[sqlmap-users] Sqlmap and direct connect error

Hi! This bug detected if add direct param. python sqlmap.py -d "mysql://yakimov:pass@127.0.0.1:3306/tech" -u "http://s25.ru/index.phtml?center=7&id=186"; --random-agent --tor --tor-type=SOCKS5 --tor-port=49832 --dbms=MySQL --os=Linux --tables --exclude-sysdbs [01:48:28] [CRITICAL] unhandled

Re: [sqlmap-users] --host parameter

Hi. Thank you for your report and find it fixed with the latest commit [1]. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/commit/6fed1921edf1baaf23a54fbe340ff3781fc05c86 On Mon, Apr 15, 2013 at 11:01 PM, wrote: > Hello, > the --host doesn't work as expected, or I

Re: [sqlmap-users] Sqlmap and direct connect error

Hi Vladimir. Find it "patched" with the latest commit [1]. Basically, those combinations should not be allowed (-d and --url; -d and --tor; etc.) and now we've added new option validation checks for this kind of cases. Kind regards, Miroslav Stampar [1] https://github.com/sqlmapproject/sqlmap/co

[sqlmap-users] feature request: offline mode for --dns-domain?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, in cases where sqlmap is run against targets on internal networks it would be great if one could tell sqlmap to simply proceed without expecting incoming DNS requests, because sqlmap can not be executed directly on the DNS server (which can't re

[sqlmap-users] feature request: --dns-domain for non-root users (--dns-port)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, I just wanted to request a "extension" for a previous feature request (DNS exfiltration [1]) but after looking at my former feature request I realized that it included already the feature I was about to request: - --dns-domain for non-root user

[sqlmap-users] Domain credentials

What is the correct format to make a direct connection to a database using windows domain credentials? I have tried ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred "DOMAIN\user:pass" ./sqlmap.py -d "mssql://10.10.10.10:1433/REMOTE_DB" --dbms-cred "DOMAIN\\user:pass" ./sqlmap.py -

Re: [sqlmap-users] Domain credentials

Try DOMAIN (four slashes) Just a thought, this comes up in ruby sometimes as well: file_local_write(@dest,"reg deleteval -k HKLMSOFTWAREMicrosoftWindows\\ NTCurrentVersionWinlogonSpecialAccountsUserList -v #{username}") On Tue, Apr 16, 2013 at 8:52 PM, Brian Mill

Re: [sqlmap-users] feature request: offline mode for --dns-domain?

Hi. Problem is that sqlmap needs to have data retrieved to be able to do it's normal workflow. For example, if you do --dump sqlmap needs to know table columns. In your proposed case that would be problematic. Also, there are lots of cases when we ask server for a simple questions and we need an a