From 2af2aef43ead8e27555509f4a1076941d9cdd5af Mon Sep 17 00:00:00 2001 From: Miroslav Stampar Date: Tue, 3 Feb 2015 09:48:05 +0100 Subject: [PATCH] Minor patch for masking sensitive information (when formation -u=... is used) --- lib/core/common.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lib/core/common.py b/lib/core/common.py index 47207972a..11f9c9fc1 100755 --- a/lib/core/common.py +++ b/lib/core/common.py @@ -3003,9 +3003,9 @@ def maskSensitiveData(msg): retVal = retVal.replace(value, '*' * len(value)) if not conf.get("hostname"): - match = re.search(r"(?i)sqlmap.+(-u|--url)\s+([^ ]+)", retVal) + match = re.search(r"(?i)sqlmap.+(-u|--url)(\s+|=)([^ ]+)", retVal) if match: - retVal = retVal.replace(match.group(2), '*' * len(match.group(2))) + retVal = retVal.replace(match.group(3), '*' * len(match.group(3))) if getpass.getuser():