sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 09:36:35 +03:00
Code Issues Packages Projects Releases Wiki Activity

minor update

Browse Source
This commit is contained in:
Miroslav Stampar 2010-10-14 06:20:32 +00:00
parent 7e1f784eaa
commit 058e1aecb4
6 changed files with 5 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
tamper/charencode.py
View File

@ -1,11 +1,10 @@
import re import re
import string import string
from lib.core.convert import urlencode
from lib.core.exception import sqlmapUnsupportedFeatureException from lib.core.exception import sqlmapUnsupportedFeatureException
""" """
value -> urlencode of nonencoded chars in value value -> urlencode of nonencoded chars in value (e.g., SELECT%20FIELD%20FROM%20TABLE -> %53%45%4c%45%43%54%20%46%49%45%4c%44%20%46%52%4f%4d%20%54%41%42%4c%45)
""" """
def tamper(place, value): def tamper(place, value):
retVal = value retVal = value

2
tamper/doubleencode.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urlencode
from lib.core.exception import sqlmapUnsupportedFeatureException from lib.core.exception import sqlmapUnsupportedFeatureException
""" """
Tampering value -> urlencode(value) Tampering value -> urlencode(value) (e.g., SELECT%20FIELD%20FROM%20TABLE -> SELECT%25%20FIELD%25%20FROM%25%20TABLE)
""" """
def tamper(place, value): def tamper(place, value):
if value: if value:

6
tamper/dummy.py
View File

@ -1,6 +0,0 @@
def tamper(place, value):
print "Hi, World!"
print value
if place=="GET" and value:
value=value.upper()
return value

2
tamper/ifnull2ifisnull.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urldecode
from lib.core.convert import urlencode from lib.core.convert import urlencode
""" """
IFNULL(A,B) -> IF(ISNULL(A),B,A) IFNULL(A,B) -> IF(ISNULL(A),B,A) (e.g., IFNULL(1,2) -> IF(ISNULL(1),2,1))
""" """
def tamper(place, value): def tamper(place, value):
if value and value.find("IFNULL") > -1: if value and value.find("IFNULL") > -1:

3
tamper/randomcase.py
View File

@ -1,12 +1,11 @@
import re import re
import string import string
from lib.core.convert import urlencode
from lib.core.common import randomRange from lib.core.common import randomRange
from lib.core.exception import sqlmapUnsupportedFeatureException from lib.core.exception import sqlmapUnsupportedFeatureException
""" """
value -> chars from value with random case value -> chars from value with random case (e.g., INSERT->InsERt)
""" """
def tamper(place, value): def tamper(place, value):
retVal = value retVal = value

2
tamper/space2comment.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urldecode
from lib.core.convert import urlencode from lib.core.convert import urlencode
""" """
' ' -> /**/ ' ' -> /**/ (e.g., SELECT id FROM users->SELECT/**/id/**/FROM users)
""" """
def tamper(place, value): def tamper(place, value):
if value: if value: