Thanks to visit codestin.com
Credit goes to github.com

768 lines (532 loc) · 22.5 KB

Individuals

Andres Tarasco Acuna, [email protected]

for suggesting a feature

Santiago Accurso, [email protected]

for reporting a bug

Zaki Akhmad, [email protected]

for suggesting a couple of features

Olu Akindeinde, [email protected]

for reporting a couple of bugs

David Alvarez, [email protected]

for reporting a bug

Sergio Alves, [email protected]

for reporting a bug

Thomas Anderson, [email protected]

for reporting a bug

Chip Andrews, [email protected]

for his excellent work maintaining the SQL Server versions database at SQLSecurity.com and permission to implement the update feature taking data from his site

Smith Andy, [email protected]

for suggesting a feature

Otavio Augusto, [email protected]

for reporting a minor bug

Simon Baker, [email protected]

for reporting some bugs

Ryan Barnett, [email protected]

for organizing the ModSecurity SQL injection challenge, http://modsecurity.org/demo/challenge.html

Emiliano Bazaes, [email protected]

for reporting a minor bug

Daniele Bellucci, [email protected]

for starting sqlmap project and developing it between July and August 2006

Sebastian Bittig, [email protected] and the rest of the team at r-tec IT Systeme GmbH

for contributing the DB2 support initial patch: fingerprint and enumeration

Anthony Boynes, [email protected]

for reporting several bugs

Marcelo Toscani Brandao

for reporting a bug

Velky Brat, [email protected]

for suggesting a minor enhancement to the bisection algorithm

James Briggs, [email protected]

for suggesting a minor enhancement

Gianluca Brindisi, [email protected]

for reporting a couple of bugs

Jack Butler, [email protected]

for contributing the sqlmap site favicon

Ulisses Castro, [email protected]

for reporting a bug

Roberto Castrogiovanni, [email protected]

for reporting a minor bug

Cesar Cerrudo, [email protected]

for his Windows access token kidnapping tool Churrasco included in sqlmap tree as a contrib library and used to run the stand-alone payload stager on the target Windows machine as SYSTEM user if the user wants to perform a privilege escalation attack, http://www.argeniss.com/research/TokenKidnapping.pdf

Karl Chen, [email protected]

for contributing the initial multi-threading patch for the inference algorithm

Y P Chien, [email protected]

for reporting a minor bug

Pierre Chifflier, [email protected] and Mark Hymers, [email protected]

for uploading and accepting the sqlmap Debian package to the official Debian project repository

Hysia Chow [email protected]

for contributing a couple of WAF scripts

Chris Clements, [email protected]

for reporting a couple of bugs

John Cobb, [email protected]

for reporting a minor bug

Andreas Constantinides, [email protected]

for reporting a minor bug

Andre Costa, [email protected]

for reporting a minor bug
for suggesting a minor enhancement

Ulises U. Cune, [email protected]

for reporting a bug

Alessandro Curio, [email protected]

for reporting a minor bug

Alessio Dalla Piazza, [email protected]

for reporting a couple of bugs

Sherif El-Deeb, [email protected]

for reporting a minor bug

Stefano Di Paola, [email protected]

for suggesting good features

Mosk Dmitri, [email protected]

for reporting a minor bug

Meng Dong, [email protected]

for contributing a code for Waffit integration

Carey Evans, [email protected]

for his fcrypt module that allows crypt(3) support on Windows platforms

Shawn Evans, [email protected]

for suggesting an idea for one tamper script, greatest.py

Adam Faheem, [email protected]

for reporting a few bugs

James Fisher, [email protected]

for contributing two very good feature requests
for his great tool too brute force directories and files names on web/application servers, DirBuster, http://tinyurl.com/dirbuster

Jim Forster, [email protected]

for reporting a bug

Rong-En Fan, [email protected]

for commiting the sqlmap 0.5 port to the official FreeBSD project repository

Giorgio Fedon, [email protected]

for suggesting a speed improvement for bisection algorithm
for reporting a bug when running against Microsoft SQL Server 2005

