sqlmap/tamper/apostrophenullencode.py

24 lines
523 B
Python
Raw Permalink Normal View History

2019-05-08 13:47:52 +03:00
#!/usr/bin/env python
2012-03-09 16:09:19 +04:00
"""
2023-01-03 01:24:59 +03:00
Copyright (c) 2006-2023 sqlmap developers (https://sqlmap.org/)
2017-10-11 15:50:46 +03:00
See the file 'LICENSE' for copying permission
2012-03-09 16:09:19 +04:00
"""
from lib.core.enums import PRIORITY
__priority__ = PRIORITY.LOWEST
def dependencies():
pass
2012-12-03 17:27:01 +04:00
def tamper(payload, **kwargs):
2012-03-09 16:09:19 +04:00
"""
2018-07-31 03:18:33 +03:00
Replaces apostrophe character (') with its illegal double unicode counterpart (e.g. ' -> %00%27)
2012-03-09 16:09:19 +04:00
>>> tamper("1 AND '1'='1")
'1 AND %00%271%00%27=%00%271'
2012-03-09 16:09:19 +04:00
"""
return payload.replace('\'', "%00%27") if payload else payload