Re: [Tool] sqlmap 0.7 released

[antisec () hushmail com]

AntiSex does not approve of posting your shit on the premier hacker 
channel, the full disclosure mailing list, more than 150 times per 
week. Please stop, because if people want to download your shit, 
they will go to your website. Thank you.

PS. AntiSex is for gay rights, because its sucks not being able to 
get married in Europe to your boyfriend. We have just gotten over 
our fear of commitment and you know how we love the butt sex.

On Sat, 25 Jul 2009 19:17:18 -0400 "Bernardo Damele A. G." 
<bernardo.damele () gmail com> wrote:
> Hi,
>
> I am glad to release sqlmap version 0.7.
>
> Introduction
> ============
>
> sqlmap is an open source command-line automatic SQL injection 
> tool.
> Its goal is to detect and take advantage of SQL injection
> vulnerabilities in web applications. Once it detects one or more 
> SQL
> injections on the target host, the user can choose among a variety 
> of
> options to perform an extensive back-end database management 
> system
> fingerprint, retrieve DBMS session user and database, enumerate 
> users,
> password hashes, privileges, databases, dump entire or user's
> specified DBMS tables/columns, run his own SQL statement, read or
> write either text or binary files on the file system, execute
> arbitrary commands on the operating system, establish an out-of-
> band
> stateful connection between the attacker box and the database 
> server
> via Metasploit payload stager, database stored procedure buffer
> overflow exploitation or SMB relay attack and more.
>
>
> Changes
> =======
>
> Along all the takeover features introduced in sqlmap 0.7 release
> candidate 1, some of the new features include:
>
> * Adapted Metasploit wrapping functions to work with latest 3.3
> development version too.
> * Adjusted code to make sqlmap 0.7 to work again on Mac OSX too.
> * Reset takeover OOB features (if any of --os-pwn, --os-smbrelay 
> or
> --os-bof is selected) when running under Windows because 
> msfconsole
> and msfcli are not supported on the native Windows Ruby 
> interpreter.
> This make sqlmap 0.7 to work again on Windows too.
> * Minor improvement so that sqlmap tests also all parameters with 
> no
> value (eg. par=).
> * HTTPS requests over HTTP proxy now work on either Python 2.4, 
> 2.5 and 2.6+.
>
> Complete list of changes at 
> http://sqlmap.sourceforge.net/doc/ChangeLog.
>
>
> Download
> ========
>
> You can download it in various formats:
>
> * Source gzip compressed,
> http://downloads.sourceforge.net/sqlmap/sqlmap-0.7.tar.gz
>
> * Source bzip2 compressed,
> http://downloads.sourceforge.net/sqlmap/sqlmap-0.7.tar.bz2
>
> * Source zip compressed, 
> http://downloads.sourceforge.net/sqlmap/sqlmap-0.7.zip
>
> * DEB binary package,
> http://downloads.sourceforge.net/sqlmap/sqlmap_0.7-1_all.deb
>
> * RPM binary package,
> http://downloads.sourceforge.net/sqlmap/sqlmap-0.7-1.noarch.rpm
>
> * Portable executable for Windows that does not require the Python
> interpreter to be installed on the operating system,
> http://downloads.sourceforge.net/sqlmap/sqlmap-0.7_exe.zip
>
>
> Documentation
> =============
>
> * sqlmap user's manual: 
> http://sqlmap.sourceforge.net/doc/README.pdf
>
> * sqlmap developer's documentation: 
> http://sqlmap.sourceforge.net/dev/
>
>
> Happy hacking!
> -- 
> Bernardo Damele A. G.
>
> E-mail / Jabber: bernardo.damele (at) gmail.com
> Mobile: +447788962949 (UK 07788962949)
> PGP Key ID: 0x05F5A30F
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/