PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2026-01-13 18:09:03 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 6afc9bffaa Minor bug fix: there will always be only one pair of delimiters as we add it for each place Bernardo Damele 2010-10-31 11:09:29 +00:00
  • 3a48bee9b0 Minor code refactoring Bernardo Damele 2010-10-31 11:03:59 +00:00
  • 5ba36f89df Fixed MySQL BETWEEN tamper script Bernardo Damele 2010-10-29 23:03:02 +00:00
  • 8cf0ebde1e Cosmetics Bernardo Damele 2010-10-29 23:00:48 +00:00
  • 0125198210 minor fix Miroslav Stampar 2010-10-29 21:19:28 +00:00
  • cbf38436f2 minor update Miroslav Stampar 2010-10-29 16:15:23 +00:00
  • 5a38ac7ea9 important update regarding (Bug #209) - probably more will be needed Miroslav Stampar 2010-10-29 16:11:50 +00:00
  • a921fe0d5d fix for using --banner --stacked-test together Miroslav Stampar 2010-10-29 15:31:24 +00:00
  • a0df231aa4 Avoid waiting 30 seconds when cleaning up the dbms and file system from sqlmap data Bernardo Damele 2010-10-29 13:09:53 +00:00
  • 963fcb57b6 Minor bug fix Bernardo Damele 2010-10-29 12:36:37 +00:00
  • f7d42af046 some fixes regarding --check-payload Miroslav Stampar 2010-10-29 11:00:23 +00:00
  • b3b2c3864a Minor code refactoring Bernardo Damele 2010-10-29 10:51:09 +00:00
  • 72a901347d Adjustments Bernardo Damele 2010-10-29 10:06:28 +00:00
  • 53e735ea9d cosmetics Miroslav Stampar 2010-10-29 10:03:44 +00:00
  • cc6efc4015 new extra added Miroslav Stampar 2010-10-29 09:59:18 +00:00
  • 2b2634e92c As fcntl is only supported on Posix systems (no Windows) we need to check for the OS beforehand. Added proper check for impacket library too. Bernardo Damele 2010-10-29 09:50:41 +00:00
  • d75578c81f some update regarding common tables Miroslav Stampar 2010-10-29 09:00:51 +00:00
  • 895efd28a6 one more update regarding Bug #205 Miroslav Stampar 2010-10-28 23:22:13 +00:00
  • 1f5224f1ac update Miroslav Stampar 2010-10-28 23:13:30 +00:00
  • 788eb8fb50 update regarding Bug #205 Miroslav Stampar 2010-10-28 22:59:51 +00:00
  • 762c2a1781 one more update for common tables Miroslav Stampar 2010-10-28 22:30:59 +00:00
  • 4f8e9da1b6 Minor bug fix to properly delete sqlmap temporary files on the database server file system at shutdown. Minor improvements at ICMPsh tunnel to cleanup properly the dbms at shutdown and avoid checking/writing sys_bineval() UDF as it's a PE and needs to be called by sys_exec() only. Got rid of useless doubleslash param in delRemoteFile() method. Major code refactoring to xp_cmdshell.py methods and parent calls. Bernardo Damele 2010-10-28 00:19:40 +00:00
  • 56c16cb471 Minor bug fixes and enhancements to ICMPsh tunnel Bernardo Damele 2010-10-27 23:01:17 +00:00
  • 26cf6c2136 Adjusted impacket import check Bernardo Damele 2010-10-27 21:10:56 +00:00
  • ed1f2da43f Updated Bernardo Damele 2010-10-27 21:05:58 +00:00
  • a391be833b Implemented ICMP tunneling for out-of-band takeover (--os-pwn) as an alternative to TCP tunneling (Metasploit). It relies on icmpsh, the back-end dbms server has to be Windows as the icmpsh slave runs on Windows only for the moment. sqlmap needs to be executed as root to work. Bernardo Damele 2010-10-27 21:02:22 +00:00
  • 1870e17e5d Written from scratch in Python the icmpsh master Bernardo Damele 2010-10-27 20:54:46 +00:00
  • 43de8247ac Code refactoring Bernardo Damele 2010-10-27 20:39:50 +00:00
  • 7715ba778b Updated Bernardo Damele 2010-10-27 14:41:03 +00:00
  • 6075752c47 Added icmpsh from Nico Leidecker for future enhancement to --os-cmd and --os-pwn to make the user able to choose between TCP (Metasploit payloads) and ICMP (icmpsh software). Bernardo Damele 2010-10-27 14:36:45 +00:00
  • d554ffc0ae yes, I am quite paranoid with cosmetics Bernardo Damele 2010-10-27 10:37:54 +00:00
  • 0efecde248 Minor update to properly differentiate Windows 2003 by 2008 via HTTP response headers Bernardo Damele 2010-10-27 10:09:47 +00:00
  • 1e5e4bbe34 update for common table names Miroslav Stampar 2010-10-27 09:15:18 +00:00
  • 5cc1bd8a12 major fix for heuristic check Miroslav Stampar 2010-10-27 08:27:31 +00:00
  • 749e25a217 Implementation of --passwords for Sybase Miroslav Stampar 2010-10-26 21:35:30 +00:00
  • 1b90c1d131 added FreeBSD Miroslav Stampar 2010-10-26 20:48:52 +00:00
  • 4da2046492 massive update of server fingerprints Miroslav Stampar 2010-10-26 20:00:29 +00:00
  • 080c5aef80 minor update Miroslav Stampar 2010-10-26 19:08:11 +00:00
  • 4d70f2c210 reverting back to 100 Miroslav Stampar 2010-10-26 15:42:54 +00:00
  • 8211e6a2bd possible Miroslav Stampar 2010-10-26 11:29:09 +00:00
  • 9b127e58d2 Adjusted for MySQL weirdness Bernardo Damele 2010-10-26 09:33:18 +00:00
  • 8803096343 some update regarding beep() Miroslav Stampar 2010-10-26 08:32:58 +00:00
  • b9ff91b6e9 update of beep Miroslav Stampar 2010-10-26 06:30:27 +00:00
  • 9ec9d223e1 minor Miroslav Stampar 2010-10-26 06:08:40 +00:00
  • 4ab3edfc94 Updated Bernardo Damele 2010-10-25 23:40:19 +00:00
  • f5904d0bc0 Major bug fix to --union-test Bernardo Damele 2010-10-25 23:39:55 +00:00
  • 7effd0c301 Cosmetics Bernardo Damele 2010-10-25 22:54:56 +00:00
  • 8a9a57c709 update for Sybase and major bug fix for --passwords on MSSQL Miroslav Stampar 2010-10-25 22:11:38 +00:00
  • 9b56fbafbe that Sybase is going to be pain in the ass Miroslav Stampar 2010-10-25 21:43:13 +00:00
  • 73eea81b3a minor cosmetics Miroslav Stampar 2010-10-25 19:45:53 +00:00
  • d7bf94d4d6 fix for --beep Miroslav Stampar 2010-10-25 19:16:42 +00:00
  • 228ac0cde5 refactoring regarding --check-payload Miroslav Stampar 2010-10-25 18:38:54 +00:00
  • 7c343c2d67 Forgot Bernardo Damele 2010-10-25 16:34:43 +00:00
  • c7578d4ea1 update of THANKS Miroslav Stampar 2010-10-25 16:07:03 +00:00
  • debaf2215f Consistency between cmdline.py, optiondict.py and sqlmap.conf and got rid of --union-use switch Bernardo Damele 2010-10-25 15:54:45 +00:00
  • 378653a1ec added IDS payload testing Miroslav Stampar 2010-10-25 15:37:43 +00:00
  • bdb9c37a7e Cosmetics Bernardo Damele 2010-10-25 15:17:59 +00:00
  • 215175e3b7 Minor code adjustments Bernardo Damele 2010-10-25 14:11:47 +00:00
  • 24c5d7b313 code refactoring Miroslav Stampar 2010-10-25 14:06:56 +00:00
  • 9c94a233a1 conf.md5hash thrown out Miroslav Stampar 2010-10-25 13:52:21 +00:00
  • 9a3879feba keeping things neat and tidy Miroslav Stampar 2010-10-25 12:33:49 +00:00
  • 32728d14b7 fix for --union-use with --error-test Miroslav Stampar 2010-10-25 12:25:29 +00:00
  • 71543092b7 update regarding comparison engine Miroslav Stampar 2010-10-25 12:00:59 +00:00
