sqlmap/lib/parse/headers.py

#!/usr/bin/env python

"""
$Id$

Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)
See the file 'doc/COPYING' for copying permission
"""

import os

from lib.core.common import checkFile
from lib.core.common import parseXmlFile
from lib.core.data import kb
from lib.core.data import paths
from lib.parse.handler import FingerprintHandler

def headersParser(headers):
    """
    This function calls a class that parses the input HTTP headers to
    fingerprint the back-end database management system operating system
    and the web application technology
    """

    # It is enough to parse the headers on first four HTTP responses
    if kb.headersCount > 3:
        return

    kb.headersCount += 1

    topHeaders = {
                   "cookie":                          os.path.join(paths.SQLMAP_XML_BANNER_PATH, "cookie.xml"),
                   "microsoftsharepointteamservices": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "sharepoint.xml"),
                   "server":                          os.path.join(paths.SQLMAP_XML_BANNER_PATH, "server.xml"),
                   "servlet-engine":                  os.path.join(paths.SQLMAP_XML_BANNER_PATH, "servlet.xml"),
                   "set-cookie":                      os.path.join(paths.SQLMAP_XML_BANNER_PATH, "cookie.xml"),
                   "x-aspnet-version":                os.path.join(paths.SQLMAP_XML_BANNER_PATH, "x-aspnet-version.xml"),
                   "x-powered-by":                    os.path.join(paths.SQLMAP_XML_BANNER_PATH, "x-powered-by.xml")
                 }

    for header in headers:
        if header in topHeaders.keys():
            value   = headers[header]
            xmlfile = topHeaders[header]

            checkFile(xmlfile)

            handler = FingerprintHandler(value, kb.headersFp)

            parseXmlFile(xmlfile, handler)
            parseXmlFile(paths.GENERIC_XML, handler)
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00			`#!/usr/bin/env python`

			`"""`
			$Id$

large commit with copyright header modifications 2010-10-14 18:41:14 +04:00			`Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)`
sorry, cosmetics 2010-10-15 03:18:29 +04:00			`See the file 'doc/COPYING' for copying permission`
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00			`"""`

sqlmap 0.8-rc2: minor enhancement based on msfencode 3.3.3-dev -t exe-small so that also PostgreSQL supports again the out-of-band via Metasploit payload stager optionally to shellcode execution in-memory via sys_bineval() UDF. Speed up OOB connect back. Cleanup target file system after --os-pwn too. Minor bug fix to correctly forge file system paths with os.path.join() all around. Minor code refactoring and user's manual update. 2009-12-18 01:04:01 +03:00			`import os`

Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00			`from lib.core.common import checkFile`
some code refactoring 2010-04-16 23:57:00 +04:00			`from lib.core.common import parseXmlFile`
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00			`from lib.core.data import kb`
			`from lib.core.data import paths`
Minor enhancement to fingerprint the web server operating system and the web application technology by parsing also HTTP response Server header. Refactor libraries and plugins that parses XML to fingerprint and show on standard output the information. Updated changelog. 2008-11-18 20:42:46 +03:00			`from lib.parse.handler import FingerprintHandler`
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00
			`def headersParser(headers):`
			`"""`
			`This function calls a class that parses the input HTTP headers to`
			`fingerprint the back-end database management system operating system`
Minor code adjustments 2008-11-17 03:13:49 +03:00			`and the web application technology`
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00			`"""`

Added new HTTP response headers on which fingerprint web app technology and web server OS. Updated documentation. 2008-11-19 18:33:39 +03:00			`# It is enough to parse the headers on first four HTTP responses`
Minor enhancement to fingerprint the web server operating system and the web application technology by parsing also HTTP response Server header. Refactor libraries and plugins that parses XML to fingerprint and show on standard output the information. Updated changelog. 2008-11-18 20:42:46 +03:00			`if kb.headersCount > 3:`
			`return`

			`kb.headersCount += 1`

Major enhancement to the engine to parse XML files and matches on DBMS banner and HTTP response headers. Initial web application technology fingerprint (for the moment based only on X-Powered-By HTTP response header and not shown yet to the user). Minor layout adjustments. 2008-11-17 20:41:02 +03:00			`topHeaders = {`
sqlmap 0.8-rc2: minor enhancement based on msfencode 3.3.3-dev -t exe-small so that also PostgreSQL supports again the out-of-band via Metasploit payload stager optionally to shellcode execution in-memory via sys_bineval() UDF. Speed up OOB connect back. Cleanup target file system after --os-pwn too. Minor bug fix to correctly forge file system paths with os.path.join() all around. Minor code refactoring and user's manual update. 2009-12-18 01:04:01 +03:00			`"cookie": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "cookie.xml"),`
			`"microsoftsharepointteamservices": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "sharepoint.xml"),`
			`"server": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "server.xml"),`
			`"servlet-engine": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "servlet.xml"),`
			`"set-cookie": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "cookie.xml"),`
			`"x-aspnet-version": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "x-aspnet-version.xml"),`
			`"x-powered-by": os.path.join(paths.SQLMAP_XML_BANNER_PATH, "x-powered-by.xml")`
Major enhancement to the engine to parse XML files and matches on DBMS banner and HTTP response headers. Initial web application technology fingerprint (for the moment based only on X-Powered-By HTTP response header and not shown yet to the user). Minor layout adjustments. 2008-11-17 20:41:02 +03:00			`}`
Minor layout adjustments, minor fixes and updated changelog 2008-11-17 03:00:54 +03:00
			`for header in headers:`
Major enhancement to the engine to parse XML files and matches on DBMS banner and HTTP response headers. Initial web application technology fingerprint (for the moment based only on X-Powered-By HTTP response header and not shown yet to the user). Minor layout adjustments. 2008-11-17 20:41:02 +03:00			`if header in topHeaders.keys():`
Added new HTTP response headers on which fingerprint web app technology and web server OS. Updated documentation. 2008-11-19 18:33:39 +03:00			`value = headers[header]`
Major enhancement to the engine to parse XML files and matches on DBMS banner and HTTP response headers. Initial web application technology fingerprint (for the moment based only on X-Powered-By HTTP response header and not shown yet to the user). Minor layout adjustments. 2008-11-17 20:41:02 +03:00			`xmlfile = topHeaders[header]`
Added new HTTP response headers on which fingerprint web app technology and web server OS. Updated documentation. 2008-11-19 18:33:39 +03:00
Major enhancement to the engine to parse XML files and matches on DBMS banner and HTTP response headers. Initial web application technology fingerprint (for the moment based only on X-Powered-By HTTP response header and not shown yet to the user). Minor layout adjustments. 2008-11-17 20:41:02 +03:00			`checkFile(xmlfile)`
Added new HTTP response headers on which fingerprint web app technology and web server OS. Updated documentation. 2008-11-19 18:33:39 +03:00
Minor enhancement to fingerprint the web server operating system and the web application technology by parsing also HTTP response Server header. Refactor libraries and plugins that parses XML to fingerprint and show on standard output the information. Updated changelog. 2008-11-18 20:42:46 +03:00			`handler = FingerprintHandler(value, kb.headersFp)`
Added new HTTP response headers on which fingerprint web app technology and web server OS. Updated documentation. 2008-11-19 18:33:39 +03:00
some code refactoring 2010-04-16 23:57:00 +04:00			`parseXmlFile(xmlfile, handler)`
			`parseXmlFile(paths.GENERIC_XML, handler)`