Minor fine tuning Miroslav Stampar 2013-01-29 21:06:02 +01:00
  • f41460f8d8 Better naming Miroslav Stampar 2013-01-29 20:53:11 +01:00
  • 95b922309c Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-29 20:50:40 +01:00
  • e8bd3c9c9f cosmetics Bernardo Damele 2013-01-29 17:00:28 +00:00
  • 1907c7c83a fixed stall Bernardo Damele 2013-01-29 16:39:14 +00:00
  • 8912436c68 tentative fix for stall Bernardo Damele 2013-01-29 16:30:59 +00:00
  • 8f36f92dd3 minor fix Bernardo Damele 2013-01-29 16:23:30 +00:00
  • 1ed2b0e5da missing mandatory update before regression test Bernardo Damele 2013-01-29 16:13:10 +00:00
  • edd6699ed1 code refactoring and added /status method for scan (issue #297) Bernardo Damele 2013-01-29 16:11:25 +00:00
  • c47b44e93f Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-29 15:38:16 +00:00
  • 1152cf8958 increased SQLite connection timeout to 3 seconds, the object will now wait for the lock to go away max 3 seconds, no longer 1 only. Relevant code refactoring and minor improvements all over the API library (issue #297) Bernardo Damele 2013-01-29 15:38:09 +00:00
  • 9677e0f910 more data content types for API (issue #297) Bernardo Damele 2013-01-29 15:36:19 +00:00
  • 92ae8145df ignore any non-relevant string: avoid storing to the API, careful this can introduce bugs but it is necessary at this stage of development (issue #297) Bernardo Damele 2013-01-29 15:35:51 +00:00
  • a56f4ec15c techniques has to go too to the API (issue #297) Bernardo Damele 2013-01-29 15:34:53 +00:00
  • bfce7210e6 improvements to the dump library to output to the API data fetched properly formatted (issue #297) Bernardo Damele 2013-01-29 15:34:20 +00:00
  • eeecb3fe2c split init() into two separate functions for API purposes (issue #297) Bernardo Damele 2013-01-29 15:33:16 +00:00
  • a59ac8e27f Trivial cosmetics Miroslav Stampar 2013-01-29 16:30:38 +01:00
  • 55a9f91bbf Refactoring between.py script Miroslav Stampar 2013-01-29 16:22:19 +01:00
  • f2512d06db Removing unneeded whitespace in inference queries Miroslav Stampar 2013-01-29 16:13:49 +01:00
  • f4b7b3fd35 Minor cosmetics Miroslav Stampar 2013-01-29 16:04:20 +01:00
  • 9eca41bae2 Minor fix Miroslav Stampar 2013-01-29 15:55:50 +01:00
  • a104de01d7 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-29 15:35:01 +01:00
  • 7e73825ece Minor cosmetics Miroslav Stampar 2013-01-29 15:34:41 +01:00
  • 085495024f minor adjustment Bernardo Damele 2013-01-29 01:44:57 +00:00
  • f1ab887c55 major enhancement, code refactoring for issue #297 Bernardo Damele 2013-01-29 01:39:27 +00:00
  • d07881b6c3 apply a little bit of secure coding practices to the API Bernardo Damele 2013-01-27 12:26:40 +00:00
  • 4d95573e6c cosmetics Bernardo Damele 2013-01-27 12:01:50 +00:00
  • 61eb16274e more appropriate log file name Bernardo Damele 2013-01-26 16:24:27 +00:00
  • a5ce0c9a04 leftover Bernardo Damele 2013-01-26 16:23:39 +00:00
  • 39c84ffabe missing import Bernardo Damele 2013-01-26 16:11:27 +00:00
  • 234e4c9f69 consolidated into one script Bernardo Damele 2013-01-26 16:11:09 +00:00
  • 2a9fe62c3f bind payload is preferred if filtering does not allow reverse connection Bernardo Damele 2013-01-26 15:51:47 +00:00
  • cd4075f6a3 no raise, just pass at ctrl-c Bernardo Damele 2013-01-26 15:33:09 +00:00
  • a0b9e0f1c5 Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-25 17:11:38 +00:00
  • 195d17449e first test of stdout/stderr redirect to a database when sqlmap is executed from restful API (#297) Bernardo Damele 2013-01-25 17:11:31 +00:00
  • c06f94e2c8 Fix for an Issue #378 Miroslav Stampar 2013-01-25 16:38:41 +01:00
  • f9b44d6ff7 Adding test cases for using custom injection marks Miroslav Stampar 2013-01-25 16:07:27 +01:00
  • 8c84a16cb7 Minor style update for an Issue #377 Miroslav Stampar 2013-01-25 12:52:31 +01:00
  • 479f791112 Minor fix Miroslav Stampar 2013-01-25 12:41:51 +01:00
  • 194a9e7b88 Implementation for an Issue #377 Miroslav Stampar 2013-01-25 12:34:57 +01:00
  • e150316d97 Slight update for a greatest.py (more general approach) Miroslav Stampar 2013-01-25 10:37:45 +01:00
  • ac6c9a808a Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-25 10:29:36 +01:00
  • 90daef0b9c Update of a doc/THANKS Miroslav Stampar 2013-01-25 10:27:57 +01:00
  • aed833c1d2 fixed test case Bernardo Damele 2013-01-24 14:59:55 +00:00
  • adfb862cd5 Trivial style update Miroslav Stampar 2013-01-24 15:12:52 +01:00
  • 5b3c8d8991 first implementation of asynchronous inter-protocol communication between the sqlmap RESTful API and the sqlmap engine with SQLite Bernardo Damele 2013-01-24 12:57:24 +00:00
  • 7d01eb79b4 minor fix Bernardo Damele 2013-01-24 00:55:45 +00:00
