sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-23 10:03:47 +03:00
Code Issues Packages Projects Releases Wiki Activity
4d8a49a87c
sqlmap/plugins/dbms/maxdb/enumeration.py

123 lines
3.9 KiB
Python
Raw Normal View History

added support for fingerprinting SAP MaxDB (Issue 143)
2010-08-30 17:29:19 +04:00
#!/usr/bin/env python
"""
$Id$
large commit with copyright header modifications
2010-10-14 18:41:14 +04:00
Copyright (c) 2006-2010 sqlmap developers (http://sqlmap.sourceforge.net/)
sorry, cosmetics
2010-10-15 03:18:29 +04:00
See the file 'doc/COPYING' for copying permission
added support for fingerprinting SAP MaxDB (Issue 143)
2010-08-30 17:29:19 +04:00
"""
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
from lib.core.common import Backend
from lib.core.common import isTechniqueAvailable
from lib.core.common import randomStr
from lib.core.data import conf
implemented --banner for MaxDB and some minor fixes
2010-11-02 23:51:55 +03:00
from lib.core.data import kb
implemented active fingerprinting for MaxDB
2010-08-30 18:16:23 +04:00
from lib.core.data import logger
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
from lib.core.data import queries
from lib.core.enums import PAYLOAD
minor update
2011-02-21 01:45:23 +03:00
from lib.core.exception import sqlmapMissingMandatoryOptionException
added support for fingerprinting SAP MaxDB (Issue 143)
2010-08-30 17:29:19 +04:00
from plugins.generic.enumeration import Enumeration as GenericEnumeration
class Enumeration(GenericEnumeration):
def __init__(self):
Minor bug fix - restored of so called kb.misc.testedDbms (now kb.misc.fpDbms) to force the DBMS (only) during the fingerprint phase
2011-01-14 14:55:20 +03:00
GenericEnumeration.__init__(self)
removed all trailing spaces from blank lines
2010-11-03 13:08:27 +03:00
implemented --banner for MaxDB and some minor fixes
2010-11-02 23:51:55 +03:00
kb.data.processChar = lambda x: x.replace('_', ' ') if x else x
added support for fingerprinting SAP MaxDB (Issue 143)
2010-08-30 17:29:19 +04:00
def getPasswordHashes(self):
warnMsg = "on SAP MaxDB it is not possible to enumerate the user password hashes"
logger.warn(warnMsg)
return {}
def searchDb(self):
warnMsg = "on SAP MaxDB it is not possible to search databases"
logger.warn(warnMsg)
return []
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
def getColumns(self, onlyColNames=False):
minor update
2011-02-21 01:45:23 +03:00
if not conf.tbl:
errMsg = "missing table parameter"
raise sqlmapMissingMandatoryOptionException, errMsg
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
if "." in conf.tbl:
conf.db, conf.tbl = conf.tbl.split(".")
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
self.forceDbmsEnum()
rootQuery = queries[Backend.getIdentifiedDbms()].columns
infoMsg = "fetching columns "
infoMsg += "for table '%s' " % conf.tbl
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
if conf.db:
infoMsg += "on schema '%s'" % conf.db
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
logger.info(infoMsg)
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
randStr = randomStr()
query = rootQuery.inband.query % (conf.tbl, ("'%s'" % conf.db) if conf.db != "USER" else 'USER')
retVal = self.__pivotDumpTable("(%s) AS %s" % (query, randStr), ['%s.columnname' % randStr,'%s.datatype' % randStr,'%s.len' % randStr], blind=True)
if retVal:
table = {}
columns = {}
for columnname, datatype, length in zip(retVal[0]["%s.columnname" % randStr], retVal[0]["%s.datatype" % randStr], retVal[0]["%s.len" % randStr]):
columns[columnname] = "%s(%s)" % (datatype, length)
table[conf.tbl] = columns
kb.data.cachedColumns[conf.db] = table
return kb.data.cachedColumns
def getTables(self, bruteForce=None):
self.forceDbmsEnum()
infoMsg = "fetching tables"
if conf.db:
infoMsg += " for schema '%s'" % conf.db
logger.info(infoMsg)
rootQuery = queries[Backend.getIdentifiedDbms()].tables
if conf.db:
if "," in conf.db:
dbs = conf.db.split(",")
else:
dbs = [conf.db]
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
else:
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
if not len(kb.data.cachedDbs):
dbs = self.getDbs()
else:
dbs = kb.data.cachedDbs
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
for db in dbs:
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
randStr = randomStr()
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
query = rootQuery.inband.query % (("'%s'" % db) if db != "USER" else 'USER')
retVal = self.__pivotDumpTable("(%s) AS %s" % (query, randStr), ['%s.tablename' % randStr], blind=True)
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
if retVal:
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
for table in retVal[0].values()[0]:
if not kb.data.cachedTables.has_key(db):
kb.data.cachedTables[db] = [table]
else:
kb.data.cachedTables[db].append(table)
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
return kb.data.cachedTables
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
def getDbs(self):
infoMsg = "fetching database names"
logger.info(infoMsg)
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
rootQuery = queries[Backend.getIdentifiedDbms()].dbs
--dump now works on MaxDB too
2011-02-21 01:07:12 +03:00
further improvement of MaxDB support
2011-02-21 01:41:42 +03:00
randStr = randomStr()
query = rootQuery.inband.query
retVal = self.__pivotDumpTable("(%s) AS %s" % (query, randStr), ['%s.schemaname' % randStr], blind=True)
if retVal:
kb.data.cachedDbs = retVal[0].values()[0]
return kb.data.cachedDbs
Reference in New Issue Copy Permalink