sqlmap-users Mailing List for sqlmap (Page 112)
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users — sqlmap users mailing list
You can subscribe to this list here.
| 2008 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
(4) |
Oct
(11) |
Nov
(24) |
Dec
(13) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2009 |
Jan
(23) |
Feb
(17) |
Mar
(13) |
Apr
(48) |
May
(22) |
Jun
(18) |
Jul
(22) |
Aug
(13) |
Sep
(23) |
Oct
(6) |
Nov
(11) |
Dec
(25) |
| 2010 |
Jan
(21) |
Feb
(33) |
Mar
(61) |
Apr
(47) |
May
(48) |
Jun
(30) |
Jul
(24) |
Aug
(37) |
Sep
(52) |
Oct
(59) |
Nov
(32) |
Dec
(57) |
| 2011 |
Jan
(166) |
Feb
(93) |
Mar
(65) |
Apr
(117) |
May
(87) |
Jun
(124) |
Jul
(102) |
Aug
(78) |
Sep
(65) |
Oct
(22) |
Nov
(71) |
Dec
(79) |
| 2012 |
Jan
(93) |
Feb
(55) |
Mar
(45) |
Apr
(49) |
May
(56) |
Jun
(93) |
Jul
(95) |
Aug
(42) |
Sep
(26) |
Oct
(36) |
Nov
(32) |
Dec
(46) |
| 2013 |
Jan
(36) |
Feb
(78) |
Mar
(38) |
Apr
(57) |
May
(35) |
Jun
(39) |
Jul
(23) |
Aug
(33) |
Sep
(28) |
Oct
(38) |
Nov
(22) |
Dec
(16) |
| 2014 |
Jan
(33) |
Feb
(23) |
Mar
(41) |
Apr
(29) |
May
(12) |
Jun
(20) |
Jul
(21) |
Aug
(23) |
Sep
(18) |
Oct
(34) |
Nov
(12) |
Dec
(39) |
| 2015 |
Jan
(2) |
Feb
(51) |
Mar
(10) |
Apr
(28) |
May
(9) |
Jun
(22) |
Jul
(32) |
Aug
(35) |
Sep
(29) |
Oct
(50) |
Nov
(8) |
Dec
(2) |
| 2016 |
Jan
(8) |
Feb
(2) |
Mar
(3) |
Apr
(14) |
May
|
Jun
|
Jul
|
Aug
(12) |
Sep
|
Oct
|
Nov
(1) |
Dec
(19) |
| 2017 |
Jan
|
Feb
(18) |
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
(4) |
Sep
|
Oct
|
Nov
(2) |
Dec
|
| 2018 |
Jan
|
Feb
|
Mar
(1) |
Apr
(1) |
May
(3) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2019 |
Jan
|
Feb
|
Mar
|
Apr
(3) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Miroslav S. <mir...@gm...> - 2011-01-17 00:25:34
|
hi buawig. we've done some heavy development in other parts and haven't updated --sql-shell accordingly. i can only say that we'll try to do our best and update it in couple of weeks (not a trivial one as now it's only supported by the part of sqlmap with blind based injections). kr On Mon, Jan 17, 2011 at 1:14 AM, <bu...@gm...> wrote: > Hi there, > > testcases: > > #1 > =========== > --sql-query="select username from insecure.user" > > output: > select username from insecure.user: 'admin' > > #2 > =========== > --sql-query="select password from insecure.user" > > output: > select password from insecure.user: 'foobar' > > #3 > =========== > --sql-query="select * from insecure.user" > > output: > select * from insecure.user: 'None' > > #4 > =========== > --sql-query="select username,password from insecure.user" > > output: > select username,password from insecure.user: 'None' > > > Question: Why is the output of #3 and #4 'None'? > (the table has only a single row) > > > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: Miroslav S. <mir...@gm...> - 2011-01-17 00:16:32
|
hi buawig. thank you for your report. find it fixed in the latest revision from our SVN repository. kr On Mon, Jan 17, 2011 at 12:50 AM, <bu...@gm...> wrote: > ./sqlmap.py --method=POST --data="username=&password=&submit=submit" > --keep-alive --current-user --dbs --current-db -p username -u > http://127.0.0.1/login --sql-shell > > > [CRITICAL] [...] > Python version: 2.6.4 > Operating system: posix > Traceback (most recent call last): > File "./sqlmap.py", line 83, in main > start() > File "/home/ca/tools/sqlmap-dev/lib/controller/controller.py", line > 414, in start > action() > File "/home/ca/tools/sqlmap-dev/lib/controller/action.py", line 114, > in action > conf.dbmsHandler.sqlShell() > File "/home/ca/tools/sqlmap-dev/plugins/generic/enumeration.py", line > 1963, in sqlShell > autoCompletion(sqlShell=True) > File "/home/ca/tools/sqlmap-dev/lib/core/shell.py", line 84, in > autoCompletion > readline.set_completer(completer.complete) > AttributeError: 'module' object has no attribute 'set_completer' > > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: <bu...@gm...> - 2011-01-17 00:15:19
|
Hi there, testcases: #1 =========== --sql-query="select username from insecure.user" output: select username from insecure.user: 'admin' #2 =========== --sql-query="select password from insecure.user" output: select password from insecure.user: 'foobar' #3 =========== --sql-query="select * from insecure.user" output: select * from insecure.user: 'None' #4 =========== --sql-query="select username,password from insecure.user" output: select username,password from insecure.user: 'None' Question: Why is the output of #3 and #4 'None'? (the table has only a single row) |
|
From: <bu...@gm...> - 2011-01-16 23:51:25
|
./sqlmap.py --method=POST --data="username=&password=&submit=submit"
--keep-alive --current-user --dbs --current-db -p username -u
http://127.0.0.1/login --sql-shell
[CRITICAL] [...]
Python version: 2.6.4
Operating system: posix
Traceback (most recent call last):
File "./sqlmap.py", line 83, in main
start()
File "/home/ca/tools/sqlmap-dev/lib/controller/controller.py", line
414, in start
action()
File "/home/ca/tools/sqlmap-dev/lib/controller/action.py", line 114,
in action
conf.dbmsHandler.sqlShell()
File "/home/ca/tools/sqlmap-dev/plugins/generic/enumeration.py", line
1963, in sqlShell
autoCompletion(sqlShell=True)
File "/home/ca/tools/sqlmap-dev/lib/core/shell.py", line 84, in
autoCompletion
readline.set_completer(completer.complete)
AttributeError: 'module' object has no attribute 'set_completer'
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-15 10:12:25
|
Fixed and committed. On 15 January 2011 07:01, Владимир Гопиенко <war...@gm...> wrote: > [08:59:47] [INFO] testing connection to the target url > sqlmap identified the following injection points with a total of 0 HTTP(s) > reque > sts: > --- > Place: GET > Parameter: b2mid > Type: boolean-based blind > Title: AND boolean-based blind - WHERE clause > Payload: id=24410 AND 7218=7218 > > Type: stacked queries > Title: Microsoft SQL Server/Sybase stacked queries > Payload: id=24410 ; WAITFOR DELAY '0:0:5';-- > --- > > [08:59:48] [INFO] the back-end DBMS is Microsoft SQL Server > web server operating system: Windows 2003 > web application technology: ASP.NET, Microsoft IIS 6.0, ASP > back-end DBMS: Microsoft SQL Server 2000 > [08:59:48] [INFO] fetching file: 'c:/boot.ini' > [08:59:51] [WARNING] HTTP error codes detected during testing: > 500 (Internal Server Error) - 6 times > > [08:59:51] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with > the latest development version from the Subversion repository. If the > exception > persists, please send by e-mail to sql...@li... the > comma > nd line, the following text and any information needed to reproduce the bug. > The > developers will try to reproduce the bug, fix it accordingly and get back > to yo > u. > sqlmap version: 0.9-dev (r2971) > Python version: 2.6.6 > Operating system: nt > Traceback (most recent call last): > File "sqlmap.py", line 83, in main > start() > File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 413, in start > action() > File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 122, in action > conf.dumper.rFile(conf.rFile, conf.dbmsHandler.readFile(conf.rFile)) > File "C:\DSU\soft\sqlmap\plugins\generic\filesystem.py", line 266, in > readFile > > fileContent = self.stackedReadFile(rFile) > File "C:\DSU\soft\sqlmap\plugins\dbms\mssqlserver\filesystem.py", line 95, > in > stackedReadFile > if isTechniqueAvailable(PAYLOAD.TECHNIQUE.UNION): > NameError: global name 'PAYLOAD' is not defined > > [*] shutting down at: 08:59:51 > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Владимир Г. <war...@gm...> - 2011-01-15 07:01:54
|
[08:59:47] [INFO] testing connection to the target url
sqlmap identified the following injection points with a total of 0 HTTP(s)
reque
sts:
---
Place: GET
Parameter: b2mid
Type: boolean-based blind
Title: AND boolean-based blind - WHERE clause
Payload: id=24410 AND 7218=7218
Type: stacked queries
Title: Microsoft SQL Server/Sybase stacked queries
Payload: id=24410 ; WAITFOR DELAY '0:0:5';--
---
[08:59:48] [INFO] the back-end DBMS is Microsoft SQL Server
web server operating system: Windows 2003
web application technology: ASP.NET, Microsoft IIS 6.0, ASP
back-end DBMS: Microsoft SQL Server 2000
[08:59:48] [INFO] fetching file: 'c:/boot.ini'
[08:59:51] [WARNING] HTTP error codes detected during testing:
500 (Internal Server Error) - 6 times
[08:59:51] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with
the latest development version from the Subversion repository. If the
exception
persists, please send by e-mail to sql...@li... the
comma
nd line, the following text and any information needed to reproduce the bug.
The
developers will try to reproduce the bug, fix it accordingly and get back
to yo
u.
sqlmap version: 0.9-dev (r2971)
Python version: 2.6.6
Operating system: nt
Traceback (most recent call last):
File "sqlmap.py", line 83, in main
start()
File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 413, in start
action()
File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 122, in action
conf.dumper.rFile(conf.rFile, conf.dbmsHandler.readFile(conf.rFile))
File "C:\DSU\soft\sqlmap\plugins\generic\filesystem.py", line 266, in
readFile
fileContent = self.stackedReadFile(rFile)
File "C:\DSU\soft\sqlmap\plugins\dbms\mssqlserver\filesystem.py", line 95,
in
stackedReadFile
if isTechniqueAvailable(PAYLOAD.TECHNIQUE.UNION):
NameError: global name 'PAYLOAD' is not defined
[*] shutting down at: 08:59:51
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-14 09:47:38
|
Fixed and committed. Thanks for reporting. Bernardo On 14 January 2011 07:47, Владимир Гопиенко <war...@gm...> wrote: > python sqlmap.py -u "http://example/rrr.php" --method POST > --data="login_for_pwd=4444" > Win32 > > > [09:44:21] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with > the latest development version from the Subversion repository. If the > exception > persists, please send by e-mail to sql...@li... the > comma > nd line, the following text and any information needed to reproduce the bug. > The > developers will try to reproduce the bug, fix it accordingly and get back > to yo > u. > sqlmap version: 0.9-dev (r2958) > Python version: 2.6.6 > Operating system: nt > Traceback (most recent call last): > File "sqlmap.py", line 83, in main > start() > File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 407, in start > action() > File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 31, in action > setHandler() > File "C:\DSU\soft\sqlmap\lib\controller\handler.py", line 66, in > setHandler > if getIdentifiedDBMS() is not None: > File "C:\DSU\soft\sqlmap\lib\core\common.py", line 2051, in > getIdentifiedDBMS > return aliasToDbmsEnum(dbms) > File "C:\DSU\soft\sqlmap\lib\core\common.py", line 1764, in > aliasToDbmsEnum > if value.lower() in item[0]: > AttributeError: 'NoneType' object has no attribute 'lower' > > [*] shutting down at: 09:44:21 > > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Владимир Г. <war...@gm...> - 2011-01-14 07:47:28
|
python sqlmap.py -u "http://example/rrr.php" --method POST
--data="login_for_pwd=4444"
Win32
[09:44:21] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with
the latest development version from the Subversion repository. If the
exception
persists, please send by e-mail to sql...@li... the
comma
nd line, the following text and any information needed to reproduce the bug.
