sqlmap/tamper/randomcomments.py

#!/usr/bin/env python

"""
Copyright (c) 2006-2020 sqlmap developers (http://sqlmap.org/)
See the file 'LICENSE' for copying permission
"""

import re

from lib.core.common import randomRange
from lib.core.compat import xrange
from lib.core.data import kb
from lib.core.enums import PRIORITY

__priority__ = PRIORITY.LOW

def tamper(payload, **kwargs):
    """
    Add random inline comments inside SQL keywords (e.g. SELECT -> S/**/E/**/LECT)

    >>> import random
    >>> random.seed(0)
    >>> tamper('INSERT')
    'I/**/NS/**/ERT'
    """

    retVal = payload

    if payload:
        for match in re.finditer(r"\b[A-Za-z_]+\b", payload):
            word = match.group()

            if len(word) < 2:
                continue

            if word.upper() in kb.keywords:
                _ = word[0]

                for i in xrange(1, len(word) - 1):
                    _ += "%s%s" % ("/**/" if randomRange(0, 1) else "", word[i])

                _ += word[-1]

                if "/**/" not in _:
                    index = randomRange(1, len(word) - 1)
                    _ = word[:index] + "/**/" + word[index:]

                retVal = retVal.replace(word, _)

    return retVal
Last preparations for DREI 2019-05-08 13:47:52 +03:00			`#!/usr/bin/env python`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00
			`"""`
Copyright year bump 2020-01-01 15:25:15 +03:00			`Copyright (c) 2006-2020 sqlmap developers (http://sqlmap.org/)`
Replacing doc/COPYING to LICENSE 2017-10-11 15:50:46 +03:00			`See the file 'LICENSE' for copying permission`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00			`"""`

			`import re`

			`from lib.core.common import randomRange`
Some more DREI stuff 2019-03-28 18:04:38 +03:00			`from lib.core.compat import xrange`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00			`from lib.core.data import kb`
			`from lib.core.enums import PRIORITY`

			`__priority__ = PRIORITY.LOW`

Update for an Issue #12 2012-12-03 17:27:01 +04:00			`def tamper(payload, **kwargs):`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00			`"""`
Implementation for an Issue #3108 2018-07-31 03:18:33 +03:00			`Add random inline comments inside SQL keywords (e.g. SELECT -> S//E//LECT)`
Another update for an Issue #352 and couple of fixes 2013-03-14 00:57:09 +04:00
			`>>> import random`
			`>>> random.seed(0)`
			`>>> tamper('INSERT')`
Stabilizing DREI 2019-05-03 14:20:15 +03:00			`'I//NS//ERT'`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00			`"""`

minor cosmetics on tamper scripts 2011-04-04 12:18:26 +04:00			`retVal = payload`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00
minor cosmetics on tamper scripts 2011-04-04 12:18:26 +04:00			`if payload:`
Fix for a tamper script (in some cases comments were not inserted) 2013-07-31 11:52:10 +04:00			`for match in re.finditer(r"\b[A-Za-z_]+\b", payload):`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00			`word = match.group()`

			`if len(word) < 2:`
			`continue`

			`if word.upper() in kb.keywords:`
Minor refactoring 2012-07-24 03:21:32 +04:00			`_ = word[0]`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00
			`for i in xrange(1, len(word) - 1):`
Minor refactoring 2012-07-24 03:21:32 +04:00			`_ += "%s%s" % ("/**/" if randomRange(0, 1) else "", word[i])`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00
Minor refactoring 2012-07-24 03:21:32 +04:00			`_ += word[-1]`
Fix for a tamper script (in some cases comments were not inserted) 2013-07-31 11:52:10 +04:00
			`if "/**/" not in _:`
			`index = randomRange(1, len(word) - 1)`
			`_ = word[:index] + "/**/" + word[index:]`

Minor refactoring 2012-07-24 03:21:32 +04:00			`retVal = retVal.replace(word, _)`
Converted from DOS format (\n\r to \n only) 2011-02-07 02:25:55 +03:00
Tamper function(s) refactoring (really no need for returning headers as they are passed by reference) 2012-10-25 12:10:23 +04:00			`return retVal`