Thread: [sqlmap-users] sqlmap 0.9 released

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi,

We are glad to release sqlmap version 0.9.

Thanks to anyone of you that contributed with really appreciated and
useful feedback.

Changes
=======
Some of the new features include:

  * Rewritten SQL injection detection engine (Bernardo and Miroslav).
  * Support to directly connect to the database without passing via a
    SQL injection, -d switch (Bernardo and Miroslav).
  * Added full support for both time-based blind SQL injection and
    error-based SQL injection techniques (Bernardo and Miroslav).
  * Implemented support for SQLite 2 and 3 (Bernardo and Miroslav).
  * Implemented support for Firebird (Bernardo and Miroslav).
  * Implemented support for Microsoft Access, Sybase and SAP MaxDB
    (Miroslav).
  * Added support to tamper injection data with --tamper switch (Bernardo
    and Miroslav).
  * Added automatic recognition of password hashes format and support to
    crack them with a dictionary-based attack (Miroslav).
  * Added support to fetch unicode data (Bernardo and Miroslav).
  * Added support to use persistent HTTP(s) connection for speed
    improvement, --keep-alive switch (Miroslav).
  * Implemented several optimization switches to speed up the exploitation
    of SQL injections (Bernardo and Miroslav).
  * Support to parse and test forms on target url, --forms switch
    (Bernardo and Miroslav).
  * Added switches to brute-force tables names and columns names with a
    dictionary attack, --common-tables and --common-columns. Useful for
    instance when system table 'information_schema' is not available on
    MySQL (Miroslav).

Complete list of changes at
https://svn.sqlmap.org/sqlmap/trunk/sqlmap/doc/ChangeLog.

Download
========
You can download it in two formats:

* Source gzip compressed,
http://downloads.sourceforge.net/sqlmap/sqlmap-0.9.tar.gz
* Source zip compressed, http://downloads.sourceforge.net/sqlmap/sqlmap-0.9.zip

Documentation
=============
* sqlmap user's manual: http://sqlmap.sourceforge.net/doc/README.pdf
* Conferences' material (whitepaper and slides):
http://sqlmap.sourceforge.net/#docs

Happy hacking!

-- 
Miroslav Stampar

E-mail: miroslav.stampar (at) gmail.com
PGP Key ID: 0xB5397B1B