Kasper Fons, [email protected]

for reporting several bugs

Jose Fonseca, [email protected]

for his Gprof2Dot utility for converting profiler output to dot graph(s) and for his XDot utility to render nicely dot graph(s), both included in sqlmap tree inside extra folder. These libraries are used for sqlmap development purposes only http://code.google.com/p/jrfonseca/wiki/Gprof2Dot http://code.google.com/p/jrfonseca/wiki/XDot

Alan Franzoni, [email protected]

for helping me out with Python subprocess library

Harold Fry, [email protected]

for suggesting a minor enhancement

Daniel G. Gamonal, [email protected]

for reporting a minor bug

Marcos Mateos Garcia, [email protected]

for reporting a minor bug

Andrew Gecse, [email protected]

for reporting a minor issue

Ivan Giacomelli, [email protected]

for reporting a bug
for suggesting a minor enhancement
for reviewing the documentation

Nico Golde, [email protected]

for reporting a couple of bugs

Oliver Gruskovnjak, [email protected]

for reporting a bug
for contributing a minor patch

Davide Guerri, [email protected]

for suggesting an enhancement

Dan Guido, [email protected]

for promoting sqlmap in the context of the Penetration Testing and Vulnerability Analysis class at the Polytechnic University of New York, http://isisblogs.poly.edu/courses/pentest/

David Guimaraes, [email protected]

for reporting considerable amount of bugs
for suggesting several features

Chris Hall, [email protected]

for coding the prettyprint.py library

Tate Hansen, [email protected]

for donating to sqlmap development

Mario Heiderich, [email protected] Christian Matthies, [email protected] Lars H. Strojny, [email protected]

for their great tool PHPIDS included in sqlmap tree as a set of rules for testing payloads against IDS detection, http://php-ids.org

Kristian Erik Hermansen, [email protected]

for reporting a bug
for donating to sqlmap development

Alexander Hagenah, [email protected]

for reporting a minor bug

Dennis Hecken, [email protected]

for reporting a minor bug

Choi Ho, [email protected]

for reporting a minor bug

Jorge Hoya, [email protected]

for suggesting a minor enhancement

Will Holcomb, [email protected]

for his MultipartPostHandler class to handle multipart POST forms and permission to include it within sqlmap source code

Daniel Huckmann, [email protected]

for reporting a couple of bugs

Daliev Ilya, [email protected]

for reporting a bug

Jovon Itwaru, [email protected]

for reporting a minor bug

Prashant Jadhav, [email protected]

for reporting a bug

Dirk Jagdmann, [email protected]

for reporting a typo in the documentation

Luke Jahnke, [email protected]

for reporting a bug when running against MySQL < 5.0

David Klein, [email protected]

for reporting a minor code improvement

Sven Klemm, [email protected]

for reporting two minor bugs with PostgreSQL

Anant Kochhar, [email protected]

for providing with feedback on the user's manual

Dmitriy Kononov, [email protected]

for reporting a minor bug

Alexander Kornbrust, [email protected]

for reporting a couple of bugs

Krzysztof Kotowicz, [email protected]

for reporting a minor bug

Nicolas Krassas, [email protected]

for reporting a couple of bugs

Oliver Kuckertz, [email protected]

for contributing a minor patch

Alex Landa, [email protected]

for contributing a patch adding beta support for XML output

Guido Landi, [email protected]

for reporting a couple of bugs
for the great technical discussions
for Microsoft SQL Server 2000 and Microsoft SQL Server 2005 'sp_replwritetovarbin' stored procedure heap-based buffer overflow (MS09-004) exploit development
for presenting with me at SOURCE Conference 2009 in Barcelona (Spain) on September 21, 2009 and at CONfidence 2009 in Warsaw (Poland) on November 20, 2009

Lee Lawson, [email protected]

for reporting a minor bug

John J. Lee, [email protected] and others

for developing the clientform Python library used by sqlmap to parse forms when --forms switch is specified

Nico Leidecker, [email protected]

for providing with feedback on a few features
for reporting a couple of bugs
for his great tool icmpsh included in sqlmap tree to get a command prompt via an out-of-band tunnel over ICMP, http://leidecker.info/downloads/icmpsh.zip