  • 2f4cf61271 Merge pull request #375 from frohoff/fix_non_ascii_header_name Miroslav Stampar 2013-01-23 11:56:51 -08:00
  • 218a6a9695 fixed response header logging for header names with special chars Chris Frohoff 2013-01-23 11:10:25 -08:00
  • 3c0c7f776f minor fix Bernardo Damele 2013-01-23 16:57:51 +00:00
  • f848f259a6 upper() -D value for certain DBMSes Bernardo Damele 2013-01-23 16:22:28 +00:00
  • f1534a178a regexp fixes Bernardo Damele 2013-01-23 16:22:01 +00:00
  • 9ceb4839ac added test cases for --common-tables across all DBMSes and supported techniques Bernardo Damele 2013-01-23 15:54:58 +00:00
  • 012815333c minor bug fix to ignore provided -D when brute-forcing columns/tables names and the DBMS is either Access, Firebird or SQLite Bernardo Damele 2013-01-23 15:52:03 +00:00
  • c83f468a37 Trivial changes Miroslav Stampar 2013-01-23 15:34:20 +01:00
  • 35d76f3da5 Adding missing stuff related to the last commit Miroslav Stampar 2013-01-23 14:48:31 +01:00
  • 9825e247db Refactoring search module Miroslav Stampar 2013-01-23 14:22:35 +01:00
  • 599ad74a32 typo fix Bernardo Damele 2013-01-23 13:05:10 +00:00
  • a3c779839a Merge branch 'master' of github.com:sqlmapproject/sqlmap Bernardo Damele 2013-01-23 13:02:14 +00:00
  • ff160abf10 minor bug fix Bernardo Damele 2013-01-23 13:02:02 +00:00
  • 45af22872a fixes #370 (the bug was introduced with commit edb977a74e)# Bernardo Damele 2013-01-23 13:00:58 +00:00
  • 232f8d3585 Fix for an Issue #368 Miroslav Stampar 2013-01-23 13:36:17 +01:00
  • 7ee07d031a added PostgreSQL stacked queries test case Bernardo Damele 2013-01-23 12:15:20 +00:00
  • 314ed22fc3 added preventive cleanup test case Bernardo Damele 2013-01-23 12:12:30 +00:00
  • f4028bd7d2 minor adjustment Bernardo Damele 2013-01-23 02:10:38 +00:00
  • d8a0e7eacb fixes #187 Bernardo Damele 2013-01-23 01:27:01 +00:00
  • f3ff239e62 minor fix Bernardo Damele 2013-01-23 00:21:11 +00:00
  • aafc5b5623 added one just in case test case to check if all params are tested as they should be Bernardo Damele 2013-01-23 00:18:54 +00:00
  • 2f1c174879 minor bug fix Bernardo Damele 2013-01-23 00:18:29 +00:00
  • 5635776173 proper SQLite 2 library Bernardo Damele 2013-01-22 18:56:25 +00:00
  • 91c00939f7 added one more test case Bernardo Damele 2013-01-22 18:28:59 +00:00
  • dea15b5892 notify user if --udf-inject is provided but no stacked queries SQLi is detected Bernardo Damele 2013-01-22 18:28:48 +00:00
  • d6a361f859 Proper implementation for --technique=Q --dbms=Firebird Miroslav Stampar 2013-01-22 16:31:26 +01:00
  • 719c7f622b Probable fix for --technique=Q --dbms=Firebird (but also other potential issues with splitting of fields in expressions) Miroslav Stampar 2013-01-22 15:51:06 +01:00
  • 2ec828f1cb Fix for an Issue #367 Miroslav Stampar 2013-01-22 14:27:17 +01:00
  • 5ea45af1c4 Warming up for Issue #366 and #367 Miroslav Stampar 2013-01-22 14:14:20 +01:00
  • 09c02c6c72 Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-22 14:08:31 +01:00
  • 15b0ab1b44 Fix for a 'no parameter found' problem when user says N on 'custom injection mark found in POST...' Miroslav Stampar 2013-01-22 14:08:19 +01:00
  • 4f081a6a9b typo fixes Bernardo Damele 2013-01-22 13:00:15 +00:00
  • afa9046e74 added Firebird custom enumeration test cases and stricten a few cases to make sure query length calculation function works properly with multi-threading/boolean technique Bernardo Damele 2013-01-22 12:34:11 +00:00
  • 061aef57ba missing import Bernardo Damele 2013-01-22 11:25:01 +00:00
  • 29a65b5cdc added Firebird search test cases Bernardo Damele 2013-01-22 11:23:48 +00:00
  • 59b02539ca More general approach regarding that last commit Miroslav Stampar 2013-01-22 11:34:34 +01:00
  • 01f1488f07 Minor patch (annoying trailing spaces for some DBMSes --technique=B --sql-query) Miroslav Stampar 2013-01-22 11:29:51 +01:00
  • b8318efecc Merge branch 'master' of github.com:sqlmapproject/sqlmap Miroslav Stampar 2013-01-22 11:29:15 +01:00
  • bd7fd862b0 forgot import Bernardo Damele 2013-01-22 10:16:18 +00:00
  • edb977a74e bug fix so that if search fails with union/error and blind techniques are available, it falls back to them (like any other enumeration switch) and minor bug fix so that in search mode, the provided table name to search is upped Bernardo Damele 2013-01-22 10:14:35 +00:00
  • 11413a0f03 added Firebird search test cases Bernardo Damele 2013-01-22 10:04:17 +00:00
  • e23340f002 added support for search for tables on Firebird (issue #365) Bernardo Damele 2013-01-22 09:53:05 +00:00
  • d2ff9bccbb minor adjustment Bernardo Damele 2013-01-21 21:00:03 +00:00