sqlmap/tamper/informationschemacomment.py

#!/usr/bin/env python

"""
Copyright (c) 2006-2018 sqlmap developers (http://sqlmap.org/)
See the file 'LICENSE' for copying permission
"""

import re

from lib.core.enums import PRIORITY

__priority__ = PRIORITY.NORMAL

def tamper(payload, **kwargs):
    """
    Add a comment to the end of all occurrences of (blacklisted) "information_schema" identifier

    >>> tamper('SELECT table_name FROM INFORMATION_SCHEMA.TABLES')
    'SELECT table_name FROM INFORMATION_SCHEMA/**/.TABLES'
    """

    retVal = payload

    if payload:
        retVal = re.sub(r"(?i)(information_schema)\.", "\g<1>/**/.", payload)

    return retVal
Implements #1207 2015-03-26 13:57:51 +03:00			`#!/usr/bin/env python`

			`"""`
Update of copyright years 2018-01-02 02:48:10 +03:00			`Copyright (c) 2006-2018 sqlmap developers (http://sqlmap.org/)`
Replacing doc/COPYING to LICENSE 2017-10-11 15:50:46 +03:00			`See the file 'LICENSE' for copying permission`
Implements #1207 2015-03-26 13:57:51 +03:00			`"""`

			`import re`

			`from lib.core.enums import PRIORITY`

Minor refactoring 2018-02-08 18:49:16 +03:00			`__priority__ = PRIORITY.NORMAL`
Implements #1207 2015-03-26 13:57:51 +03:00
			`def tamper(payload, **kwargs):`
			`"""`
			`Add a comment to the end of all occurrences of (blacklisted) "information_schema" identifier`

			`>>> tamper('SELECT table_name FROM INFORMATION_SCHEMA.TABLES')`
			`'SELECT table_name FROM INFORMATION_SCHEMA/**/.TABLES'`
			`"""`

			`retVal = payload`

			`if payload:`
			`retVal = re.sub(r"(?i)(information_schema)\.", "\g<1>/**/.", payload)`

			`return retVal`