The
developers will try to reproduce the bug, fix it accordingly and get back
to yo
u.
sqlmap version: 0.9-dev (r2958)
Python version: 2.6.6
Operating system: nt
Traceback (most recent call last):
File "sqlmap.py", line 83, in main
start()
File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 407, in start
action()
File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 31, in action
setHandler()
File "C:\DSU\soft\sqlmap\lib\controller\handler.py", line 66, in
setHandler
if getIdentifiedDBMS() is not None:
File "C:\DSU\soft\sqlmap\lib\core\common.py", line 2051, in
getIdentifiedDBMS
return aliasToDbmsEnum(dbms)
File "C:\DSU\soft\sqlmap\lib\core\common.py", line 1764, in
aliasToDbmsEnum
if value.lower() in item[0]:
AttributeError: 'NoneType' object has no attribute 'lower'
[*] shutting down at: 09:44:21
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-13 20:57:30
|
This is fixed now. Can you please let me know what is the command line you used to raise the previous traceback? Thank you, Bernardo On 13 January 2011 19:18, Владимир Гопиенко <war...@gm...> wrote: > Update and catch new error. > > [21:14:01] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with > the latest development version from the Subversion repository. If the > exception > persists, please send by e-mail to sql...@li... the > comma > nd line, the following text and any information needed to reproduce the bug. > The > developers will try to reproduce the bug, fix it accordingly and get back > to yo > u. > sqlmap version: 0.9-dev (r2957) > Python version: 2.6.6 > Operating system: nt > Traceback (most recent call last): > File "../sqlmap/sqlmap.py", line 83, in main > start() > File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 407, in start > action() > File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 31, in action > setHandler() > File "C:\DSU\soft\sqlmap\lib\controller\handler.py", line 66, in > setHandler > if getIdentifiedDBMS() is not None: > File "C:\DSU\soft\sqlmap\lib\core\common.py", line 2051, in > getIdentifiedDBMS > dbms = getErrorParsedDBMSes()[0] > IndexError: list index out of range > > [*] shutting down at: 21:14:01 > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Владимир Г. <war...@gm...> - 2011-01-13 19:18:30
|
Update and catch new error.
[21:14:01] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with
the latest development version from the Subversion repository. If the
exception
persists, please send by e-mail to sql...@li... the
comma
nd line, the following text and any information needed to reproduce the bug.
The
developers will try to reproduce the bug, fix it accordingly and get back
to yo
u.
sqlmap version: 0.9-dev (r2957)
Python version: 2.6.6
Operating system: nt
Traceback (most recent call last):
File "../sqlmap/sqlmap.py", line 83, in main
start()
File "C:\DSU\soft\sqlmap\lib\controller\controller.py", line 407, in start
action()
File "C:\DSU\soft\sqlmap\lib\controller\action.py", line 31, in action
setHandler()
File "C:\DSU\soft\sqlmap\lib\controller\handler.py", line 66, in
setHandler
if getIdentifiedDBMS() is not None:
File "C:\DSU\soft\sqlmap\lib\core\common.py", line 2051, in
getIdentifiedDBMS
dbms = getErrorParsedDBMSes()[0]
IndexError: list index out of range
[*] shutting down at: 21:14:01
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-13 09:41:48
|
Fixed and committed.
Bernardo
On 12 January 2011 17:32, Bernardo Damele A. G.
<ber...@gm...> wrote:
> Which command line di you run?
>
> Bernardo
>
>
> On 12 January 2011 16:57, -insane- <in...@gm...> wrote:
>> Unable to fingerprint any dbms. If i use earlier versions it works.
>>
>> sqlmap identified the following injection points with a total of 0
>> HTTP(s) requests:
>> ---
>> Place: GET
>> Parameter: xxx
>> Type: boolean-based blind
>> Title: AND boolean-based blind - WHERE clause
>> Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 AND
>> 8933=8933&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
>>
>> Type: UNION query
>> Title: MySQL NULL UNION query - 1 to 3 columns
>> Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 UNION ALL SELECT NULL,
>> NULL, NULL, CHAR(75,101,105,110), NULL, NULL, NULL, NULL, NULL, NULL,
>> NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
>> NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
>> NULL, NULL, NULL, NULL, NULL, NULL, NULL,
>> NULL#&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
>> ---
>>
>> [17:51:28] [INFO] testing MySQL
>>
>> [17:51:28] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your
>> run with the latest development version from the Subversion repository.
>> If the exception persists, please send by e-mail to
>> sql...@li... the command line, the following text
>> and any information needed to reproduce the bug. The developers will try
>> to reproduce the bug, fix it accordingly and get back to you.
