We have recently implemented data retrieval over DNS in sqlmap. This
data exfiltration technique adds up to the six existing techniques
already implemented: boolean-based blind, time-based blind, full
UNION, partial UNION, error-based and stacked (nested) queries. It is
supported on Oracle (running
Hi Adi.
Could you please send a console output for that case?
Kind regards,
Miroslav Stampar
On Wed, Jun 13, 2012 at 11:14 AM, Adi Mutu wrote:
> Hello,
>
> I'm using sqlmap in a pentest on a mssql 2000, and it only detects one
> column type from a table of 21 columns.
> The detected type is nv
Find it unhidden with the latest r5123.
Kind regards
On Thu, Jun 14, 2012 at 3:51 PM, Miroslav Stampar <
miroslav.stam...@gmail.com> wrote:
> Ok. Cool :)
>
> We'll most probably unhide that switch these days as it's a quite usable
> one
>
> Kind regards
>
>
> On Thu, Jun 14, 2012 at 3:49 PM, Yor
Ok. Cool :)
We'll most probably unhide that switch these days as it's a quite usable one
Kind regards
On Thu, Jun 14, 2012 at 3:49 PM, Yori Kvitchko <
y...@counterhackchallenges.com> wrote:
> Miroslav,
>
> It looks like --test-filter is what I need. I don't need a custom suffix
> and prefix, I
Miroslav,
It looks like --test-filter is what I need. I don't need a custom suffix
and prefix, I just need to force sqlmap to use a specific test it
already has in its collection of payloads.xml and only that test. If I
can use test-filter to select exactly the test I need and sqlmap will
onl
sqlmap version: 1.0-dev (r5112)
Python version: 2.6.6
Operating system: posix
Command line: sqlmap.py --url
*
-D
