Thread: [sqlmap-users] DNS queries for every test?
Brought to you by:
inquisb
Menu
▾
▴
sqlmap-users
|
From: Ryan S. <rd...@mt...> - 2011-04-07 20:36:50
|
Hi there, First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! It seems as though sqlmap (latest SVN revision) doesn't cache DNS information though, causing a fraction of latency on every request. Is anyone else noticing this? I may just have a mis-configuration somewhere, but I've scoured around the config files and documentation and can't seem to find anything about it. Even when I put the hostname in the /etc/hosts file to try to bypass this latency, it still makes the query. Is there any way to stop it from doing this? Obviously it's not that big a deal, but when you're making 1,000 requests to a web-app, hitting the DNS server first every time does put on significant overhead for something that could be cached after the first query. I'm not sure if this is something that python itself is doing, or something in the code that makes it happen (I'm guessing the former). Ideas? Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). Thanks! Ryan |
|
From: Miroslav S. <mir...@gm...> - 2011-04-07 20:51:27
|
On Thu, Apr 7, 2011 at 10:36 PM, Ryan Sears <rd...@mt...> wrote: > Hi there, > > First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! :) > > It seems as though sqlmap (latest SVN revision) doesn't cache DNS information though, causing a fraction of latency on every request. Is anyone else noticing this? I may just have a mis-configuration somewhere, but I've scoured around the config files and documentation and can't seem to find anything about it. Even when I put the hostname in the /etc/hosts file to try to bypass this latency, it still makes the query. Is there any way to stop it from doing this? Obviously it's not that big a deal, but when you're making 1,000 requests to a web-app, hitting the DNS server first every time does put on significant overhead for something that could be cached after the first query. > > I'm not sure if this is something that python itself is doing, or something in the code that makes it happen (I'm guessing the former). Ideas? it's a python thing, but it would be a good idea to circumvent it somehow. we'll do it (hopefully) and report back. > > Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). good idea. we'll probably do it (after internal agreement). > > Thanks! > Ryan kr > > ------------------------------------------------------------------------------ > Xperia(TM) PLAY > It's a major breakthrough. An authentic gaming > smartphone on the nation's most reliable network. > And it wants your games. > http://p.sf.net/sfu/verizon-sfdev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Miroslav S. <mir...@gm...> - 2011-04-07 21:40:21
|
hi there again. find the DNS caching mechanism implemented with the latest commit r3582 (big thanks goes to Andres Riancho for suggesting a way to do it). kr On Thu, Apr 7, 2011 at 10:51 PM, Miroslav Stampar <mir...@gm...> wrote: > On Thu, Apr 7, 2011 at 10:36 PM, Ryan Sears <rd...@mt...> wrote: >> Hi there, >> >> First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! > > :) > >> >> It seems as though sqlmap (latest SVN revision) doesn't cache DNS information though, causing a fraction of latency on every request. Is anyone else noticing this? I may just have a mis-configuration somewhere, but I've scoured around the config files and documentation and can't seem to find anything about it. Even when I put the hostname in the /etc/hosts file to try to bypass this latency, it still makes the query. Is there any way to stop it from doing this? Obviously it's not that big a deal, but when you're making 1,000 requests to a web-app, hitting the DNS server first every time does put on significant overhead for something that could be cached after the first query. >> >> I'm not sure if this is something that python itself is doing, or something in the code that makes it happen (I'm guessing the former). Ideas? > > it's a python thing, but it would be a good idea to circumvent it > somehow. we'll do it (hopefully) and report back. > >> >> Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). > > good idea. we'll probably do it (after internal agreement). > >> >> Thanks! >> Ryan > > kr > >> >> ------------------------------------------------------------------------------ >> Xperia(TM) PLAY >> It's a major breakthrough. An authentic gaming >> smartphone on the nation's most reliable network. >> And it wants your games. >> http://p.sf.net/sfu/verizon-sfdev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > > -- > Miroslav Stampar > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Ryan S. <rd...@mt...> - 2011-04-07 21:42:14
|
