Added another tamper script

2024-11-22 01:26:42 +03:00 · 2012-03-09 12:09:19 +00:00 · 2012-03-09 12:09:19 +00:00 · 4ac2611a56
commit 4ac2611a56
parent d9e499af9f
1 changed files with 31 additions and 0 deletions
--- a/tamper/apostrophenullencode.py
+++ b/tamper/apostrophenullencode.py
@ -0,0 +1,31 @@
+#!/usr/bin/env python
+
+"""
+$Id$
+
+Copyright (c) 2006-2012 sqlmap developers (http://www.sqlmap.org/)
+See the file 'doc/COPYING' for copying permission
+"""
+
+from lib.core.enums import PRIORITY
+
+__priority__ = PRIORITY.LOWEST
+
+def dependencies():
+    pass
+
+def tamper(payload):
+    """
+    Replaces apostrophe character with its illegal double unicode counterpart
+
+    Example:
+        * Input: AND '1'='1'
+        * Output: AND %00%271%00%27=%00%271%00%27
+    """
+
+    retVal = payload
+
+    if payload:
+        retVal = payload.replace('\'', '%00%27')
+
+    return retVal