tutorial0
diff --git a/‎doc/README.html‎
Lines changed: 11 additions & 0 deletions b/‎doc/README.html‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎doc/README.pdf‎
617 Bytes b/‎doc/README.pdf‎
617 Bytes
diff --git a/‎doc/README.sgml‎
Lines changed: 9 additions & 0 deletions b/‎doc/README.sgml‎
Lines changed: 9 additions & 0 deletions
diff --git a/‎doc/THANKS‎
Lines changed: 3 additions & 0 deletions b/‎doc/THANKS‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎lib/parse/headers.py‎
Lines changed: 10 additions & 8 deletions b/‎lib/parse/headers.py‎
Lines changed: 10 additions & 8 deletions
diff --git a/‎xml/banner/cookie.xml‎
Lines changed: 33 additions & 0 deletions b/‎xml/banner/cookie.xml‎
Lines changed: 33 additions & 0 deletions
diff --git a/‎xml/banner/generic.xml‎
Lines changed: 3 additions & 0 deletions b/‎xml/banner/generic.xml‎
Lines changed: 3 additions & 0 deletions
@@ -317,6 +317,17 @@ <H2><A NAME="s3">3.</A> <A HREF="#toc3">Download and update</A></H2>
 option to update it to the latest stable version available on its
 <A HREF="http://sourceforge.net/project/showfiles.php?group_id=171598&amp;package_id=196107">SourceForge File List page</A>.</P>
 
+<P>You can also checkout the source code from the sqlmap
+<A HREF="https://svn.sqlmap.org/sqlmap/trunk/sqlmap/">Subversion</A>
+repository to give a try to the development release:</P>
+<P>
+<BLOCKQUOTE><CODE>
+<PRE>
+$ svn checkout https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlmap-dev
+</PRE>
+</CODE></BLOCKQUOTE>
+</P>
+
 
 <H2><A NAME="s4">4.</A> <A HREF="#toc4">License and copyright</A></H2>
 
 
@@ -280,6 +280,15 @@ option to update it to the latest stable version available on its
 <htmlurl url="http://sourceforge.net/project/showfiles.php?group_id=171598&amp;package_id=196107"
 name="SourceForge File List page">.
 
+<p>
+You can also checkout the source code from the sqlmap
+<htmlurl url="https://svn.sqlmap.org/sqlmap/trunk/sqlmap/" name="Subversion">
+repository to give a try to the development release:
+
+<tscreen><verb>
+$ svn checkout https://svn.sqlmap.org/sqlmap/trunk/sqlmap sqlmap-dev
+</verb></tscreen>
+
 
 <sect>License and copyright
 
 
@@ -51,6 +51,9 @@ Will Holcomb <wholcomb@gmail.com>
 Luke Jahnke <luke.jahnke@gmail.com>
     for reporting a bug when running against MySQL < 5.0
 
+Nico Leidecker <nico@leidecker.info>
+    for providing with feedback on a few features
+
 Pavol Luptak <pavol.luptak@nethemba.com>
     for reporting a bug when injecting on a POST data parameter
 
 
@@ -41,28 +41,30 @@ def headersParser(headers):
     and the web application technology
     """
 
+    # It is enough to parse the headers on first four HTTP responses
     if kb.headersCount > 3:
         return
 
     kb.headersCount += 1
 
-    # TODO: ahead here
     topHeaders = {
-                   #"cookie":                          "%s/cookie.xml" % paths.SQLMAP_XML_BANNER_PATH,
-                   #"microsoftsharepointteamservices": "%s/microsoftsharepointteamservices.xml" % paths.SQLMAP_XML_BANNER_PATH,
+                   "cookie":                          "%s/cookie.xml" % paths.SQLMAP_XML_BANNER_PATH,
+                   "microsoftsharepointteamservices": "%s/sharepoint.xml" % paths.SQLMAP_XML_BANNER_PATH,
                    "server":                          "%s/server.xml" % paths.SQLMAP_XML_BANNER_PATH,
-                   #"servlet-engine":                  "%s/servlet-engine.xml" % paths.SQLMAP_XML_BANNER_PATH,
-                   #"set-cookie":                      "%s/cookie.xml" % paths.SQLMAP_XML_BANNER_PATH,
-                   #"www-authenticate":                "%s/www-authenticate.xml" % paths.SQLMAP_XML_BANNER_PATH,
-                   #"x-aspnet-version":                "%s/x-aspnet-version.xml" % paths.SQLMAP_XML_BANNER_PATH,
+                   "servlet-engine":                  "%s/servlet.xml" % paths.SQLMAP_XML_BANNER_PATH,
+                   "set-cookie":                      "%s/cookie.xml" % paths.SQLMAP_XML_BANNER_PATH,
+                   "x-aspnet-version":                "%s/x-aspnet-version.xml" % paths.SQLMAP_XML_BANNER_PATH,
                    "x-powered-by":                    "%s/x-powered-by.xml" % paths.SQLMAP_XML_BANNER_PATH,
                  }
 
     for header in headers:
         if header in topHeaders.keys():
-            value = headers[header]
+            value   = headers[header]
             xmlfile = topHeaders[header]
+
             checkFile(xmlfile)
+
             handler = FingerprintHandler(value, kb.headersFp)
+
             parse(xmlfile, handler)
             parse(paths.GENERIC_XML, handler)
@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+     References:
+     * http://www.http-stats.com/Set-Cookie2
+     * http://www.owasp.org/index.php/Category:OWASP_Cookies_Database
+-->
+
+<root>
+    <regexp value="ASPSESSIONID">
+        <info technology="Microsoft IIS|ASP" type="Windows" distrib="2000"/>
+    </regexp>
+
+    <regexp value="ASP\.NET_SessionId">
+        <info technology="Microsoft IIS|ASP.NET" type="Windows" distrib="2003"/>
+    </regexp>
+
+    <regexp value="JSESSIONID">
+        <info technology="JSP"/>
+    </regexp>
+
+    <regexp value="PHPSESSION">
+        <info technology="PHP"/>
+    </regexp>
+
+    <regexp value="Apache">
+        <info technology="Apache"/>
+    </regexp>
+
+    <regexp value="JServSessionId">
+        <info technology="Apache|JSP"/>
+    </regexp>
+</root>
@@ -2,6 +2,7 @@
 
 <root>
     <!-- Windows -->
+
     <regexp value="(Microsoft|Windows|Win32)">
         <info type="Windows"/>
     </regexp>
@@ -39,6 +40,7 @@
     </regexp>
 
     <!-- Linux -->
+
     <regexp value="Linux">
         <info type="Linux"/>
     </regexp>
@@ -88,6 +90,7 @@
     </regexp>
 
     <!-- Unices -->
+
     <regexp value="FreeBSD">
         <info type="FreeBSD"/>
     </regexp>