diff --git a/lib/core/settings.py b/lib/core/settings.py
index e4f698330..c9078a740 100644
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@@ -80,6 +80,12 @@ INFERENCE_BLANK_BREAK = 15
 # use this replacement character for cases when inference is not able to retrieve the proper character value
 INFERENCE_UNKNOWN_CHAR = '?'
 
+# character used for operation "greater" in inference
+INFERENCE_GREATER_CHAR = ">"
+
+# character used for operation "equals" in inference
+INFERENCE_EQUALS_CHAR = "="
+
 # string used for representation of unknown dbms version
 UNKNOWN_DBMS_VERSION = "Unknown"
 
diff --git a/lib/techniques/blind/inference.py b/lib/techniques/blind/inference.py
index 0fa8e81fb..8cac847e0 100644
--- a/lib/techniques/blind/inference.py
+++ b/lib/techniques/blind/inference.py
@@ -38,6 +38,8 @@ from lib.core.progress import ProgressBar
 from lib.core.settings import CHAR_INFERENCE_MARK
 from lib.core.settings import INFERENCE_BLANK_BREAK
 from lib.core.settings import INFERENCE_UNKNOWN_CHAR
+from lib.core.settings import INFERENCE_GREATER_CHAR
+from lib.core.settings import INFERENCE_EQUALS_CHAR
 from lib.core.unescaper import unescaper
 from lib.request.connect import Connect as Request
 
@@ -129,7 +131,7 @@ def bisection(payload, expression, length=None, charsetType=None, firstChar=None
             else:
                 posValue = ord(hintValue[idx-1])
 
-            forgedPayload = safeStringFormat(payload.replace('%3E', '%3D'), (expressionUnescaped, idx, posValue))
+            forgedPayload = safeStringFormat(payload.replace(INFERENCE_GREATER_CHAR, INFERENCE_EQUALS_CHAR), (expressionUnescaped, idx, posValue))
             queriesCount[0] += 1
             result = Request.queryPage(forgedPayload, timeBasedCompare=timeBasedCompare, raise404=False)
 
@@ -163,7 +165,7 @@ def bisection(payload, expression, length=None, charsetType=None, firstChar=None
             charTbl.remove(ord('\n'))
 
         if len(charTbl) == 1:
-            forgedPayload = safeStringFormat(payload.replace('%3E', '%3D'), (expressionUnescaped, idx, charTbl[0]))
+            forgedPayload = safeStringFormat(payload.replace(INFERENCE_GREATER_CHAR, INFERENCE_EQUALS_CHAR), (expressionUnescaped, idx, charTbl[0]))
             queriesCount[0] += 1
             result = Request.queryPage(forgedPayload, timeBasedCompare=timeBasedCompare, raise404=False)
 
@@ -239,7 +241,7 @@ def bisection(payload, expression, length=None, charsetType=None, firstChar=None
                     # both minValue and character afterwards are possible
                     # candidates
                     for retVal in (originalTbl[originalTbl.index(minValue)], originalTbl[originalTbl.index(minValue) + 1]):
-                        forgedPayload = safeStringFormat(payload.replace('%3E', '%3D'), (expressionUnescaped, idx, retVal))
+                        forgedPayload = safeStringFormat(payload.replace(INFERENCE_GREATER_CHAR, INFERENCE_EQUALS_CHAR), (expressionUnescaped, idx, retVal))
                         queriesCount[0] += 1
                         result = Request.queryPage(forgedPayload, timeBasedCompare=timeBasedCompare, raise404=False)