Holy crap. The award for quickest turn-around time for a feature request goes to Miroslav! One word. Awesome! Thanks again! Ryan ----- Original Message ----- From: "Miroslav Stampar" <mir...@gm...> To: "Ryan Sears" <rd...@mt...> Cc: sql...@li... Sent: Thursday, April 7, 2011 5:40:12 PM GMT -05:00 US/Canada Eastern Subject: Re: [sqlmap-users] DNS queries for every test? hi there again. find the DNS caching mechanism implemented with the latest commit r3582 (big thanks goes to Andres Riancho for suggesting a way to do it). kr On Thu, Apr 7, 2011 at 10:51 PM, Miroslav Stampar <mir...@gm...> wrote: > On Thu, Apr 7, 2011 at 10:36 PM, Ryan Sears <rd...@mt...> wrote: >> Hi there, >> >> First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! > > :) > >> >> It seems as though sqlmap (latest SVN revision) doesn't cache DNS information though, causing a fraction of latency on every request. Is anyone else noticing this? I may just have a mis-configuration somewhere, but I've scoured around the config files and documentation and can't seem to find anything about it. Even when I put the hostname in the /etc/hosts file to try to bypass this latency, it still makes the query. Is there any way to stop it from doing this? Obviously it's not that big a deal, but when you're making 1,000 requests to a web-app, hitting the DNS server first every time does put on significant overhead for something that could be cached after the first query. >> >> I'm not sure if this is something that python itself is doing, or something in the code that makes it happen (I'm guessing the former). Ideas? > > it's a python thing, but it would be a good idea to circumvent it > somehow. we'll do it (hopefully) and report back. > >> >> Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). > > good idea. we'll probably do it (after internal agreement). > >> >> Thanks! >> Ryan > > kr > >> >> ------------------------------------------------------------------------------ >> Xperia(TM) PLAY >> It's a major breakthrough. An authentic gaming >> smartphone on the nation's most reliable network. >> And it wants your games. >> http://p.sf.net/sfu/verizon-sfdev >> _______________________________________________ >> sqlmap-users mailing list >> sql...@li... >> https://lists.sourceforge.net/lists/listinfo/sqlmap-users >> > > > > -- > Miroslav Stampar > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Andres R. <and...@gm...> - 2011-04-07 20:59:26
|
Check xurllib.py, that's where we fixed that issue in w3af -- Andres Riancho El abr 7, 2011 5:51 p.m., "Miroslav Stampar" <mir...@gm...> escribió: On Thu, Apr 7, 2011 at 10:36 PM, Ryan Sears <rd...@mt...> wrote: > Hi there, > > First of all I ... it's a python thing, but it would be a good idea to circumvent it somehow. we'll do it (hopefully) and report back. > > Also what do you guys think of possibly having the --dump option do something like --dump-all f... good idea. we'll probably do it (after internal agreement). > > Thanks! > Ryan kr > > ------------------------------------------------------------------------------ > Xperia(TM) PLA... -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B ------------------------------------------------------------------------------ Xperia(TM) PLAY It's... |
|
From: Miroslav S. <mir...@gm...> - 2011-04-07 21:06:03
|
thx. nicely done at the socket level. kr On Thu, Apr 7, 2011 at 10:59 PM, Andres Riancho <and...@gm...> wrote: > Check xurllib.py, that's where we fixed that issue in w3af > > -- > Andres Riancho > > El abr 7, 2011 5:51 p.m., "Miroslav Stampar" <mir...@gm...> > escribió: > > On Thu, Apr 7, 2011 at 10:36 PM, Ryan Sears <rd...@mt...> wrote: >> Hi there, >> >> First of all I ... > > it's a python thing, but it would be a good idea to circumvent it > somehow. we'll do it (hopefully) and report back. > >> >> Also what do you guys think of possibly having the --dump option do >> something like --dump-all f... > > good idea. we'll probably do it (after internal agreement). > >> >> Thanks! >> Ryan > > kr > >> >> >> ------------------------------------------------------------------------------ >> Xperia(TM) PLA... > > -- > Miroslav Stampar > > E-mail: miroslav.stampar (at) gmail.com > PGP Key ID: 0xB5397B1B > > ------------------------------------------------------------------------------ > Xperia(TM) PLAY > It's... -- Miroslav Stampar E-mail: miroslav.stampar (at) gmail.com PGP Key ID: 0xB5397B1B |
|
From: Ryan S. <rd...@mt...> - 2011-04-07 22:15:40
|
