[sqlmap-users] sqlmap- error
Brought to you by:
inquisb
Menu
▾
▴
[sqlmap-users] sqlmap- error
|
From: B. <sto...@qq...> - 2014-05-17 08:20:45
|
Hi friends, I have use sqlmap . with the latest version . it occur the problem . Could you can fix this for me? thanks best regards Robert [16:17:09] [CRITICAL] unhandled exception in sqlmap/1.0-dev-c181e90, retry your run with the latest development version from the GitHub repository. If the exception persists, please send by e-mail to 'sql...@li...' or open a new issue at 'https://github.com/sqlmapproject/sqlmap/issues/new' with the following text and any information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you. sqlmap version: 1.0-dev-c181e90 Python version: 2.7.3 Operating system: posix Command line: ./sqlmap.py -u ******************************************************************* -p id --dbms=MySQL --risk=3 --level=5 -a Technique: UNION Back-end DBMS: MySQL (fingerprinted) Traceback (most recent call last): File "./sqlmap.py", line 99, in main start() File "/pentest1/database/sqlmap/sqlmap-dev/lib/controller/controller.py", line 585, in start action() File "/pentest1/database/sqlmap/sqlmap-dev/lib/controller/action.py", line 130, in action conf.dbmsHandler.dumpAll() File "/pentest1/database/sqlmap/sqlmap-dev/plugins/generic/entries.py", line 367, in dumpAll self.getTables() File "/pentest1/database/sqlmap/sqlmap-dev/plugins/generic/databases.py", line 215, in getTables dbs = self.getDbs() File "/pentest1/database/sqlmap/sqlmap-dev/plugins/generic/databases.py", line 175, in getDbs kb.data.cachedDbs = list(set(kb.data.cachedDbs)) TypeError: unhashable type: 'list' ------------------ ------------------ 原始邮件 ------------------ 发件人: "Miroslav Stampar";<mir...@gm...>; 发送时间: 2014年5月13日(星期二) 晚上9:40 收件人: "Bob"<sto...@qq...>; 抄送: "SqlMap List"<sql...@li...>; 主题: Re: 回复: [sqlmap-users] sqlmap-user event not found error Hi Bob. It's a bash problem (reproduced it this moment). Using single quotes (') instead of double quotes (") should solve this issue. Kind regards, Miroslav Stampar On Tue, May 13, 2014 at 5:05 AM, Bob <sto...@qq...> wrote: Hi Miroslav, Thanks for your email, but still the same after i tried sqlmap -u ".." sqlmap -u "http://www.xxxx.com/xxx/xxxx/default!search.do?keyword=&toUrl=http%3A%2F%2Fwww.diylooks.com%2Foem%2Fproduct%2Fdefault%21view.do%3Fid%3D270549&qty=1&input_mailbar=98%22%20OR%20%2298%22%3D%2298&input_mail=aa" bash: !search.do?keyword=: event not found best regards bob ------------------ ------------------ 原始邮件 ------------------ 发件人: "Miroslav Stampar";<mir...@gm...>; 发送时间: 2014年5月11日(星期天) 晚上10:38 收件人: "Bob"<sto...@qq...>; 抄送: "SqlMap List"<sql...@li...>; 主题: Re: [sqlmap-users] sqlmap-user event not found error Hi Bob. Please enclose the url part with quotes (e.g. ./sqlmap.py -u "..." ...) Kind regards, Miroslav Stampar On Sun, May 11, 2014 at 8:32 AM, Bob <sto...@qq...> wrote: Hi friend, I have problem with ! inside URL . /sqlmap.py -u http://www.xxxx.com/xxx/xxxx/default!search.do?keyword=&toUrl=http%3A%2F%2Fwww.diylooks.com%2Foem%2Fproduct%2Fdefault%21view.do%3Fid%3D270549&qty=1&input_mailbar=98%22%20OR%20%2298%22%3D%2298&input_mail= -p input_mailbar --dbms=MySQL --risk=3 --level=5 -o --param-del= bash: !search.do?keyword=: event not found How should i do ? thanks bob ------------------ ------------------ Original ------------------ From: "Miroslav Stampar";<mir...@gm...>; Date: Fri, May 31, 2013 03:00 AM To: "Bob"<sto...@qq...>; Cc: "sqlmap-users"<sql...@li...>; Subject: Re: [sqlmap-users] sqlmap-users Digest, Vol 31, Issue 1 Hi. Have you been able to retrieve user names normally? I mean, were they normally been displayed in console output? Also, is boolean technique the only one detected by sqlmap in your case (or maybe UNION)? Kind regards, Miroslav Stampar On Thu, May 30, 2013 at 4:57 PM, Bob <sto...@qq...> wrote: Hi friend, Could you help me with this bug ? [22:54:12] [CRITICAL] unhandled exception in sqlmap/1.0-dev, retry your run with the latest development version from the GitHub repository. If the exception persists, please send by e-mail to 'sql...@li...' or open a new issue at 'https://github.com/sqlmapproject/sqlmap/issues/new' with the following text and any information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you. sqlmap version: 1.0-dev Python version: 2.7.3 Operating system: posix Command line: ./sqlmap -u *********************************************** --data=__VIEWSTATE=%2FwEPDwUJNzcyNzA5MTcxD2QWAmYPZBYCAgMPZBYCAgUPZBYCAg8PPCsAEQIADxYEHgtfIURhdGFCb3VuZGceC18hSXRlbUNvdW50ZmQBEBYAFgAWAGQYAQUaY3RsMDAkTWFpbkNvbnRlbnQkRGdSZXN1bHQPPCsADAEIZmTqSkxVHfCvk8H514IG2vidRqlanHHD7kZRl389CeOupw%3D%3D&__EVENTVALIDATION=%2FwEWCAK%2BjdvyCQLM8NjFBQKgo%2F%2FzCgKumJP3BALizcLsAwL%2Bq8zvCgKsq6%2F4DwLTytO4BPwtq4Qe7jKJMNFTIKI0vDR6PinuEV%2BLf13FWcmth6Av&ctl00%24MainContent%24TxtContCode=ZAP&ctl00%24MainContent%24TxtItemCode=ZAP&ctl00%24MainContent%24BtnFind=%E6%9F%A5%E8%AF%A2&ctl00%24MainContent%24TxtTestCustname=ZAP&ctl00%24MainContent%24TxtItemName=ZAP&ctl00%24MainContent%24TxtCheckManuCrock=ZAP&ctl00%24MainContent%24TxtCheckNo=ZAP -p ctl00%24MainContent%24TxtContCode -o --level 3 --risk 5 --dbms=Microsoft SQL Server --users --passwords Technique: BOOLEAN Back-end DBMS: Microsoft SQL Server (fingerprinted) Traceback (most recent call last): File "./sqlmap", line 87, in main start() File "/usr/share/sqlmap/lib/controller/controller.py", line 572, in start action() File "/usr/share/sqlmap/lib/controller/action.py", line 81, in action conf.dbmsHandler.getPasswordHashes(), "password hash", CONTENT_TYPE.PASSWORDS) File "/usr/share/sqlmap/plugins/generic/users.py", line 243, in getPasswordHashes if user in retrievedUsers: TypeError: unhashable type: 'list' [*] shutting down at 22:54:12 Thanks BOB ------------------ Original ------------------ From: "sqlmap-users-request"<sql...@li...>; Date: May 29, 2013 To: "sqlmap-users"<sql...@li...>; Subject: sqlmap-users Digest, Vol 31, Issue 1 Send sqlmap-users mailing list submissions to sql...@li... To subscribe or unsubscribe via the World Wide Web, visit https://lists.sourceforge.net/lists/listinfo/sqlmap-users or, via email, send a message with subject or body 'help' to sql...@li... You can reach the person managing the list at sql...@li... When replying, please edit your Subject line so it is more specific than "Re: Contents of sqlmap-users digest..." Today's Topics: 1. Re: Feature request (David Guimaraes) 2. Re: --load-cookies (Dirk Wetter) 3. Re: --load-cookies (Miroslav Stampar) 4. Re: Patch for /task/<task_id>/delete in clean_filesystem (Miroslav Stampar) 5. Re: --load-cookies (Dirk Wetter) 6. --host parameter (co...@5i...) 7. Sqlmap and direct connect error (???????? ??????) 8. Re: --host parameter (Miroslav Stampar) 9. Re: Sqlmap and direct connect error (Miroslav Stampar) 10. feature request: offline mode for --dns-domain? (buawig) 11. feature request: --dns-domain for non-root users (--dns-port) (buawig) 12. Domain credentials (Brian Milliron) 13. Re: Domain credentials (Brandon Perry) 14. Re: feature request: offline mode for --dns-domain? (Miroslav Stampar) 15. Re: Domain credentials (Miroslav Stampar) 16. Re: feature request: fetch DNS queries from DNS server via HTTP (buawig) 17. Re: feature request: fetch DNS queries from DNS server via HTTP (Miroslav Stampar) 18. MySQL error based technique bug (Konrads Smelkovs) 19. Re: MySQL error based technique bug (Miroslav Stampar) 20. SQLmap crashing (Phillip Wylie) 21. Re: SQLmap crashing (Miroslav Stampar) 22. Custom injection payload in POST (Marcell Fodor) 23. Re: SQLmap crashing (Miroslav Stampar) 24. I got error on windows (warezhacking) 25. Appending to a dump (Stephen Shkardoon) 26. Re: Appending to a dump (Miroslav Stampar) 27. Re: Appending to a dump (Stephen Shkardoon) 28. Re: Appending to a dump (Miroslav Stampar) 29. --ignore-404 ? (buawig) 30. PostgreSQL: substr('string', 1, 1) vs. substring('string' from 1 for 1) (buawig) 31. Re: PostgreSQL: substr('string', 1, 1) vs. substring('string' from 1 for 1) (Miroslav Stampar) 32. Re: PostgreSQL: substr('string', 1, 1) vs. substring('string' from 1 for 1) (Miroslav Stampar) 33. Re: --ignore-404 ? (Miroslav Stampar) 34. BUG...!!!! o.O (Isai Ofir Juarez Contreras) 35. Re: BUG...!!!! o.O (Miroslav Stampar) 36. gun...@gm... wants to follow you. Accept? (gun...@gm...) 37. Direct access to mysql database (Marcell Fodor) 38. Re: Direct access to mysql database (Miroslav Stampar) 39. ? Sqlmap Users, Marco Mirandola ti ha inviato un messaggio... (Badoo) 40. Not getting any sensitive data from database (Marcell Fodor) 41. Re: Not getting any sensitive data from database (Miroslav Stampar) 42. unhandled exception (kvasilopoulos) 43. [SQLMAP] Unhandled exception for IPv6 (e.n...@st...) 44. Re: [SQLMAP] Unhandled exception for IPv6 (Miroslav Stampar) 45. Re: unhandled exception (Miroslav Stampar) 46. Passing SOAPAction in --header (Brandon Perry) 47. Re: Passing SOAPAction in --header (Miroslav Stampar) 48. Re: [SQLMAP] Unhandled exception for IPv6 (Miroslav Stampar) 49. Blind SQL Injection question (Guy Dufour) 50. Re: Blind SQL Injection question (Chris Oakley) 51. Re: Passing SOAPAction in --header (Brandon Perry) 52. Re: Passing SOAPAction in --header (Brandon Perry) 53. Deploy&Create SSH/tunnel with compromised MSSQL server (Alok Kumar) 54. Re: Deploy&Create SSH/tunnel with compromised MSSQL server (Brandon Perry) 55. Re: Deploy&Create SSH/tunnel with compromised MSSQL server (Alok Kumar) 56. Re: Deploy&Create SSH/tunnel with compromised MSSQL server (Brandon Perry) 57. SQLMAP Bug (Joe O'Hara) 58. Re: SQLMAP Bug (Miroslav Stampar) 59. [CRITICAL] (Thai Thao) 60. Re: [CRITICAL] (Miroslav Stampar) 61. Providing multiple dbms (Sebastian Nerz) 62. Re: Providing multiple dbms (Miroslav Stampar) ---------------------------------------------------------------------- Message: 1 Date: Sat, 13 Apr 2013 21:40:39 -0300 From: David Guimaraes <sk...@gm...> Subject: Re: [sqlmap-users] Feature request To: Miroslav Stampar <mir...@gm...> Cc: SqlMap List <sql...@li...> Message-ID: <CAJ...@ma...> Content-Type: text/plain; charset="iso-8859-1" Good question Miroslav.. I tried to think in something that can be implemented without ruin sqlmap query schema, but I could not come to any conclusion... =( The thing is, sqlsus use a different approch to dump the data, making this kind of thing possible... The solution that I found in this particular scenario is to use sqlsus, unfortunately... Regards. David On Mon, Apr 1, 2013 at 6:35 PM, Miroslav Stampar <mir...@gm... > wrote: > Hi David. > > And what do you recommend to be done in case of query with length > > max_inj_length? > > Kind regards, > Miroslav Stampar > On Apr 1, 2013 11:14 PM, "David Guimaraes" <sk...@gm...> wrote: > >> Hi, I am trying to perform sql injection on a web site but I can not get >> successful due to a size limitation on the query sent to the server. The >> server is limiting the size of query in 512 bytes only and sqlmap do not >> have any customization that allows me to bypass this restriction like >> sqlsus "max_inj_length" parameter. Sqlsus has a feature called "autoconf" >> that measure the permited query size. >> >> There is some chance to put this kind of feature in sqlmap? >> >> Thanks. >> >> -- >> David Gomes Guimar?es >> >> >> ------------------------------------------------------------------------------ >> Own the Future-IntelLevel Up Game Demo Contest 2013 >> Rise to greatness in Intel's independent game demo contest. >> Compete for recognition, cash, and the chance to get your game >> on Steam. $5K grand prize plus 10 genre and skill prizes. >> Submit your demo by 6/6/13. http://p.sf.net/sfu/intel_levelupd2d >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> -- David Gomes Guimar?es -------------- next part -------------- An HTML attachment was scrubbed... ------------------------------ Message: 2 Date: Mon, 15 Apr 2013 11:36:37 +0200 From: Dirk Wetter <sp...@dr...> Subject: Re: [sqlmap-users] --load-cookies To: Miroslav Stampar <mir...@gm...> Cc: SqlMap List <sql...@li...> Message-ID: <516...@dr...> Content-Type: text/plain; charset=ISO-8859-1 On 04/14/2013 01:14 AM, Miroslav Stampar wrote: > Nevertheless, with the latest commit that check should be "neutralized" now. Could you please retry it now? thx, Miroslav. I tried (b6fee63) but this time the cookie parser lib hiccups, using the same file: /usr/lib64/python2.7/_MozillaCookieJar.py:109: UserWarning: cookielib bug! Traceback (most recent call last): File "/usr/lib64/python2.7/_MozillaCookieJar.py", line 82, in _really_load assert domain_specified == initial_dot AssertionError _warn_unhandled_exception() [11:13:26] [CRITICAL] there was a problem loading cookies file ('invalid Netscape format cookies file '/tmp/sqlmapcj-pbP7P1': '<FQDN>\tTRUE\t<PATH>\tTRUE\t9999999999\tJSESSIONID\t6ADFAA167AA89CF993061E5CACEF46C9'') the 999.. looks strange to me. > > > On Sun, Apr 14, 2013 at 12:59 AM, Miroslav Stampar <mir...@gm... <mailto:mir...@gm...>> wrote: > > Hi Dirk. > > Well, I would say that you have an expired cookie. Do you see that value 0? That value should be a valid UNIX time representing time of cookie expiration. Also, I've just tested that cookie of yours and sqlmap says: "[WARNING] cookie '....' has expired" > that's true but IMO 0 represents just a session cookie. Example: prompt% wget -q -O /dev/null --keep-session-cookies --save-cookies=/dev/stdout bing.com # HTTP cookie file. # Generated by Wget on 2013-04-15 11:23:13. # Edit at your own risk. .bing.com TRUE / FALSE 1429089794 SRCHUSR AUTOREDIR=0&GEOVAR=&DOB=20130415 .bing.com TRUE / FALSE 1429089794 SRCHD D=2781203&MS=2781203&AF=NOFORM .bing.com TRUE / FALSE 1429089794 OrigMUID 333995A69E06630B2EB491169F016314%2cfc3b876c239e43d4bfc1544927289abe .bing.com TRUE / FALSE 1429089794 MUID 333995A69E06630B2EB491169F016314 .bing.com TRUE / FALSE 0 _SS SID=B954CB7EDF8643CABAD8013F27A241E7 .bing.com TRUE / FALSE 0 _HOP .bing.com TRUE / FALSE 0 _FS NU=1 .bing.com TRUE / FALSE 1429089794 _FP EM=1 www.bing.com FALSE / FALSE 1429089794 SRCHUID V=2&GUID=975091780DFF407DA9DD07139FD97C4D www.bing.com FALSE / FALSE 1429089794 MUIDB 333995A69E06630B2EB491169F016314 prompt% Same parser problem btw if I edit the cookie file and put 1429089794 unix time instead of 0 in there. Ok: With the prev rev ed5599f it reads this file ok (no session cookies but cookies w/ expiration date) and uses the last cookie only for the first 120 tries. Cheers, Dirk > > Kind regards, > Miroslav Stampar > > > On Sat, Apr 13, 2013 at 12:54 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...>> wrote: > > > Hi Miroslav, > > thx for your prompt answer. > > On 04/12/2013 07:45 PM, Miroslav Stampar wrote: > > Hi Dirk. > > > > Could you please get the latest revision and retry it again? > ed5599f: almost the same: with cookie in the header sqlmap takes only this one. > The slight difference seems to be that in the case where I didn't supply a cookie > sqlmap doesn't use any cookie at all, i.e. now not the one from the server anymore. > > > > There was a situation where info messages have been wrongly written that original response contained Set-Cookie in situations like yours. > > > > In case that everything stays as it is, I'll need to ask you to provide more details. For example, cookie file would be great. > > sure, here you go: > > --snip > # Netscape HTTP Cookie File > <FQDN> \t FALSE \t <path> \t TRUE \t 0 \t JSESSIONID \t <Cookie> > [..] > --snap > > They are all session cookies. For easier reading here I put some blanks in the line > above, in "cookie-file" there aren't any though. Cookies were generated with > stompy and a shell script (looks he same as with > wget -S -O /dev/null --keep-session-cookies --save-cookies=<file> <URL>) > > Again: sqlmap doesn't hiccup/complain while eating my cookies file ;-) > > > > > Also, please make sure that the cookie file contains proper cookie(s) - domain name should be the same as a domain of target, cookie needs to have a proper valid time, etc. > > see above. > > Cheers, > > Dirk > > > > > > > On Fri, Apr 12, 2013 at 4:50 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>> wrote: > > > > Hi Miroslav, > > > > yes unfortunately. > > > > If I omit the cookie line in the request header completely, sqlmap > > seems to take the first cookie issued by the server with set-cookie (and > > put's it silently in). > > > > Cheers, > > > > Dirk > > > > > > > > On 04/12/2013 03:24 PM, Miroslav Stampar wrote: > > > Hi. > > > > > > And this is also happening if you are skipping "Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7" from the original request? > > > > > > Kind regards, > > > Miroslav Stampar > > > > > > > > > On Fri, Apr 12, 2013 at 3:10 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>>> wrote: > > > > > > > > > Hi folks, > > > > > > .... that doesn't work for me. It always uses the cookie supplied > > > (below in $REQUEST, or if I omit the line in $REQUEST the one > > > from the 1st server reply is being used) > > > > > > So what is wrong in here: > > > > > > cd ~/networking/tools/sqlmap/sqlmap-dev1.0-dev-ea12cce > > > ./sqlmap.py --ignore-proxy --force-ssl --beep \ > > > --threads=8 -v 6 --load-cookies=$WD/cookie-file \ > > > --level=2 --risk=2 -r $REQUEST > > > > > > The content of the file $REQUEST is: > > > > > > POST <URL> HTTP/1.1 > > > Host: <HOST> > > > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/525.13 (KHTML, like Gecko) > > > Chrome/0.2.149.6 <http://0.2.149.6> <http://0.2.149.6> <http://0.2.149.6> Safari/525.13 > > > Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 > > > Accept-Language: en-US,en;q=0.5 > > > Accept-Encoding: gzip, deflate > > > Referer: <Referer> > > > Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7 > > > Connection: keep-alive > > > Content-Type: application/x-www-form-urlencoded > > > Content-Length: 67 > > > > > > <abunchofpostparams> > > > > > > > > > No hints that cookie-file is not in correct format (I've been through this, > > > at least I think I so ;) ). > > > > > > Any insight would be much appreciated. > > > > > > > > > Cheers, > > > > > > Dirk > > > > > > > > > ------------------------------------------------------------------------------ > > > Precog is a next-generation analytics platform capable of advanced > > > analytics on semi-structured data. The platform includes APIs for building > > > apps and a phenomenal toolset for data science. Developers can use > > > our toolset for easy data analysis & visualization. Get a free account! > > > http://www2.precog.com/precogplatform/slashdotnewsletter > > > _______________________________________________ > > > sqlmap-users mailing list > > > sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>>> > > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > > > > > > > > -- > > > Miroslav Stampar > > > http://about.me/stamparm > > > > > > > > > > -- > > Miroslav Stampar > > http://about.me/stamparm > > > > > -- > Miroslav Stampar > http://about.me/stamparm > > > > > -- > Miroslav Stampar > http://about.me/stamparm ------------------------------ Message: 3 Date: Mon, 15 Apr 2013 11:45:19 +0200 From: Miroslav Stampar <mir...@gm...> Subject: Re: [sqlmap-users] --load-cookies To: Dirk Wetter <sp...@dr...> Cc: SqlMap List <sql...@li...> Message-ID: <CA+9yoX0yAGFkCiLuycVqdbm8jvnMeEPgJdXoYZi_4NTW-YQo=Q...@ma...> Content-Type: text/plain; charset="iso-8859-1" Hi Dirk. Now that crash should be "patched". Could you please retry it now and say if the latest revision suits your needs? Kind regards, Miroslav Stampar On Mon, Apr 15, 2013 at 11:36 AM, Dirk Wetter <sp...@dr...> wrote: > > > On 04/14/2013 01:14 AM, Miroslav Stampar wrote: > > Nevertheless, with the latest commit that check should be "neutralized" > now. Could you please retry it now? > > thx, Miroslav. I tried (b6fee63) but this time the cookie parser lib > hiccups, using the same file: > > /usr/lib64/python2.7/_MozillaCookieJar.py:109: UserWarning: cookielib bug! > Traceback (most recent call last): > File "/usr/lib64/python2.7/_MozillaCookieJar.py", line 82, in > _really_load > assert domain_specified == initial_dot > AssertionError > > _warn_unhandled_exception() > [11:13:26] [CRITICAL] there was a problem loading cookies file ('invalid > Netscape format cookies file '/tmp/sqlmapcj-pbP7P1': > '<FQDN>\tTRUE\t<PATH>\tTRUE\t9999999999\tJSESSIONID\t6ADFAA167AA89CF993061E5CACEF46C9'') > > the 999.. looks strange to me. > > > > > > > On Sun, Apr 14, 2013 at 12:59 AM, Miroslav Stampar < > mir...@gm... <mailto:mir...@gm...>> wrote: > > > > Hi Dirk. > > > > Well, I would say that you have an expired cookie. Do you see that > value 0? That value should be a valid UNIX time representing time of cookie > expiration. Also, I've just tested that cookie of yours and sqlmap says: > "[WARNING] cookie '....' has expired" > > > > that's true but IMO 0 represents just a session cookie. Example: > > prompt% wget -q -O /dev/null --keep-session-cookies > --save-cookies=/dev/stdout bing.com > # HTTP cookie file. > # Generated by Wget on 2013-04-15 11:23:13. > # Edit at your own risk. > > .bing.com TRUE / FALSE 1429089794 SRCHUSR > AUTOREDIR=0&GEOVAR=&DOB=20130415 > .bing.com TRUE / FALSE 1429089794 SRCHD > D=2781203&MS=2781203&AF=NOFORM > .bing.com TRUE / FALSE 1429089794 OrigMUID > 333995A69E06630B2EB491169F016314%2cfc3b876c239e43d4bfc1544927289abe > .bing.com TRUE / FALSE 1429089794 MUID > 333995A69E06630B2EB491169F016314 > .bing.com TRUE / FALSE 0 _SS > SID=B954CB7EDF8643CABAD8013F27A241E7 > .bing.com TRUE / FALSE 0 _HOP > .bing.com TRUE / FALSE 0 _FS NU=1 > .bing.com TRUE / FALSE 1429089794 _FP EM=1 > www.bing.com FALSE / FALSE 1429089794 SRCHUID > V=2&GUID=975091780DFF407DA9DD07139FD97C4D > www.bing.com FALSE / FALSE 1429089794 MUIDB > 333995A69E06630B2EB491169F016314 > > prompt% > > Same parser problem btw if I edit the cookie file and put 1429089794 unix > time instead of 0 in there. > > Ok: With the prev rev ed5599f it reads this file ok (no session cookies > but cookies w/ expiration date) and uses the last > cookie only for the first 120 tries. > > Cheers, Dirk > > > > > > Kind regards, > > Miroslav Stampar > > > > > > On Sat, Apr 13, 2013 at 12:54 PM, Dirk Wetter <sp...@dr...<mailto: > sp...@dr...>> wrote: > > > > > > Hi Miroslav, > > > > thx for your prompt answer. > > > > On 04/12/2013 07:45 PM, Miroslav Stampar wrote: > > > Hi Dirk. > > > > > > Could you please get the latest revision and retry it again? > > ed5599f: almost the same: with cookie in the header sqlmap takes > only this one. > > The slight difference seems to be that in the case where I > didn't supply a cookie > > sqlmap doesn't use any cookie at all, i.e. now not the one from > the server anymore. > > > > > > There was a situation where info messages have been wrongly > written that original response contained Set-Cookie in situations like > yours. > > > > > > In case that everything stays as it is, I'll need to ask you > to provide more details. For example, cookie file would be great. > > > > sure, here you go: > > > > --snip > > # Netscape HTTP Cookie File > > <FQDN> \t FALSE \t <path> \t TRUE \t 0 \t JSESSIONID > \t <Cookie> > > [..] > > --snap > > > > They are all session cookies. For easier reading here I put some > blanks in the line > > above, in "cookie-file" there aren't any though. Cookies were > generated with > > stompy and a shell script (looks he same as with > > wget -S -O /dev/null --keep-session-cookies > --save-cookies=<file> <URL>) > > > > Again: sqlmap doesn't hiccup/complain while eating my cookies > file ;-) > > > > > > > > Also, please make sure that the cookie file contains proper > cookie(s) - domain name should be the same as a domain of target, cookie > needs to have a proper valid time, etc. > > > > see above. > > > > Cheers, > > > > Dirk > > > > > > > > > > > On Fri, Apr 12, 2013 at 4:50 PM, Dirk Wetter < > sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr...<mailto: > sp...@dr...>>> wrote: > > > > > > Hi Miroslav, > > > > > > yes unfortunately. > > > > > > If I omit the cookie line in the request header > completely, sqlmap > > > seems to take the first cookie issued by the server with > set-cookie (and > > > put's it silently in). > > > > > > Cheers, > > > > > > Dirk > > > > > > > > > > > > On 04/12/2013 03:24 PM, Miroslav Stampar wrote: > > > > Hi. > > > > > > > > And this is also happening if you are skipping "Cookie: > JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7" from the original request? > > > > > > > > Kind regards, > > > > Miroslav Stampar > > > > > > > > > > > > On Fri, Apr 12, 2013 at 3:10 PM, Dirk Wetter < > sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr...<mailto: > sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> > <mailto:sp...@dr... <mailto:sp...@dr...>>>> wrote: > > > > > > > > > > > > Hi folks, > > > > > > > > .... that doesn't work for me. It always uses the > cookie supplied > > > > (below in $REQUEST, or if I omit the line in > $REQUEST the one > > > > from the 1st server reply is being used) > > > > > > > > So what is wrong in here: > > > > > > > > cd > ~/networking/tools/sqlmap/sqlmap-dev1.0-dev-ea12cce > > > > ./sqlmap.py --ignore-proxy --force-ssl --beep \ > > > > --threads=8 -v 6 --load-cookies=$WD/cookie-file \ > > > > --level=2 --risk=2 -r $REQUEST > > > > > > > > The content of the file $REQUEST is: > > > > > > > > POST <URL> HTTP/1.1 > > > > Host: <HOST> > > > > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; > en-US) AppleWebKit/525.13 (KHTML, like Gecko) > > > > Chrome/0.2.149.6 <http://0.2.149.6> < > http://0.2.149.6> <http://0.2.149.6> Safari/525.13 > > > > Accept: > text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 > > > > Accept-Language: en-US,en;q=0.5 > > > > Accept-Encoding: gzip, deflate > > > > Referer: <Referer> > > > > Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7 > > > > Connection: keep-alive > > > > Content-Type: application/x-www-form-urlencoded > > > > Content-Length: 67 > > > > > > > > <abunchofpostparams> > > > > > > > > > > > > No hints that cookie-file is not in correct format > (I've been through this, > > > > at least I think I so ;) ). > > > > > > > > Any insight would be much appreciated. > > > > > > > > > > > > Cheers, > > > > > > > > Dirk > > > > > > > > > > > > > ------------------------------------------------------------------------------ > > > > Precog is a next-generation analytics platform > capable of advanced > > > > analytics on semi-structured data. The platform > includes APIs for building > > > > apps and a phenomenal toolset for data science. > Developers can use > > > > our toolset for easy data analysis & visualization. > Get a free account! > > > > > http://www2.precog.com/precogplatform/slashdotnewsletter > > > > _______________________________________________ > > > > sqlmap-users mailing list > > > > sql...@li... <mailto: > sql...@li...> <mailto: > sql...@li... <mailto: > sql...@li...>> <mailto: > sql...@li... <mailto: > sql...@li...> <mailto: > sql...@li... <mailto: > sql...@li...>>> > > > > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > > > > > > > > > > > > > -- > > > > Miroslav Stampar > > > > http://about.me/stamparm > > > > > > > > > > > > > > > -- > > > Miroslav Stampar > > > http://about.me/stamparm > > > > > > > > > > -- > > Miroslav Stampar > > http://about.me/stamparm > > > > > > > > > > -- > > Miroslav Stampar > > http://about.me/stamparm > > -- Miroslav Stampar http://about.me/stamparm -------------- next part -------------- An HTML attachment was scrubbed... ------------------------------ Message: 4 Date: Mon, 15 Apr 2013 11:46:21 +0200 From: Miroslav Stampar <mir...@gm...> Subject: Re: [sqlmap-users] Patch for /task/<task_id>/delete in clean_filesystem To: Brandon Perry <bpe...@gm...> Cc: sqlmap users <sql...@li...> Message-ID: <CA+9yoX3RNQDm=PqT...@ma...> Content-Type: text/plain; charset="iso-8859-1" Hi Brandon. Thank you for your patch and find it now included [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/8853e43616e89f26cfd6d1c1540e02ed6b4ca224 On Sat, Apr 13, 2013 at 8:36 PM, Brandon Perry <bpe...@gm...>wrote: > Hi, the attached patch fixes an issue with the /task/<task_id>/delete api > call when self.output_directory is NoneType and clean_system() is called. > > -- > http://volatile-minds.blogspot.com -- blog > http://www.volatileminds.net -- website > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm -------------- next part -------------- An HTML attachment was scrubbed... ------------------------------ Message: 5 Date: Mon, 15 Apr 2013 12:19:13 +0200 From: Dirk Wetter <sp...@dr...> Subject: Re: [sqlmap-users] --load-cookies To: Miroslav Stampar <mir...@gm...> Cc: SqlMap List <sql...@li...> Message-ID: <516...@dr...> Content-Type: text/plain; charset=ISO-8859-1 Hi Miroslav, On 04/15/2013 11:45 AM, Miroslav Stampar wrote: > Hi Dirk. > > Now that crash should be "patched". > > Could you please retry it now and say if the latest revision suits your needs? cool, thx. Works! However (sorry): One needs to omit the cookie in the request header, otherwise it just uses the one supplied by the request. Then: It doesn't change the cookie. Maybe I was interpreting that not correctly but my point was using the load-cookies option to direct sqlmap to change cookies once in a while (whenever that's gonna be). This is to circumvent restrictions one can encounter otherwise.... Cheers, Dirk > > Kind regards, > Miroslav Stampar > > > On Mon, Apr 15, 2013 at 11:36 AM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...>> wrote: > > > > On 04/14/2013 01:14 AM, Miroslav Stampar wrote: > > Nevertheless, with the latest commit that check should be "neutralized" now. Could you please retry it now? > > thx, Miroslav. I tried (b6fee63) but this time the cookie parser lib hiccups, using the same file: > > /usr/lib64/python2.7/_MozillaCookieJar.py:109: UserWarning: cookielib bug! > Traceback (most recent call last): > File "/usr/lib64/python2.7/_MozillaCookieJar.py", line 82, in _really_load > assert domain_specified == initial_dot > AssertionError > > _warn_unhandled_exception() > [11:13:26] [CRITICAL] there was a problem loading cookies file ('invalid Netscape format cookies file '/tmp/sqlmapcj-pbP7P1': '<FQDN>\tTRUE\t<PATH>\tTRUE\t9999999999\tJSESSIONID\t6ADFAA167AA89CF993061E5CACEF46C9'') > > the 999.. looks strange to me. > > > > > > > On Sun, Apr 14, 2013 at 12:59 AM, Miroslav Stampar <mir...@gm... <mailto:mir...@gm...> <mailto:mir...@gm... <mailto:mir...@gm...>>> wrote: > > > > Hi Dirk. > > > > Well, I would say that you have an expired cookie. Do you see that value 0? That value should be a valid UNIX time representing time of cookie expiration. Also, I've just tested that cookie of yours and sqlmap says: "[WARNING] cookie '....' has expired" > > > > that's true but IMO 0 represents just a session cookie. Example: > > prompt% wget -q -O /dev/null --keep-session-cookies --save-cookies=/dev/stdout bing.com <http://bing.com> > # HTTP cookie file. > # Generated by Wget on 2013-04-15 11:23:13. > # Edit at your own risk. > > .bing.com <http://bing.com> TRUE / FALSE 1429089794 SRCHUSR AUTOREDIR=0&GEOVAR=&DOB=20130415 > .bing.com <http://bing.com> TRUE / FALSE 1429089794 SRCHD D=2781203&MS=2781203&AF=NOFORM > .bing.com <http://bing.com> TRUE / FALSE 1429089794 OrigMUID 333995A69E06630B2EB491169F016314%2cfc3b876c239e43d4bfc1544927289abe > .bing.com <http://bing.com> TRUE / FALSE 1429089794 MUID 333995A69E06630B2EB491169F016314 > .bing.com <http://bing.com> TRUE / FALSE 0 _SS SID=B954CB7EDF8643CABAD8013F27A241E7 > .bing.com <http://bing.com> TRUE / FALSE 0 _HOP > .bing.com <http://bing.com> TRUE / FALSE 0 _FS NU=1 > .bing.com <http://bing.com> TRUE / FALSE 1429089794 _FP EM=1 > www.bing.com <http://www.bing.com> FALSE / FALSE 1429089794 SRCHUID V=2&GUID=975091780DFF407DA9DD07139FD97C4D > www.bing.com <http://www.bing.com> FALSE / FALSE 1429089794 MUIDB 333995A69E06630B2EB491169F016314 > > prompt% > > Same parser problem btw if I edit the cookie file and put 1429089794 unix time instead of 0 in there. > > Ok: With the prev rev ed5599f it reads this file ok (no session cookies but cookies w/ expiration date) and uses the last > cookie only for the first 120 tries. > > Cheers, Dirk > > > > > > Kind regards, > > Miroslav Stampar > > > > > > On Sat, Apr 13, 2013 at 12:54 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>> wrote: > > > > > > Hi Miroslav, > > > > thx for your prompt answer. > > > > On 04/12/2013 07:45 PM, Miroslav Stampar wrote: > > > Hi Dirk. > > > > > > Could you please get the latest revision and retry it again? > > ed5599f: almost the same: with cookie in the header sqlmap takes only this one. > > The slight difference seems to be that in the case where I didn't supply a cookie > > sqlmap doesn't use any cookie at all, i.e. now not the one from the server anymore. > > > > > > There was a situation where info messages have been wrongly written that original response contained Set-Cookie in situations like yours. > > > > > > In case that everything stays as it is, I'll need to ask you to provide more details. For example, cookie file would be great. > > > > sure, here you go: > > > > --snip > > # Netscape HTTP Cookie File > > <FQDN> \t FALSE \t <path> \t TRUE \t 0 \t JSESSIONID \t <Cookie> > > [..] > > --snap > > > > They are all session cookies. For easier reading here I put some blanks in the line > > above, in "cookie-file" there aren't any though. Cookies were generated with > > stompy and a shell script (looks he same as with > > wget -S -O /dev/null --keep-session-cookies --save-cookies=<file> <URL>) > > > > Again: sqlmap doesn't hiccup/complain while eating my cookies file ;-) > > > > > > > > Also, please make sure that the cookie file contains proper cookie(s) - domain name should be the same as a domain of target, cookie needs to have a proper valid time, etc. > > > > see above. > > > > Cheers, > > > > Dirk > > > > > > > > > > > On Fri, Apr 12, 2013 at 4:50 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>>> wrote: > > > > > > Hi Miroslav, > > > > > > yes unfortunately. > > > > > > If I omit the cookie line in the request header completely, sqlmap > > > seems to take the first cookie issued by the server with set-cookie (and > > > put's it silently in). > > > > > > Cheers, > > > > > > Dirk > > > > > > > > > > > > On 04/12/2013 03:24 PM, Miroslav Stampar wrote: > > > > Hi. > > > > > > > > And this is also happening if you are skipping "Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7" from the original request? > > > > > > > > Kind regards, > > > > Miroslav Stampar > > > > > > > > > > > > On Fri, Apr 12, 2013 at 3:10 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>>>> wrote: > > > > > > > > > > > > Hi folks, > > > > > > > > .... that doesn't work for me. It always uses the cookie supplied > > > > (below in $REQUEST, or if I omit the line in $REQUEST the one > > > > from the 1st server reply is being used) > > > > > > > > So what is wrong in here: > > > > > > > > cd ~/networking/tools/sqlmap/sqlmap-dev1.0-dev-ea12cce > > > > ./sqlmap.py --ignore-proxy --force-ssl --beep \ > > > > --threads=8 -v 6 --load-cookies=$WD/cookie-file \ > > > > --level=2 --risk=2 -r $REQUEST > > > > > > > > The content of the file $REQUEST is: > > > > > > > > POST <URL> HTTP/1.1 > > > > Host: <HOST> > > > > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/525.13 (KHTML, like Gecko) > > > > Chrome/0.2.149.6 <http://0.2.149.6> <http://0.2.149.6> <http://0.2.149.6> <http://0.2.149.6> Safari/525.13 > > > > Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 > > > > Accept-Language: en-US,en;q=0.5 > > > > Accept-Encoding: gzip, deflate > > > > Referer: <Referer> > > > > Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7 > > > > Connection: keep-alive > > > > Content-Type: application/x-www-form-urlencoded > > > > Content-Length: 67 > > > > > > > > <abunchofpostparams> > > > > > > > > > > > > No hints that cookie-file is not in correct format (I've been through this, > > > > at least I think I so ;) ). > > > > > > > > Any insight would be much appreciated. > > > > > > > > > > > > Cheers, > > > > > > > > Dirk > > > > > > > > > > > > ------------------------------------------------------------------------------ > > > > Precog is a next-generation analytics platform capable of advanced > > > > analytics on semi-structured data. The platform includes APIs for building > > > > apps and a phenomenal toolset for data science. Developers can use > > > > our toolset for easy data analysis & visualization. Get a free account! > > > > http://www2.precog.com/precogplatform/slashdotnewsletter > > > > _______________________________________________ > > > > sqlmap-users mailing list > > > > sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>>>> > > > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > > > > > > > > > > > > > -- > > > > Miroslav Stampar > > > > http://about.me/stamparm > > > > > > > > > > > > > > > -- > > > Miroslav Stampar > > > http://about.me/stamparm > > > > > > > > > > -- > > Miroslav Stampar > > http://about.me/stamparm > > > > > > > > > > -- > > Miroslav Stampar > > http://about.me/stamparm > > > > > -- > Miroslav Stampar > http://about.me/stamparm ------------------------------ Message: 6 Date: Mon, 15 Apr 2013 14:01:01 -0700 From: <co...@5i...> Subject: [sqlmap-users] --host parameter To: sql...@li... Message-ID: <201...@em...> Content-Type: text/plain; charset="utf-8" Hello, the --host doesn't work as expected, or I am doing something wrong: this works as expected: ./sqlmap.py --url='http://i.csland.ro/index.php?id=0' sqlmap/1.0-dev-840ee26 - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program [*] starting at 23:57:15 [23:57:15] [INFO] testing connection to the target URL [23:57:15] [INFO] heuristics detected web page charset 'ascii' [23:57:15] [INFO] testing if the target URL is stable. This can take a couple of seconds [23:57:16] [INFO] target URL is stable [23:57:16] [INFO] testing if GET parameter 'id' is dynamic [23:57:16] [INFO] confirming that GET parameter 'id' is dynamic [23:57:16] [INFO] GET parameter 'id' is dynamic [23:57:16] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL') [23:57:16] [INFO] testing for SQL injection on GET parameter 'id' .... this doesn't work as expected: ./sqlmap.py --host='i.csland.ro' --url='http://188.240.236.15/index.php?id=0' sqlmap/1.0-dev-840ee26 - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program [*] starting at 23:58:03 [23:58:03] [INFO] testing connection to the target URL [23:58:03] [CRITICAL] page not found (404) it is not recommended to continue in this kind of cases. Do you want to quit and make sure that everything is set up properly? [Y/n] [23:58:05] [WARNING] HTTP error codes detected during run: ............ Of course i.csland.ro resolves to 188.240.236.15. Any idea? Thanks. ------------------------------ Message: 7 Date: Tue, 16 Apr 2013 09:12:05 +1100 From: ???????? ?????? <vo...@s2...> Subject: [sqlmap-users] Sqlmap and direct connect error To: sql...@li... Message-ID: <C59...@s2...> Content-Type: text/plain; charset=us-ascii Hi! This bug detected if add direct param. python sqlmap.py -d "mysql://yakimov:pass@127.0.0.1:3306/tech" -u "http://s25.ru/index.phtml?center=7&id=186" --random-agent --tor --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables --exclude-sysdbs [01:48:28] [CRITICAL] unhandled exception in sqlmap/1.0-dev-de99717, retry your run with the latest development version from the GitHub repository. If the exception persists, please send by e-mail to 'sql...@li...' or open a new issue at 'https://github.com/sqlmapproject/sqlmap/issues/new' with the following text and any information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you. sqlmap version: 1.0-dev-de99717 Python version: 2.7.3 Operating system: posix Command line: sqlmap.py -d **************************************************** -u http://s25.ru/index.phtml?center=7&id=186 --random-agent --tor --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables --exclude-sysdbs Technique: None Back-end DBMS: MySQL (identified) Traceback (most recent call last): File "sqlmap.py", line 87, in main start() File "/home/yakimov/sqlmap/lib/controller/controller.py", line 248, in start action() File "/home/yakimov/sqlmap/lib/controller/action.py", line 32, in action setHandler() File "/home/yakimov/sqlmap/lib/controller/handler.py", line 95, in setHandler conf.dbmsConnector.connect() File "/home/yakimov/sqlmap/plugins/dbms/mysql/connector.py", line 38, in connect self.connector = pymysql.connect(host=self.hostname, user=self.user, passwd=self.password, db=self.db, port=self.port, connect_timeout=conf.timeout, use_unicode=True) File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/__init__.py", line 93, in Connect return Connection(*args, **kwargs) File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", line 584, in __init__ self._connect() File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", line 739, in _connect sock.connect((self.host, self.port)) File "/home/yakimov/sqlmap/thirdparty/socks/socks.py", line 365, in connect raise GeneralProxyError((5, _generalerrors[5])) GeneralProxyError: (5, 'bad input') ------------------------------ Message: 8 Date: Tue, 16 Apr 2013 14:19:18 +0200 From: Miroslav Stampar <mir...@gm...> Subject: Re: [sqlmap-users] --host parameter To: co...@5i... Cc: SqlMap List <sql...@li...> Message-ID: <CA+...@ma...> Content-Type: text/plain; charset="iso-8859-1" Hi. Thank you for your report and find it fixed with the latest commit [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/6fed1921edf1baaf23a54fbe340ff3781fc05c86 On Mon, Apr 15, 2013 at 11:01 PM, <co...@5i...> wrote: > Hello, > the --host doesn't work as expected, or I am doing something wrong: > > > this works as expected: > > ./sqlmap.py --url='http://i.csland.ro/index.php?id=0' > > sqlmap/1.0-dev-840ee26 - automatic SQL injection and database > takeover tool > http://sqlmap.org > > [!] legal disclaimer: Usage of sqlmap for attacking targets without > prior mutual consent is illegal. It is the end user's responsibility to > obey all applicable local, state and federal laws. Developers assume no > liability and are not responsible for any misuse or damage caused by > this program > > [*] starting at 23:57:15 > > [23:57:15] [INFO] testing connection to the target URL > [23:57:15] [INFO] heuristics detected web page charset 'ascii' > [23:57:15] [INFO] testing if the target URL is stable. This can take a > couple of seconds > [23:57:16] [INFO] target URL is stable > [23:57:16] [INFO] testing if GET parameter 'id' is dynamic > [23:57:16] [INFO] confirming that GET parameter 'id' is dynamic > [23:57:16] [INFO] GET parameter 'id' is dynamic > [23:57:16] [INFO] heuristic (basic) test shows that GET parameter 'id' > might be injectable (possible DBMS: 'MySQL') > [23:57:16] [INFO] testing for SQL injection on GET parameter 'id' > > > .... > > > this doesn't work as expected: > > ./sqlmap.py --host='i.csland.ro' > --url='http://188.240.236.15/index.php?id=0' > > sqlmap/1.0-dev-840ee26 - automatic SQL injection and database > takeover tool > http://sqlmap.org > > [!] legal disclaimer: Usage of sqlmap for attacking targets without > prior mutual consent is illegal. It is the end user's responsibility to > obey all applicable local, state and federal laws. Developers assume no > liability and are not responsible for any misuse or damage caused by > this program > > [*] starting at 23:58:03 > > [23:58:03] [INFO] testing connection to the target URL > [23:58:03] [CRITICAL] page not found (404) > it is not recommended to continue in this kind of cases. Do you want to > quit and make sure that everything is set up properly? [Y/n] > [23:58:05] [WARNING] HTTP error codes detected during run: > > ............ > > > Of course i.csland.ro resolves to 188.240.236.15. Any idea? > > Thanks. > > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar http://about.me/stamparm -------------- next part -------------- An HTML attachment was scrubbed... ------------------------------ Message: 9 Date: Tue, 16 Apr 2013 14:33:33 +0200 From: Miroslav Stampar <mir...@gm...> Subject: Re: [sqlmap-users] Sqlmap and direct connect error To: ???????? ?????? <vo...@s2...> Cc: SqlMap List <sql...@li...> Message-ID: <CA+9yoX0rxH+=vZuYiArFNZhK1xhwos=SNhMqEmFmnCafw-ot=g...@ma...> Content-Type: text/plain; charset="koi8-r" Hi Vladimir. Find it "patched" with the latest commit [1]. Basically, those combinations should not be allowed (-d and --url; -d and --tor; etc.) and now we've added new option validation checks for this kind of cases. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/c73489aff3861f1cac7de41494a296c1095e141a On Tue, Apr 16, 2013 at 12:12 AM, ???????? ?????? <vo...@s2...> wrote: > Hi! > > This bug detected if add direct param. > > python sqlmap.py -d "mysql://yakimov:pass@127.0.0.1:3306/tech" -u " > http://s25.ru/index.phtml?center=7&id=186" --random-agent --tor > --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables > --exclude-sysdbs > > > [01:48:28] [CRITICAL] unhandled exception in sqlmap/1.0-dev-de99717, retry > your run with the latest development version from the GitHub repository. If > the exception persists, please send by e-mail to ' > sql...@li...' or open a new issue at ' > https://github.com/sqlmapproject/sqlmap/issues/new' with the following > text and any information required to reproduce the bug. The developers will > try to reproduce the bug, fix it accordingly and get back to you. > sqlmap version: 1.0-dev-de99717 > Python version: 2.7.3 > Operating system: posix > Command line: sqlmap.py -d > **************************************************** -u > http://s25.ru/index.phtml?center=7&id=186 --random-agent --tor > --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables > --exclude-sysdbs > Technique: None > Back-end DBMS: MySQL (identified) > Traceback (most recent call last): > File "sqlmap.py", line 87, in main > start() > File "/home/yakimov/sqlmap/lib/controller/controller.py", line 248, in > start > action() > File "/home/yakimov/sqlmap/lib/controller/action.py", line 32, in action > setHandler() > File "/home/yakimov/sqlmap/lib/controller/handler.py", line 95, in > setHandler > conf.dbmsConnector.connect() > File "/home/yakimov/sqlmap/plugins/dbms/mysql/connector.py", li... [truncated message content] |
