sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 09:36:35 +03:00
Code Issues Packages Projects Releases Wiki Activity

minor update

Browse Source
This commit is contained in:
Miroslav Stampar 2010-10-14 06:20:32 +00:00
parent 7e1f784eaa
commit 058e1aecb4
6 changed files with 5 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
tamper/charencode.py
View File

@ -1,11 +1,10 @@
import re
import string
from lib.core.convert import urlencode
from lib.core.exception import sqlmapUnsupportedFeatureException
"""
value -> urlencode of nonencoded chars in value
value -> urlencode of nonencoded chars in value (e.g., SELECT%20FIELD%20FROM%20TABLE -> %53%45%4c%45%43%54%20%46%49%45%4c%44%20%46%52%4f%4d%20%54%41%42%4c%45)
"""
def tamper(place, value):
retVal = value

2
tamper/doubleencode.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urlencode
from lib.core.exception import sqlmapUnsupportedFeatureException
"""
Tampering value -> urlencode(value)
Tampering value -> urlencode(value) (e.g., SELECT%20FIELD%20FROM%20TABLE -> SELECT%25%20FIELD%25%20FROM%25%20TABLE)
"""
def tamper(place, value):
if value:

6
tamper/dummy.py
View File

@ -1,6 +0,0 @@
def tamper(place, value):
print "Hi, World!"
print value
if place=="GET" and value:
value=value.upper()
return value

2
tamper/ifnull2ifisnull.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urldecode
from lib.core.convert import urlencode
"""
IFNULL(A,B) -> IF(ISNULL(A),B,A)
IFNULL(A,B) -> IF(ISNULL(A),B,A) (e.g., IFNULL(1,2) -> IF(ISNULL(1),2,1))
"""
def tamper(place, value):
if value and value.find("IFNULL") > -1:

3
tamper/randomcase.py
View File

@ -1,12 +1,11 @@
import re
import string
from lib.core.convert import urlencode
from lib.core.common import randomRange
from lib.core.exception import sqlmapUnsupportedFeatureException
"""
value -> chars from value with random case
value -> chars from value with random case (e.g., INSERT->InsERt)
"""
def tamper(place, value):
retVal = value

2
tamper/space2comment.py
View File

@ -4,7 +4,7 @@ from lib.core.convert import urldecode
from lib.core.convert import urlencode
"""
' ' -> /**/
' ' -> /**/ (e.g., SELECT id FROM users->SELECT/**/id/**/FROM users)
"""
def tamper(place, value):
if value: