2010-11-08 12:20:02 +03:00
#!/usr/bin/env python
"""
$ Id $
2011-04-15 16:33:18 +04:00
Copyright ( c ) 2006 - 2011 sqlmap developers ( http : / / sqlmap . sourceforge . net / )
2010-11-08 12:20:02 +03:00
See the file ' doc/COPYING ' for copying permission
"""
class PRIORITY :
2011-04-30 17:20:05 +04:00
LOWEST = - 100
LOWER = - 50
LOW = - 10
NORMAL = 0
HIGH = 10
HIGHER = 50
2010-11-08 12:20:02 +03:00
HIGHEST = 100
2011-01-13 14:24:03 +03:00
class SORTORDER :
2011-04-30 17:20:05 +04:00
FIRST = 0
SECOND = 1
THIRD = 2
FOURTH = 3
FIFTH = 4
LAST = 100
2011-01-13 14:24:03 +03:00
2010-11-08 12:20:02 +03:00
class DBMS :
2011-04-30 17:20:05 +04:00
ACCESS = " Microsoft Access "
2011-02-04 18:57:53 +03:00
FIREBIRD = " Firebird "
2011-04-30 17:20:05 +04:00
MAXDB = " SAP MaxDB "
MSSQL = " Microsoft SQL Server "
MYSQL = " MySQL "
ORACLE = " Oracle "
PGSQL = " PostgreSQL "
SQLITE = " SQLite "
SYBASE = " Sybase "
2010-11-08 12:20:02 +03:00
2011-04-23 20:25:09 +04:00
class OS :
2011-04-30 17:20:05 +04:00
LINUX = " Linux "
2011-04-23 20:25:09 +04:00
WINDOWS = " Windows "
2010-11-08 12:20:02 +03:00
class PLACE :
2011-04-30 17:20:05 +04:00
GET = " GET "
POST = " POST "
SOAP = " SOAP "
URI = " URI "
COOKIE = " Cookie "
UA = " User-Agent "
2011-02-12 02:07:03 +03:00
REFERER = " Referer "
2010-11-08 12:44:32 +03:00
class HTTPMETHOD :
2011-04-30 17:20:05 +04:00
GET = " GET "
POST = " POST "
HEAD = " HEAD "
2010-11-08 12:49:57 +03:00
class NULLCONNECTION :
2011-04-30 17:20:05 +04:00
HEAD = " HEAD "
RANGE = " Range "
2010-11-23 16:24:02 +03:00
class HASH :
2011-04-30 17:20:05 +04:00
MYSQL = r ' (?i) \ A \ *[0-9a-f] {40} \ Z '
MYSQL_OLD = r ' (?i) \ A[0-9a-f] {16} \ Z '
POSTGRES = r ' (?i) \ Amd5[0-9a-f] {32} \ Z '
MSSQL = r ' (?i) \ A0x0100[0-9a-f] {8} [0-9a-f] {40} \ Z '
MSSQL_OLD = r ' (?i) \ A0x0100[0-9a-f] {8} [0-9a-f] {80} \ Z '
ORACLE = r ' (?i) \ As:[0-9a-f] {60} \ Z '
ORACLE_OLD = r ' (?i) \ A[01-9a-f] {16} \ Z '
MD5_GENERIC = r ' (?i) \ A[0-9a-f] {32} \ Z '
SHA1_GENERIC = r ' (?i) \ A[0-9a-f] {40} \ Z '
2011-03-26 23:46:25 +03:00
CRYPT_GENERIC = r ' (?i) \ A[./0-9A-Za-z] {13} \ Z '
2010-11-28 21:10:54 +03:00
2011-04-29 23:32:30 +04:00
# Reference: http://www.zytrax.com/tech/web/mobile_ids.html
2011-04-29 23:27:23 +04:00
class MOBILES :
2011-04-30 17:20:05 +04:00
BLACKBERRY = " RIM Blackberry 9800 Torch;Mozilla/5.0 (BlackBerry; U; BlackBerry 9800; en-US) AppleWebKit/534.1+ (KHTML, like Gecko) Version/6.0.0.246 Mobile Safari/534.1+ "
GALAXY = " Samsung Galaxy S;Mozilla/5.0 (Linux; U; Android 2.2; en-US; SGH-T959D Build/FROYO) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 "