Gabriel Lima, [email protected]

for reporting a couple of bugs

Svyatoslav Lisin, [email protected]

for suggesting a minor feature

Miguel Lopes, [email protected]

for reporting a minor bug

Truong Duc Luong, [email protected]

for reporting a minor bug

Pavol Luptak, [email protected]

for reporting a bug when injecting on a POST data parameter

Till Maas, [email protected]

for suggesting a minor feature

Michael Majchrowicz, [email protected]

for extensively beta-testing sqlmap on various MySQL DBMS
for providing really appreciated feedback
for suggesting a lot of ideas and features

Ahmad Maulana, [email protected]

for contributing one tamper script, halfversionedmorekeywords.py

Ferruh Mavituna, [email protected]

for exchanging ideas on the implementation of a couple of features

David McNab, [email protected]

for his XMLObject module that allows XML files to be operated on like Python objects

Spencer J. McIntyre, [email protected]

for reporting a minor bug
for contributing a patch for OS fingerprinting on DB2

Brad Merrell, [email protected]

for reporting a minor bug

Michael Meyer, [email protected]

for suggesting a minor feature

Enrico Milanese, [email protected]

for reporting a minor bug
for sharing some ideas for the PHP backdoor

Liran Mimoni, [email protected]

for reporting a minor bug

Marco Mirandola, [email protected]

for reporting a minor bug

Devon Mitchell, [email protected]

for reporting a minor bug

Anton Mogilin, [email protected]

for reporting a few bugs

Sergio Molina, [email protected]

for reporting a minor bug

Anastasios Monachos, [email protected]

for providing some useful data
for suggesting a feature
for reporting a couple of bugs

Kirill Morozov, [email protected]

for reporting a bug
for suggesting a feature

Alejo Murillo Moya, [email protected]

for reporting a minor bug
for suggesting a few features

Yonny Mutai, [email protected]

for reporting a minor bug

Roberto Nemirovsky, [email protected]

for pointing me out some enhancements

Simone Onofri, [email protected]

for patching the PHP web backdoor to make it work properly also on Windows

Michele Orru, [email protected]

for reporting a couple of bug
for suggesting ideas on how to implement the RESTful API

Shaohua Pan, [email protected]

for reporting several bugs
for suggesting a few features

Antonio Parata, [email protected]

for sharing some ideas for the PHP backdoor

Adrian Pastor, [email protected]

for donating to sqlmap development

Christopher Patten, [email protected]

for reporting a bug in the blind SQL injection bisection algorithm

Zack Payton, [email protected]

for reporting a minor bug

Jaime Penalba, [email protected]

for contributing a patch for INSERT/UPDATE generic boundaries

Pedrito Perez, [email protected]

for reporting a couple of bugs

Brandon Perry, [email protected]

for reporting a couple of bugs

Travis Phillips, [email protected]

for suggesting a minor enhancement

Mark Pilgrim, [email protected]

for porting chardet package (Universal Encoding Detector) to Python

Steve Pinkham, [email protected]

for suggesting a feature
for contributing a new SQL injection vector (MSSQL time-based blind)
for donating to sqlmap development

Adam Pridgen, [email protected]

for suggesting some features

Luka Pusic, [email protected]

for reporting a couple of bugs

Ole Rasmussen, [email protected]

for reporting a bug
for suggesting a feature

Alberto Revelli, [email protected]

for inspiring me to write sqlmap user's manual in SGML
for his great Microsoft SQL Server take over tool, sqlninja, http://sqlninja.sourceforge.net

David Rhoades, [email protected]

for reporting a bug

Andres Riancho, [email protected]

for beta-testing sqlmap
for reporting a bug and suggesting some features
for including sqlmap in his great web application audit and attack framework, w3af, http://w3af.sourceforge.net
for suggesting a way for handling DNS caching