  • 8df7c88174 implementation of a new dynamic content removal engine Miroslav Stampar 2010-10-25 10:41:37 +00:00
  • db260c44d3 minor update Miroslav Stampar 2010-10-24 22:25:05 +00:00
  • aa931efd4d several MySQL fixes/enhancements pointed out by Anton Mogilin Miroslav Stampar 2010-10-24 22:05:14 +00:00
  • 52f910f752 added --beep (tested on Windows and Linux; for now turned off) switch Miroslav Stampar 2010-10-23 09:38:46 +00:00
  • c5fb4edf3e update of THANKS Miroslav Stampar 2010-10-23 09:25:34 +00:00
  • 68d39d5976 minor minor fix Miroslav Stampar 2010-10-23 09:12:08 +00:00
  • 32a4350779 update for MaxDB Miroslav Stampar 2010-10-23 09:03:59 +00:00
  • 98f5586b87 minor update Miroslav Stampar 2010-10-23 08:05:24 +00:00
  • f8850e3f41 update (xml fix and refactoring) Miroslav Stampar 2010-10-23 07:44:34 +00:00
  • a7a53af924 update for Sybase Miroslav Stampar 2010-10-23 07:37:43 +00:00
  • a8e42a4f2b bug fix Miroslav Stampar 2010-10-23 06:42:21 +00:00
  • f1e2c1867f Cosmetics Miroslav Stampar 2010-10-22 21:13:12 +00:00
  • 2194d47782 setting conf.threads when -o switch is used Miroslav Stampar 2010-10-22 19:10:45 +00:00
  • e4089e86e8 new tamper script (reference: http://hakipedia.com/index.php/SQL_Injection) Miroslav Stampar 2010-10-22 18:57:04 +00:00
  • e6e48c5556 fix for Bug #204 Miroslav Stampar 2010-10-22 18:23:46 +00:00
  • 1288def3b7 Cosmetics Bernardo Damele 2010-10-22 14:23:14 +00:00
  • dec4d858b3 fix for Bug #207 Miroslav Stampar 2010-10-22 14:01:48 +00:00
  • 1b2ec826bf misc fixes regarding new query retrieval format Miroslav Stampar 2010-10-21 23:17:06 +00:00
  • a9b50a1e82 minor fix Miroslav Stampar 2010-10-21 23:09:57 +00:00
  • 2de3081b50 minor update Miroslav Stampar 2010-10-21 23:03:42 +00:00
  • 24e4429bf6 or better yet, there is no need for _ or *args on getPrivileges (tried with SQLite and MSSql which crashed) Miroslav Stampar 2010-10-21 13:31:06 +00:00
  • fe3967bdec fix for --privileges (on MSSql --privileges returned exception) Miroslav Stampar 2010-10-21 13:28:29 +00:00
  • bc79eec702 removed queriesfile.py, implemented XMLObject approach (still shell.py and udf.py TODO) Miroslav Stampar 2010-10-21 13:13:12 +00:00
  • be443c6947 refactoring regarding __START__,... Miroslav Stampar 2010-10-21 09:51:07 +00:00
  • 2668c95ef4 added default HTTP version used by httplib and urllib2 Miroslav Stampar 2010-10-21 09:10:07 +00:00
  • 7f1aa3b94f Removed unused imports Bernardo Damele 2010-10-20 22:48:51 +00:00
  • c60edf7c17 Minor cosmetics Bernardo Damele 2010-10-20 22:43:02 +00:00
  • 526694c80c Minor fix Bernardo Damele 2010-10-20 22:24:06 +00:00
  • e5485a9958 Updated doc Bernardo Damele 2010-10-20 22:14:52 +00:00
  • d8bfa76dca Minor possible bug fix Bernardo Damele 2010-10-20 22:12:53 +00:00
  • e73e06069b Minor code refactoring Bernardo Damele 2010-10-20 22:09:03 +00:00
  • 862cc9ac53 Minor cosmetic fixes Bernardo Damele 2010-10-20 21:58:33 +00:00
  • 22ed09a358 Updated Bernardo Damele 2010-10-20 21:52:33 +00:00
  • 3b5c5cc457 Minor possible bug fix Bernardo Damele 2010-10-20 21:49:05 +00:00
  • f95098693f Removed unused functions Bernardo Damele 2010-10-20 21:16:28 +00:00
  • 430bb7478f Minor bug fix Bernardo Damele 2010-10-20 21:15:06 +00:00
  • 34f70657ee fix for NULL values Miroslav Stampar 2010-10-20 10:29:18 +00:00