HP = " HP iPAQ 6365;Mozilla/4.0 (compatible; MSIE 4.01; Windows CE; PPC; 240x320; HP iPAQ h6300) "
HTC = " HTC Evo;Mozilla/5.0 (Linux; U; Android 2.2; en-us; Sprint APA9292KT Build/FRF91) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 "
IPHONE = " Apple iPhone 4;Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_0 like Mac OS X; en-us) AppleWebKit/532.9 (KHTML, like Gecko) Version/4.0.5 Mobile/8A293 Safari/531.22.7 "
NEXUS = " Google Nexus One;Mozilla/5.0 (Linux; U; Android 2.2; en-US; Nexus One Build/FRF91) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1 "
NOKIA = " Nokia N97;Mozilla/5.0 (SymbianOS/9.4; Series60/5.0 NokiaN97-1/10.0.012; Profile/MIDP-2.1 Configuration/CLDC-1.1; en-us) AppleWebKit/525 (KHTML, like Gecko) WicKed/7.1.12344 "
2011-04-29 23:27:23 +04:00
2011-03-11 23:16:34 +03:00
class HTTPHEADER :
2011-04-30 17:20:05 +04:00
ACCEPT_ENCODING = " Accept-Encoding "
AUTHORIZATION = " Authorization "
CONNECTION = " Connection "
CONTENT_ENCODING = " Content-Encoding "
CONTENT_LENGTH = " Content-Length "
CONTENT_RANGE = " Content-Range "
CONTENT_TYPE = " Content-Type "
COOKIE = " Cookie "
2011-05-13 05:01:53 +04:00
HOST = " Host "
2011-03-18 17:08:36 +03:00
PROXY_AUTHORIZATION = " Proxy-authorization "
2011-04-30 17:20:05 +04:00
RANGE = " Range "
REFERER = " Referer "
USER_AGENT = " User-Agent "
2011-03-11 23:16:34 +03:00
2011-05-03 14:05:42 +04:00
class WARNFLAGS :
RANDOM_AGENT = ' randomAgent '
DATA_TO_STDOUT = ' dataToStdout '
2011-05-10 16:32:07 +04:00
THREADS = ' threads '
2011-05-12 09:46:17 +04:00
TOR = ' tor '
2011-05-03 14:05:42 +04:00
2010-12-10 15:30:36 +03:00
class EXPECTED :
2011-04-30 17:20:05 +04:00
BOOL = " bool "
INT = " int "
2010-12-10 15:30:36 +03:00
2010-11-28 21:10:54 +03:00
class PAYLOAD :
SQLINJECTION = {
1 : " boolean-based blind " ,
2 : " error-based " ,
3 : " UNION query " ,
4 : " stacked queries " ,
5 : " AND/OR time-based blind "
}
PARAMETER = {
1 : " Unescaped numeric " ,
2 : " Single quoted string " ,
3 : " LIKE single quoted string " ,
4 : " Double quoted string " ,
5 : " LIKE double quoted string "
}
RISK = {
0 : " No risk " ,
1 : " Low risk " ,
2 : " Medium risk " ,
3 : " High risk "
}
CLAUSE = {
0 : " Always " ,
1 : " WHERE " ,
2 : " GROUP BY " ,
3 : " ORDER BY " ,
4 : " LIMIT " ,
5 : " OFFSET " ,
6 : " TOP " ,
7 : " Table name " ,
8 : " Column name "
}
2010-12-06 18:50:19 +03:00
class METHOD :
2011-04-30 17:20:05 +04:00
COMPARISON = " comparison "
GREP = " grep "
TIME = " time "
UNION = " union "
2010-12-08 16:04:48 +03:00
class TECHNIQUE :
BOOLEAN = 1
ERROR = 2
UNION = 3
STACKED = 4
TIME = 5
2011-02-02 16:34:09 +03:00
class WHERE :
ORIGINAL = 1
NEGATIVE = 2
REPLACE = 3