Jamie Riden, [email protected]

for reporting a minor bug

Alexander Rigbo, [email protected]

for contributing a minor patch

Antonio Riva, [email protected]

for reporting a bug when running with python 2.5

Ethan Robish, [email protected]

for reporting a bug

Levente Rog, [email protected]

for reporting a minor bug

Andrea Rossi, [email protected]

for reporting a minor bug
for suggesting a feature

Frederic Roy, [email protected]

for reporting a couple of bugs

Vladimir Rutsky, [email protected]

for suggesting a couple of minor enhancements

Richard Safran, [email protected]

for donating the sqlmap.org domain

Tomoyuki Sakurai, [email protected]

for submitting to the FreeBSD project the sqlmap 0.5 port

Roberto Salgado, [email protected]

for contributing considerable amount of tamper scripts

Pedro Jacques Santos Santiago, [email protected]

for reporting considerable amount of bugs

Marek Sarvas, [email protected]

for reporting several bugs

Philippe A. R. Schaeffer, [email protected]

for reporting a minor bug

Mohd Zamiri Sanin, [email protected]

for reporting a minor bug

Jorge Santos, [email protected]

for reporting a minor bug

Sven Schluter, [email protected]

for contributing a patch
for waiting a number of seconds between each HTTP request

Ryan Sears, [email protected]

for suggesting a couple of enhancements
for donating to sqlmap development

Uemit Seren, [email protected]

for reporting a minor adjustment when running with python 2.6

Shane Sewell, [email protected]

for suggesting a feature

Ahmed Shawky, [email protected]

for reporting a major bug with improper handling of parameter values
for reporting a bug

Brian Shura, [email protected]

for reporting a bug

Sumit Siddharth, [email protected]

for sharing ideas on the implementation of a couple of features

Andre Silva, [email protected]

for reporting a bug

Benjamin Silva H. [email protected]

for reporting a bug

Duarte Silva [email protected]

for reporting a couple of bugs

M Simkin, [email protected]

for suggesting a feature

Konrads Smelkovs, [email protected]

for reporting a few bugs in --sql-shell and --sql-query on Microsoft SQL Server

Chris Spencer, [email protected]

for reviewing the user's manual grammar

Michael D. Stenner, [email protected]

for his keepalive module that allows handling of persistent HTTP 1.1 keep-alive connections

Marek Stiefenhofer, [email protected]

for reporting a few bugs

Jason Swan, [email protected]

for reporting a bug when enumerating columns on Microsoft SQL Server
for suggesting a couple of improvements

Chilik Tamir, [email protected]

for contributing a patch for initial support SOAP requests

Alessandro Tanasi, [email protected]

for extensively beta-testing sqlmap
for suggesting many features and reporting some bugs
for reviewing the documentation

Andres Tarasco, [email protected]

for contributing good feedback

Tom Thumb, [email protected]

for reporting a major bug

Kazim Bugra Tombul, [email protected]

for reporting a minor bug

Efrain Torres, [email protected]

for helping me out to improve the Metasploit Framework sqlmap auxiliary module and for commiting it on the Metasploit official subversion repository
for his great Metasploit WMAP Framework

Sandro Tosi, [email protected]

for helping to create sqlmap Debian package correctly

Jacco van Tuijl, [email protected]

for reporting several bugs

Vitaly Turenko, [email protected]

for reporting a bug

Augusto Urbieta, [email protected]

for reporting a minor bug

Bedirhan Urgun, [email protected]

for reporting a few bugs
for suggesting some features and improvements
for benchmarking sqlmap in the context of his SQL injection benchmark project, OWASP SQLiBench, http://code.google.com/p/sqlibench

Kyprianos Vasilopoulos, [email protected]

for reporting a couple of minor bugs

Vlado Velichkovski, [email protected]

for reporting considerable amount of bugs
for suggesting an enhancement

Johnny Venter, [email protected]

for reporting a couple of bugs

Carlos Gabriel Vergara, [email protected]

for suggesting couple of good features

Patrick Webster, [email protected]

for suggesting an enhancement

Ed Williams, [email protected]

for suggesting a minor enhancement

Anthony Zboralski, [email protected]

for providing with detailed feedback
for reporting a few minor bugs
for donating to sqlmap development

