sqlmap/lib/techniques/outband/stacked.py

#!/usr/bin/env python

"""
$Id$

Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)
See the file 'doc/COPYING' for copying permission
"""

import time

from lib.core.common import calculateDeltaSeconds
from lib.core.common import getDelayQuery
from lib.core.data import conf
from lib.core.data import kb
from lib.core.data import logger
from lib.core.session import setStacked
from lib.request import inject

def stackedTest():
    if conf.direct:
        return

    if kb.stackedTest is not None:
        return kb.stackedTest

    infoMsg  = "testing stacked queries support on parameter "
    infoMsg += "'%s'" % kb.injParameter
    logger.info(infoMsg)

    query      = getDelayQuery()
    start      = time.time()
    payload, _ = inject.goStacked(query)
    duration   = calculateDeltaSeconds(start)

    if duration >= conf.timeSec:
        infoMsg  = "the web application supports stacked queries "
        infoMsg += "on parameter '%s'" % kb.injParameter
        logger.info(infoMsg)

        kb.stackedTest = payload
    else:
        warnMsg  = "the web application does not support stacked queries "
        warnMsg += "on parameter '%s'" % kb.injParameter
        logger.warn(warnMsg)

        kb.stackedTest = False

    setStacked()

    return kb.stackedTest
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`#!/usr/bin/env python`

			`"""`
			$Id$

large commit with copyright header modifications 2010-10-14 18:41:14 +04:00			`Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)`
sorry, cosmetics 2010-10-15 03:18:29 +04:00			`See the file 'doc/COPYING' for copying permission`
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`"""`

			`import time`

added calculateDeltaSeconds method for dealing with non-deterministic time behaviour in some cases (e.g. WAITFOR DELAY in case of MSSQL) 2010-05-13 15:05:35 +04:00			`from lib.core.common import calculateDeltaSeconds`
Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`from lib.core.common import getDelayQuery`
			`from lib.core.data import conf`
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`from lib.core.data import kb`
			`from lib.core.data import logger`
Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`from lib.core.session import setStacked`
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`from lib.request import inject`

			`def stackedTest():`
Major enhancement to directly connect to the dbms without passing via a sql injection: adapted code accordingly - see #158. This feature relies on python third-party libraries to be able to connect to the database. For the moment it has been implemented for MySQL (with python-mysqldb module) and PostgreSQL (with python-psycopg2 module). Minor layout adjustments. 2010-03-27 02:23:25 +03:00			`if conf.direct:`
			`return`

sqlmap 0.8-rc3: Merge from Miroslav Stampar's branch fixing a bug when verbosity > 2, another major bug with urlencoding/urldecoding of POST data and Cookies, adding --drop-set-cookie option, implementing support to automatically decode gzip and deflate HTTP responses, support for Google dork page result (--gpage) and a minor code cleanup. 2010-01-02 05:02:12 +03:00			`if kb.stackedTest is not None:`
Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`return kb.stackedTest`

Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`infoMsg = "testing stacked queries support on parameter "`
			`infoMsg += "'%s'" % kb.injParameter`
			`logger.info(infoMsg)`

Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`query = getDelayQuery()`
			`start = time.time()`
			`payload, _ = inject.goStacked(query)`
added calculateDeltaSeconds method for dealing with non-deterministic time behaviour in some cases (e.g. WAITFOR DELAY in case of MSSQL) 2010-05-13 15:05:35 +04:00			`duration = calculateDeltaSeconds(start)`
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00
Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`if duration >= conf.timeSec:`
Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`infoMsg = "the web application supports stacked queries "`
			`infoMsg += "on parameter '%s'" % kb.injParameter`
			`logger.info(infoMsg)`

			`kb.stackedTest = payload`
			`else:`
			`warnMsg = "the web application does not support stacked queries "`
			`warnMsg += "on parameter '%s'" % kb.injParameter`
			`logger.warn(warnMsg)`

			`kb.stackedTest = False`

Updated to sqlmap 0.7 release candidate 1 2009-04-22 15:48:07 +04:00			`setStacked()`

Added support to test for stacked queries support and improved check for time based blind sql injection. Minor bug fix in --save option 2008-12-17 00:30:24 +03:00			`return kb.stackedTest`