>> sqlmap version: 0.9-dev (r2946)
>> Python version: 2.5.2
>> Operating system: posix
>> Traceback (most recent call last):
>> File "/pentest/database/sqlmap/sqlmap.py", line 83, in main
>> start()
>> File "/pentest/database/sqlmap/lib/controller/controller.py", line
>> 407, in start
>> action()
>> File "/pentest/database/sqlmap/lib/controller/action.py", line 31, in
>> action
>> setHandler()
>> File "/pentest/database/sqlmap/lib/controller/handler.py", line 103,
>> in setHandler
>> if handler.checkDbms():
>> File "/pentest/database/sqlmap/plugins/dbms/mysql/fingerprint.py",
>> line 175, in checkDbms
>> result =
>> inject.checkBooleanExpression("CONNECTION_ID()=CONNECTION_ID()")
>> File "/pentest/database/sqlmap/lib/request/inject.py", line 504, in
>> checkBooleanExpression
>> return getValue(unescaper.unescape(expression),
>> expected=EXPECTED.BOOL, suppressOutput=True, expectingNone=expectingNone)
>> File "/pentest/database/sqlmap/lib/request/inject.py", line 421, in
>> getValue
>> value = __goInband(forgeCaseExpression, expected, sort, resumeValue,
>> unpack, dump)
>> File "/pentest/database/sqlmap/lib/request/inject.py", line 379, in
>> __goInband
>> output = unionUse(expression, resetCounter=True, unpack=unpack,
>> dump=dump)
>> File "/pentest/database/sqlmap/lib/techniques/inband/union/use.py",
>> line 214, in unionUse
>> query = agent.forgeInbandQuery(expression, exprPosition=vector[0],
>> count=vector[1], comment=vector[2], prefix=vector[3], suffix=vector[4])
>> File "/pentest/database/sqlmap/lib/core/agent.py", line 542, in
>> forgeInbandQuery
>> inbandQuery += conf.uChar
>> TypeError: cannot concatenate 'str' and 'NoneType' objects
>>
>> [*] shutting down at: 17:51:28
>>
>>
>> ------------------------------------------------------------------------------
>> Protect Your Site and Customers from Malware Attacks
>> Learn about various malware tactics and how to avoid them. Understand
>> malware threats, the impact they can have on your business, and how you
>> can protect your company and customers by using code signing.
>> http://p.sf.net/sfu/oracle-sfdevnl
>> _______________________________________________
>> sqlmap-users mailing list
>> sql...@li...
>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>>
>
>
>
> --
> Bernardo Damele A. G.
>
> E-mail / Jabber: bernardo.damele (at) gmail.com
> Mobile: +447788962949 (UK 07788962949)
> PGP Key ID: 0x05F5A30F
>
--
Bernardo Damele A. G.
E-mail / Jabber: bernardo.damele (at) gmail.com
Mobile: +447788962949 (UK 07788962949)
PGP Key ID: 0x05F5A30F
|
|
From: Владимир Г. <war...@gm...> - 2011-01-12 23:40:40
|
[01:39:12] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run
with
the latest development version from the Subversion repository. If the
exception
persists, please send by e-mail to sql...@li... the
comma
nd line, the following text and any information needed to reproduce the bug.
The
developers will try to reproduce the bug, fix it accordingly and get back
to yo
u.
sqlmap version: 0.9-dev (r2946)
Python version: 2.6.6
Operating system: nt
Traceback (most recent call last):
File "sqlmap.py", line 83, in main
start()
File "c:\DSU\soft\sqlmap-dev\lib\controller\controller.py", line 407, in
start
action()
File "c:\DSU\soft\sqlmap-dev\lib\controller\action.py", line 31, in action
setHandler()
File "c:\DSU\soft\sqlmap-dev\lib\controller\handler.py", line 103, in
setHandl
er
if handler.checkDbms():
File "c:\DSU\soft\sqlmap-dev\plugins\dbms\oracle\fingerprint.py", line 83,
in
checkDbms
result = inject.checkBooleanExpression("ROWNUM=ROWNUM")
File "c:\DSU\soft\sqlmap-dev\lib\request\inject.py", line 504, in
checkBoolean
Expression
return getValue(unescaper.unescape(expression), expected=EXPECTED.BOOL,
supp
ressOutput=True, expectingNone=expectingNone)
File "c:\DSU\soft\sqlmap-dev\lib\request\inject.py", line 421, in getValue
value = __goInband(forgeCaseExpression, expected, sort, resumeValue,
unpack,
dump)
File "c:\DSU\soft\sqlmap-dev\lib\request\inject.py", line 379, in
__goInband
output = unionUse(expression, resetCounter=True, unpack=unpack,
dump=dump)
File "c:\DSU\soft\sqlmap-dev\lib\techniques\inband\union\use.py", line 68,
in
unionUse
limitRegExp = re.search(queries[kb.dbms].limitregexp.query, expression,
re.I
)
KeyError: None
[*] shutting down at: 01:39:12
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-12 17:33:05
|
Which command line di you run?
Bernardo
On 12 January 2011 16:57, -insane- <in...@gm...> wrote:
> Unable to fingerprint any dbms. If i use earlier versions it works.
>
> sqlmap identified the following injection points with a total of 0
> HTTP(s) requests:
> ---
> Place: GET
> Parameter: xxx
> Type: boolean-based blind
> Title: AND boolean-based blind - WHERE clause
> Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 AND
> 8933=8933&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
>
> Type: UNION query
> Title: MySQL NULL UNION query - 1 to 3 columns
> Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 UNION ALL SELECT NULL,
> NULL, NULL, CHAR(75,101,105,110), NULL, NULL, NULL, NULL, NULL, NULL,
> NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
> NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
> NULL, NULL, NULL, NULL, NULL, NULL, NULL,
> NULL#&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
> ---
>
> [17:51:28] [INFO] testing MySQL
>
> [17:51:28] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your
> run with the latest development version from the Subversion repository.
> If the exception persists, please send by e-mail to
> sql...@li... the command line, the following text
> and any information needed to reproduce the bug. The developers will try
> to reproduce the bug, fix it accordingly and get back to you.
> sqlmap version: 0.9-dev (r2946)
> Python version: 2.5.2
> Operating system: posix
> Traceback (most recent call last):
> File "/pentest/database/sqlmap/sqlmap.py", line 83, in main
> start()
> File "/pentest/database/sqlmap/lib/controller/controller.py", line
> 407, in start
> action()
> File "/pentest/database/sqlmap/lib/controller/action.py", line 31, in
> action
> setHandler()
> File "/pentest/database/sqlmap/lib/controller/handler.py", line 103,
> in setHandler
> if handler.checkDbms():
> File "/pentest/database/sqlmap/plugins/dbms/mysql/fingerprint.py",
> line 175, in checkDbms
> result =
> inject.checkBooleanExpression("CONNECTION_ID()=CONNECTION_ID()")
> File "/pentest/database/sqlmap/lib/request/inject.py", line 504, in
> checkBooleanExpression
> return getValue(unescaper.unescape(expression),
> expected=EXPECTED.BOOL, suppressOutput=True, expectingNone=expectingNone)
> File "/pentest/database/sqlmap/lib/request/inject.py", line 421, in
> getValue
> value = __goInband(forgeCaseExpression, expected, sort, resumeValue,
> unpack, dump)
> File "/pentest/database/sqlmap/lib/request/inject.py", line 379, in
> __goInband
> output = unionUse(expression, resetCounter=True, unpack=unpack,
> dump=dump)
> File "/pentest/database/sqlmap/lib/techniques/inband/union/use.py",
> line 214, in unionUse
> query = agent.forgeInbandQuery(expression, exprPosition=vector[0],
> count=vector[1], comment=vector[2], prefix=vector[3], suffix=vector[4])
> File "/pentest/database/sqlmap/lib/core/agent.py", line 542, in
> forgeInbandQuery
> inbandQuery += conf.uChar
> TypeError: cannot concatenate 'str' and 'NoneType' objects
>
> [*] shutting down at: 17:51:28
>
>
> ------------------------------------------------------------------------------
> Protect Your Site and Customers from Malware Attacks
> Learn about various malware tactics and how to avoid them. Understand
> malware threats, the impact they can have on your business, and how you
> can protect your company and customers by using code signing.
> http://p.sf.net/sfu/oracle-sfdevnl
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
--
Bernardo Damele A. G.
E-mail / Jabber: bernardo.damele (at) gmail.com
Mobile: +447788962949 (UK 07788962949)
PGP Key ID: 0x05F5A30F
|
|
From: -insane- <in...@gm...> - 2011-01-12 16:57:22
|
Unable to fingerprint any dbms. If i use earlier versions it works.
sqlmap identified the following injection points with a total of 0
HTTP(s) requests:
---
Place: GET
Parameter: xxx
Type: boolean-based blind
Title: AND boolean-based blind - WHERE clause
Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 AND
8933=8933&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
Type: UNION query
Title: MySQL NULL UNION query - 1 to 3 columns
Payload: id=995&xxx=1&xxx=xxx.php&xxx=283935 UNION ALL SELECT NULL,
NULL, NULL, CHAR(75,101,105,110), NULL, NULL, NULL, NULL, NULL, NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NULL#&xxx=aGVsbHNpY2h0aWdlcyBLYXJ0ZW5sZWdlbiBvaG5lIFZvcmFiaW5mb3JtYXRpb24
---
[17:51:28] [INFO] testing MySQL
[17:51:28] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your
run with the latest development version from the Subversion repository.
If the exception persists, please send by e-mail to
sql...@li... the command line, the following text
and any information needed to reproduce the bug. The developers will try
to reproduce the bug, fix it accordingly and get back to you.
sqlmap version: 0.9-dev (r2946)
Python version: 2.5.2
Operating system: posix
Traceback (most recent call last):
File "/pentest/database/sqlmap/sqlmap.py", line 83, in main
start()
File "/pentest/database/sqlmap/lib/controller/controller.py", line
407, in start
action()
File "/pentest/database/sqlmap/lib/controller/action.py", line 31, in
action
setHandler()
File "/pentest/database/sqlmap/lib/controller/handler.py", line 103,
in setHandler
if handler.checkDbms():
File "/pentest/database/sqlmap/plugins/dbms/mysql/fingerprint.py",
line 175, in checkDbms
result =
inject.checkBooleanExpression("CONNECTION_ID()=CONNECTION_ID()")
File "/pentest/database/sqlmap/lib/request/inject.py", line 504, in
checkBooleanExpression
return getValue(unescaper.unescape(expression),
expected=EXPECTED.BOOL, suppressOutput=True, expectingNone=expectingNone)
File "/pentest/database/sqlmap/lib/request/inject.py", line 421, in
getValue
value = __goInband(forgeCaseExpression, expected, sort, resumeValue,
unpack, dump)
File "/pentest/database/sqlmap/lib/request/inject.py", line 379, in
__goInband
output = unionUse(expression, resetCounter=True, unpack=unpack,
dump=dump)
File "/pentest/database/sqlmap/lib/techniques/inband/union/use.py",
line 214, in unionUse
query = agent.forgeInbandQuery(expression, exprPosition=vector[0],
count=vector[1], comment=vector[2], prefix=vector[3], suffix=vector[4])
File "/pentest/database/sqlmap/lib/core/agent.py", line 542, in
forgeInbandQuery
inbandQuery += conf.uChar
TypeError: cannot concatenate 'str' and 'NoneType' objects
[*] shutting down at: 17:51:28
|
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-12 12:03:07
|
If the target was not vulnerable to any SQL injection, you provided --level 5 and --risk 3 together and there were a lot of GET/POST/Cookie parameters, then yes, potentially thousands of requests. I can calculate it for you if you assert the above and give me the exact number of parameters. Bernardo On 12 January 2011 12:00, Chris Oakley <chr...@gm...> wrote: > Thanks for that Bernardo. I understand that it's dynamic, but would it be > in the realms of possibility for (over the Internet to a responsive machine) >> 200,000 requests to be made by sqlmap over an 8 hour period? This would > be testing multiple post and cookie values and lots of blind testing. This > apparently happened to a server recently, but I didn't run sqlmap through a > proxy. I'm trying to narrow down which tool was responsible so that I can > slow things down in the future. > > Chris. > > On 12 January 2011 11:45, Bernardo Damele A. G. <ber...@gm...> > wrote: >> >> Chris, >> >> It varies a lot. It depends whether or not the target URL is over the >> Internet, the machine is responsive, there's no lag, etc. >> It also depends on the parameter vulnerabilities. Say it's a simple >> injection, sqlmap will spot it easily and quick with very little >> number of requests. The number of requests the new detection engine >> does is dynamic, it varies according to the results it gets from the >> request/responses/delays received up until a certain moment. >> >> I recommend you run it once with default level and risk values and -v >> 3 and once with level and risk increased to maximum to get an idea. >> >> Bernardo >> >> >> On 12 January 2011 11:40, Chris Oakley <chr...@gm...> >> wrote: >> > Hi there >> > >> > With --level=5 and --risk=3 enabled, what kind of traffic does sqlmap >> > send, >> > say, per hour? I meant to look at this through a proxy but if anyone >> > has a >> > rough figure without me setting that up it'd be appreciated. >> > >> > Chris >> > >> > >> > ------------------------------------------------------------------------------ >> > Protect Your Site and Customers from Malware Attacks >> > Learn about various malware tactics and how to avoid them. Understand >> > malware threats, the impact they can have on your business, and how you >> > can protect your company and customers by using code signing. >> > http://p.sf.net/sfu/oracle-sfdevnl >> > _______________________________________________ >> > sqlmap-users mailing list >> > sql...@li... >> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > >> > >> >> >> >> -- >> Bernardo Damele A. G. >> >> E-mail / Jabber: bernardo.damele (at) gmail.com >> Mobile: +447788962949 (UK 07788962949) >> PGP Key ID: 0x05F5A30F > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Chris O. <chr...@gm...> - 2011-01-12 12:01:04
|
Thanks for that Bernardo. I understand that it's dynamic, but would it be in the realms of possibility for (over the Internet to a responsive machine) > 200,000 requests to be made by sqlmap over an 8 hour period? This would be testing multiple post and cookie values and lots of blind testing. This apparently happened to a server recently, but I didn't run sqlmap through a proxy. I'm trying to narrow down which tool was responsible so that I can slow things down in the future. Chris. On 12 January 2011 11:45, Bernardo Damele A. G. <ber...@gm...>wrote: > Chris, > > It varies a lot. It depends whether or not the target URL is over the > Internet, the machine is responsive, there's no lag, etc. > It also depends on the parameter vulnerabilities. Say it's a simple > injection, sqlmap will spot it easily and quick with very little > number of requests. The number of requests the new detection engine > does is dynamic, it varies according to the results it gets from the > request/responses/delays received up until a certain moment. > > I recommend you run it once with default level and risk values and -v > 3 and once with level and risk increased to maximum to get an idea. > > Bernardo > > > On 12 January 2011 11:40, Chris Oakley <chr...@gm...> > wrote: > > Hi there > > > > With --level=5 and --risk=3 enabled, what kind of traffic does sqlmap > send, > > say, per hour? I meant to look at this through a proxy but if anyone has > a > > rough figure without me setting that up it'd be appreciated. > > > > Chris > > > > > ------------------------------------------------------------------------------ > > Protect Your Site and Customers from Malware Attacks > > Learn about various malware tactics and how to avoid them. Understand > > malware threats, the impact they can have on your business, and how you > > can protect your company and customers by using code signing. > > http://p.sf.net/sfu/oracle-sfdevnl > > _______________________________________________ > > sqlmap-users mailing list > > sql...@li... > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > -- > Bernardo Damele A. G. > > E-mail / Jabber: bernardo.damele (at) gmail.com > Mobile: +447788962949 (UK 07788962949) > PGP Key ID: 0x05F5A30F > |
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-01-12 11:45:17
|
Chris, It varies a lot. It depends whether or not the target URL is over the Internet, the machine is responsive, there's no lag, etc. It also depends on the parameter vulnerabilities. Say it's a simple injection, sqlmap will spot it easily and quick with very little number of requests. The number of requests the new detection engine does is dynamic, it varies according to the results it gets from the request/responses/delays received up until a certain moment. I recommend you run it once with default level and risk values and -v 3 and once with level and risk increased to maximum to get an idea. Bernardo On 12 January 2011 11:40, Chris Oakley <chr...@gm...> wrote: > Hi there > > With --level=5 and --risk=3 enabled, what kind of traffic does sqlmap send, > say, per hour? I meant to look at this through a proxy but if anyone has a > rough figure without me setting that up it'd be appreciated. > > Chris > > ------------------------------------------------------------------------------ > Protect Your Site and Customers from Malware Attacks > Learn about various malware tactics and how to avoid them. Understand > malware threats, the impact they can have on your business, and how you > can protect your company and customers by using code signing. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Chris O. <chr...@gm...> - 2011-01-12 11:40:32
|
Hi there With --level=5 and --risk=3 enabled, what kind of traffic does sqlmap send, say, per hour? I meant to look at this through a proxy but if anyone has a rough figure without me setting that up it'd be appreciated. Chris |
|
From: Miroslav S. <mir...@gm...> - 2011-01-11 12:37:24
|
hi Chris. in most cases there shouldn't be any problem with Ctrl+C. injection data and enumerated data is being stored there with "caching" purpose and resuming with those values should work out of box. kr On Tue, Jan 11, 2011 at 12:38 PM, Chris Oakley <chr...@gm... > wrote: > Hi there > > If I ctrl + c a scan will it save current progress to the session file or > will I have to start it again? I have some long scans to do but they can > only be carried out within a certain time window each day so it's likely > I'll need to pause/suspend. Is there a preferred way to do this? > > Regards > > Chris > > > ------------------------------------------------------------------------------ > Gaining the trust of online customers is vital for the success of any > company > that requires sensitive data to be transmitted over the Web. Learn how to > best implement a security strategy that keeps consumers' information secure > and instills the confidence they need to proceed with transactions. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: Miroslav S. <mir...@gm...> - 2011-01-11 12:28:28
|
hi nightman. thx again for a bug report. could you please update to the latest revision and try it again. now there should be a "critical" message like this: [13:22:26] [CRITICAL] there was a problem while hashing entry: 'blalblalb'. Please report by e-mail to sql...@li.... i am would really like to know which entry was giving you problems :) kr On Tue, Jan 11, 2011 at 1:28 AM, <nig...@em...> wrote: > Hi, > > I found a new bug ;) > > C:\pentest\p\sqlmap-0.9-1>sqlmap -u " > http://xxxxxxx.xxx/favorites.php?id=1219&action=0&t=p&u=2433" > --auth-type=basic --auth-cred=xxxx:xxxx -a C:\user-agents.txt --level 5 > --risk 3 --dump -D xxxxxx -T user -C xxxxx,xxxx,xxxx > > [01:08:12] [WARNING] Ctrl+C detected in dumping phase > recognized possible password hash values. do you want to use dictionary > attack on retrieved table it > ems? [Y/n/q] y > [01:08:17] [INFO] using hash method: 'md5_generic_passwd' > what's the dictionary's location? [C:\pentest\p\sqlmap-0.9-1\t > xt\wordlist.txt] > [01:08:20] [INFO] loading dictionary from: 'C:\pentest\p\sqlma > p-0.9-1\txt\wordlist.txt' > [01:08:22] [INFO] starting dictionary attack (md5_generic_passwd) > [01:12:45] [INFO] 278133/277952 words (100%) > [01:12:45] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with the latest developm > ent version from the Subversion repository. If the exception persists, > please send by e-mail to sqlm > ap-...@li... the command line, the following text and > any information needed to re > produce the bug. The developers will try to reproduce the bug, fix it > accordingly and get back to yo > u. > sqlmap version: 0.9-dev > Python version: 2.6.6 > Operating system: nt > Traceback (most recent call last): > File "C:\pentest\p\sqlmap-0.9-1\sqlmap.py", line 83, in main > > start() > File "C:\pentest\p\sqlmap-0.9-1\lib\controller\controller.py > ", line 405, in start > action() > File "C:\pentest\p\sqlmap-0.9-1\lib\controller\action.py", l > ine 107, in action > conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) > File "C:\pentest\p\sqlmap-0.9-1\plugins\generic\enumeration. > py", line 1383, in dumpTable > attackDumpedTable() > File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 248 > , in attackDumpedTable > results = dictionaryAttack(attack_dict) > File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 351 > , in dictionaryAttack > current = __functions__[hash_regex](password = word, uppercase = False) > File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 170 > , in md5_generic_passwd > retVal = md5(password).hexdigest() > UnicodeEncodeError: 'ascii' codec can't encode characters in position 0-1: > ordinal not in range(128) > > > [*] shutting down at: 01:12:46 > > > ------------------------------------------------------------------------------ > Gaining the trust of online customers is vital for the success of any > company > that requires sensitive data to be transmitted over the Web. Learn how to > best implement a security strategy that keeps consumers' information secure > and instills the confidence they need to proceed with transactions. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: Chris O. <chr...@gm...> - 2011-01-11 11:38:28
|
Hi there If I ctrl + c a scan will it save current progress to the session file or will I have to start it again? I have some long scans to do but they can only be carried out within a certain time window each day so it's likely I'll need to pause/suspend. Is there a preferred way to do this? Regards Chris |
|
From: Miroslav S. <mir...@gm...> - 2011-01-11 09:52:19
|
Hi Andreas. Now the best documentation currently is the help listing you can get with -h. We've focused lately on implementation, rather that documentation, and we'll need to "fix" this soon. You can expect full documentation with 0.9 final version which will be released soon. In short words, most of updates we've made are automatic ones (not directly modifiable by user), so there shouldn't been "different switches you need to use" with default (>90%) program run. KR p.s. some of great features we've made in last half year: new detection engine with error/blind/stacked/time/union tests and payloads for data retrieval (all are tested by default, except union which needs to be turned on with --union-test), MS Access enumeration and data retrieval, optimization switches, automatic dictionary attack on detected hashes (mysql, mysql_old, oracle, oracle_old, mssql, mssql_old, postgres, md5, sha1) - included wordlist with compiled entries from tens of excellent sources, common table/column brute force enumeration for DBMSes which don't have information_schema (old MySQL & MS Access) with our own compiled entries, lots of bug fixes,... On Mon, Jan 10, 2011 at 5:54 PM, Andreas Constantinides (MegaHz) < me...@me...> wrote: > hi there, > > is there any documentation of sqlmap's new features? > > thanks > > > > ------------------------------------------------------------------------------ > Gaining the trust of online customers is vital for the success of any > company > that requires sensitive data to be transmitted over the Web. Learn how to > best implement a security strategy that keeps consumers' information secure > and instills the confidence they need to proceed with transactions. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
