sqlmap/waf/secureiis.py

26 lines
690 B
Python
Raw Normal View History

2013-02-22 00:34:26 +04:00
#!/usr/bin/env python
"""
2017-01-02 16:19:18 +03:00
Copyright (c) 2006-2017 sqlmap developers (http://sqlmap.org/)
2013-02-22 00:34:26 +04:00
See the file 'doc/COPYING' for copying permission
"""
import re
from lib.core.settings import WAF_ATTACK_VECTORS
2013-02-22 00:34:26 +04:00
__product__ = "SecureIIS Web Server Security (BeyondTrust)"
def detect(get_page):
retval = False
for vector in WAF_ATTACK_VECTORS:
page, _, _ = get_page(get=vector)
retval = re.search(r"SecureIIS[^<]+Web Server Protection", page or "") is not None
retval |= "http://www.eeye.com/SecureIIS/" in (page or "")
2016-06-23 13:09:51 +03:00
retval |= re.search(r"\?subject=[^>]*SecureIIS Error", page or "") is not None
if retval:
break
2013-02-22 00:34:26 +04:00
return retval