Thierry Zoller, [email protected]

for reporting a couple of major bugs

Zhen Zhou, [email protected]

for suggesting a feature

-insane-, [email protected]

for reporting a minor bug

1ndr4 joe, [email protected]

for reporting a couple of bugs

abc abc, [email protected]

for reporting a minor bug

Abuse 007, [email protected]

for reporting a bug

Alex, [email protected]

for reporting a minor bug

anonymous anonymous, [email protected]

for reporting a couple of bugs

bamboo, [email protected]

for reporting a couple of bugs

Brandon E., [email protected]

for reporting a bug

black zero, [email protected]

for reporting a minor bug

blueBoy, [email protected]

for reporting a bug

buawig, [email protected]

for reporting considerable amount of bugs

Bugtrace, [email protected]

for reporting several bugs

cats, [email protected]

for reporting a couple of bugs

Christian S, [email protected]

for reporting a minor bug

clav, [email protected]

for reporting a minor bug

dragoun dash, [email protected]

for reporting a minor bug

fufuh, [email protected]

for reporting a bug when running on Windows

Hans Wurst, [email protected]

for reporting a couple of bugs

james, [email protected]

for reporting a bug

Joe "Pragmatk", [email protected]

for reporting a few bugs

John Smith, [email protected]

for reporting several bugs
for suggesting some features

m4l1c3, [email protected]

for reporting considerable amount of bugs

mariano, [email protected]

for reporting a bug

mitchell, [email protected]

for reporting a few bugs

Nadzree, [email protected]

for reporting a minor bug

nightman, [email protected]

for reporting considerable amount of bugs

Oso Dog [email protected]

for reporting a minor bug

pacman730, [email protected]

for reporting a bug

pentestmonkey, [email protected]

for reporting several bugs
for suggesting a few minor enhancements

Phat R., [email protected]

for reporting a few bugs

Phil P, <@superevr>

for suggesting a minor enhancement

ragos, [email protected]

for reporting a minor bug

rmillet, [email protected]

for reporting a bug

Rub3nCT, [email protected]

for reporting a minor bug

shiftzwei, [email protected]

for reporting a couple of bugs

smith, [email protected]

for reporting a minor bug

Soma Cruz, [email protected]

for reporting a minor bug

Stuffe, [email protected]

for reporting a minor bug and a feature request

Sylphid, [email protected]

for suggesting some features

syssecurity.info, [email protected]

for reporting a minor bug

This LittlePiggy, [email protected]

for reporting a minor bug

ToR, [email protected]

for reporting considerable amount of bugs
for suggesting a feature

ultramegaman, [email protected]

for reporting a minor bug

Vinicius, [email protected]

for reporting a minor bug

wanglei, [email protected]

for reporting a minor bug

warninggp, [email protected]

for reporting a few minor bugs

x, [email protected]

for reporting a bug

zhouhx, [email protected]

for contributing a minor patch

Organizations

Black Hat team, [email protected]

for the opportunity to present my research titled 'Advanced SQL injection to operating system full control' at Black Hat Europe 2009 Briefings on April 16, 2009 in Amsterdam (NL). I unveiled and demonstrated some of the sqlmap 0.7 release candidate version new features during my presentation
Homepage: http://goo.gl/BKfs7
Slides: http://goo.gl/Dh65t
White paper: http://goo.gl/spX3N

SOURCE Conference team, [email protected]

for the opportunity to present my research titled 'Expanding the control over the operating system from the database' at SOURCE Conference 2009 on September 21, 2009 in Barcelona (ES). I unveiled and demonstrated some of the sqlmap 0.8 release candidate version new features during my presentation
Homepage: http://goo.gl/IeXV4
Slides: http://goo.gl/OKnfj

AthCon Conference team, [email protected]

for the opportunity to present my research titled 'Got database access? Own the network!' at AthCon Conference 2010 on June 3, 2010 in Athens (GR). I unveiled and demonstrated some of the sqlmap 0.8 version features during my presentation
Homepage: http://goo.gl/Fs71I
Slides: http://goo.gl/QMfjO

Metasploit Framework development team, [email protected]

for their powerful tool Metasploit Framework, used by sqlmap, among others things, to create the shellcode and establish an out-of-band connection between sqlmap and the database server
Homepage: http://www.metasploit.com

OWASP Board, [email protected]

for sponsoring part of the sqlmap development in the context of OWASP Spring of Code 2007
Homepage: http://www.owasp.org