|
From: <nig...@em...> - 2011-01-11 00:28:19
|
Hi, I found a new bug ;) C:\pentest\p\sqlmap-0.9-1>sqlmap -u "http://xxxxxxx.xxx/favorites.php?id=1219&action=0&t=p&u=2433" --auth-type=basic --auth-cred=xxxx:xxxx -a C:\user-agents.txt --level 5 --risk 3 --dump -D xxxxxx -T user -C xxxxx,xxxx,xxxx [01:08:12] [WARNING] Ctrl+C detected in dumping phase recognized possible password hash values. do you want to use dictionary attack on retrieved table it ems? [Y/n/q] y [01:08:17] [INFO] using hash method: 'md5_generic_passwd' what's the dictionary's location? [C:\pentest\p\sqlmap-0.9-1\t xt\wordlist.txt] [01:08:20] [INFO] loading dictionary from: 'C:\pentest\p\sqlma p-0.9-1\txt\wordlist.txt' [01:08:22] [INFO] starting dictionary attack (md5_generic_passwd) [01:12:45] [INFO] 278133/277952 words (100%) [01:12:45] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run with the latest developm ent version from the Subversion repository. If the exception persists, please send by e-mail to sqlm ap-...@li... the command line, the following text and any information needed to re produce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to yo u. sqlmap version: 0.9-dev Python version: 2.6.6 Operating system: nt Traceback (most recent call last): File "C:\pentest\p\sqlmap-0.9-1\sqlmap.py", line 83, in main start() File "C:\pentest\p\sqlmap-0.9-1\lib\controller\controller.py ", line 405, in start action() File "C:\pentest\p\sqlmap-0.9-1\lib\controller\action.py", l ine 107, in action conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) File "C:\pentest\p\sqlmap-0.9-1\plugins\generic\enumeration. py", line 1383, in dumpTable attackDumpedTable() File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 248 , in attackDumpedTable results = dictionaryAttack(attack_dict) File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 351 , in dictionaryAttack current = __functions__[hash_regex](password = word, uppercase = False) File "C:\pentest\p\sqlmap-0.9-1\lib\utils\hash.py", line 170 , in md5_generic_passwd retVal = md5(password).hexdigest() UnicodeEncodeError: 'ascii' codec can't encode characters in position 0-1: ordinal not in range(128) [*] shutting down at: 01:12:46 |
|
From: Andreas C. (MegaHz) <me...@me...> - 2011-01-10 16:54:46
|
hi there, is there any documentation of sqlmap's new features? thanks |
|
From: Miroslav S. <mir...@gm...> - 2011-01-08 09:30:26
|
hi nightman. this looks strange. i am able to reproduce it only when i open that dumping file with some other locking process (like MS Word). i've made some updates but can't reproduce it in a normal run (also with Ctrl+C). could you please try to reproduce it on your side and research what could be wrong? kr On Sat, Jan 8, 2011 at 7:17 AM, <nig...@em...> wrote: > hi > I know its my fault, but a message with the file is locked or not ready > looks better ;) > > sqlmap -u "http://xxxxxxx.xxx/retrievePhoto.php?fid=236" > --auth-type=basic --auth-cred=xxxx:xxxx -a > C:\pentest\sqlmap.0.9\txt\user-agents.txt --level 5 --risk 3 --dump -D xxxx > -T xxxxx --threads=3 > > [01:08:43] [INFO] read from file > 'C:\pentest\sqlmap.0.9-1\output\xxxxx.xxx\session': > [01:08:44] [WARNING] Ctrl+C detected in dumping phase > > [01:08:44] [CRITICAL] unhandled exception in sqlmap/0.9-dev, retry your run > with the latest development version from the Subversio > n repository. If the exception persists, please send by e-mail to > sql...@li... the command line, the followi > ng text and any information needed to reproduce the bug. The developers > will try to reproduce the bug, fix it accordingly and get > back to you. > sqlmap version: 0.9-dev > Python version: 2.6.5 > Operating system: nt > Traceback (most recent call last): > File "C:\pentest\sqlmap.0.9-1\sqlmap.py", line 83, in main > start() > File "C:\pentest\sqlmap.0.9-1\lib\controller\controller.py", line 404, in > start > action() > File "C:\pentest\sqlmap.0.9-1\lib\controller\action.py", line 107, in > action > conf.dumper.dbTableValues(conf.dbmsHandler.dumpTable()) > File "C:\pentest\sqlmap.0.9-1\lib\core\dump.py", line 262, in > dbTableValues > dumpFP = codecs.open(dumpFileName, "wb", conf.dataEncoding) > File "C:\Python26\lib\codecs.py", line 870, in open > file = __builtin__.open(filename, mode, buffering) > IOError: [Errno 13] Permission denied: > u'C:\\pentest\\sqlmap.0.9-1\\output\\xxxxx.xxx\\dump\\xxxx\\xxxxx.csv' > > [*] shutting down at: 01:08:44 > > > ------------------------------------------------------------------------------ > Gaining the trust of online customers is vital for the success of any > company > that requires sensitive data to be transmitted over the Web. Learn how to > best implement a security strategy that keeps consumers' information secure > and instills the confidence they need to proceed with transactions. > http://p.sf.net/sfu/oracle-sfdevnl > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar E-mail / Jabber: miroslav.stampar (at) gmail.com Mobile: +385921010204 (HR 0921010204) PGP Key ID: 0xB5397B1B Location: Zagreb, Croatia |
48 messages has been excluded from this view by a project administrator.