Hey Bernardo, Wow. I gotta say, I'm very impressed with your turn-around time. A lot of times good tools go un-maintained, but you guys are clearly passionate about your work, which is absolutely amazing! Great work guys, Ryan ----- Original Message ----- From: "Bernardo Damele A. G." <ber...@gm...> To: "Ryan Sears" <rd...@mt...> Cc: sql...@li... Sent: Thursday, April 7, 2011 6:09:57 PM GMT -05:00 US/Canada Eastern Subject: Re: [sqlmap-users] DNS queries for every test? Hi Ryan, On 7 April 2011 21:36, Ryan Sears <rd...@mt...> wrote: > ... > First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! Thank you. > ... > Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). Done. Find it committed in r3583. --dump-all switch now parses the -D switch in order to dump all tables' entries for only user's specified database(s). Like -C and -T, -D accepts also more values, comma-separated so for instance you can tell sqlmap to dump all tables' entries for two databases only. Cheers, Bernardo -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
|
From: Ahmed S. <ah...@is...> - 2011-04-08 08:32:21
|
damn it, these guys are so fast :) On Fri, Apr 8, 2011 at 12:15 AM, Ryan Sears <rd...@mt...> wrote: > Hey Bernardo, > > Wow. I gotta say, I'm very impressed with your turn-around time. A lot of > times good tools go un-maintained, but you guys are clearly passionate about > your work, which is absolutely amazing! > > Great work guys, > Ryan > > ----- Original Message ----- > From: "Bernardo Damele A. G." <ber...@gm...> > To: "Ryan Sears" <rd...@mt...> > Cc: sql...@li... > Sent: Thursday, April 7, 2011 6:09:57 PM GMT -05:00 US/Canada Eastern > Subject: Re: [sqlmap-users] DNS queries for every test? > > Hi Ryan, > > On 7 April 2011 21:36, Ryan Sears <rd...@mt...> wrote: > > ... > > First of all I have to say that I think this is one of, if not THE > favorite penetration testing tool in my collection. It saves a ridiculous > amount of time, and is remarkably stable. Great job, and I hope you keep up > the amazing work! > > Thank you. > > > ... > > Also what do you guys think of possibly having the --dump option do > something like --dump-all flag but with just a single database if you supply > it with the -D argument? Just a thought (although maybe I'm missing > something). > > Done. Find it committed in r3583. --dump-all switch now parses the -D > switch in order to dump all tables' entries for only user's specified > database(s). > Like -C and -T, -D accepts also more values, comma-separated so for > instance you can tell sqlmap to dump all tables' entries for two > databases only. > > Cheers, > Bernardo > > > -- > Bernardo Damele A. G. > > E-mail / Jabber: bernardo.damele (at) gmail.com > Mobile: +447788962949 (UK 07788962949) > PGP Key ID: 0x05F5A30F > > > ------------------------------------------------------------------------------ > Xperia(TM) PLAY > It's a major breakthrough. An authentic gaming > smartphone on the nation's most reliable network. > And it wants your games. > http://p.sf.net/sfu/verizon-sfdev > _______________________________________________ > sqlmap-users mailing list > sql...@li... > https://lists.sourceforge.net/lists/listinfo/sqlmap-users > -- - Ahmed Shawky El-Antry - Pen-tester, Programmer and System administrator - lnxg33k owner "http://lnxg33k.wordpress.com" - Isecur1ty team member"http://www.isecur1ty.org" - Twitter @lnxg33k |
|
From: Steve P. <ste...@gm...> - 2011-04-07 21:06:38
Attachments:
smime.p7s
|
On 04/07/2011 04:36 PM, Ryan Sears wrote: > Hi there, > > First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! > I'll second this. Burp Pro and Metasploit are up there too. There are few security testing tools that keep getting better after they are "good enough" as there's always a sexy new project on the horizon. Thanks for putting in the ongoing effort required to take the tool from decent to awesome! Steve -- | Steven Pinkham, Security Consultant | | http://www.mavensecurity.com | | GPG public key ID CD31CAFB | |
|
From: Bernardo D. A. G. <ber...@gm...> - 2011-04-07 22:10:05
|
Hi Ryan, On 7 April 2011 21:36, Ryan Sears <rd...@mt...> wrote: > ... > First of all I have to say that I think this is one of, if not THE favorite penetration testing tool in my collection. It saves a ridiculous amount of time, and is remarkably stable. Great job, and I hope you keep up the amazing work! Thank you. > ... > Also what do you guys think of possibly having the --dump option do something like --dump-all flag but with just a single database if you supply it with the -D argument? Just a thought (although maybe I'm missing something). Done. Find it committed in r3583. --dump-all switch now parses the -D switch in order to dump all tables' entries for only user's specified database(s). Like -C and -T, -D accepts also more values, comma-separated so for instance you can tell sqlmap to dump all tables' entries for two databases only. Cheers, Bernardo -- Bernardo Damele A. G. E-mail / Jabber: bernardo.damele (at) gmail.com Mobile: +447788962949 (UK 07788962949) PGP Key ID: 0x05F5A30F |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X