From 6acb2480b851a8a788b55b8956173e5e04235161 Mon Sep 17 00:00:00 2001
From: Miroslav Stampar <miroslav.stampar@gmail.com>
Date: Thu, 21 Feb 2013 21:34:26 +0100
Subject: [PATCH] Adding WAF script for SecureIIS

---
 lib/core/decorators.py |  2 +-
 lib/core/enums.py      |  1 +
 waf/secureiis.py       | 19 +++++++++++++++++++
 3 files changed, 21 insertions(+), 1 deletion(-)
 create mode 100644 waf/secureiis.py

diff --git a/lib/core/decorators.py b/lib/core/decorators.py
index 7a8566c75..31ce7535a 100644
--- a/lib/core/decorators.py
+++ b/lib/core/decorators.py
@@ -13,7 +13,7 @@ def cachedmethod(f, cache={}):
     """
 
     def _(*args, **kwargs):
-        key = (f, tuple(args), frozenset(kwargs.items()))
+        key = (f, tuple(args), str(kwargs))
         if key not in cache:
             cache[key] = f(*args, **kwargs)
         return cache[key]
diff --git a/lib/core/enums.py b/lib/core/enums.py
index 1247735d8..bd09e189d 100644
--- a/lib/core/enums.py
+++ b/lib/core/enums.py
@@ -152,6 +152,7 @@ class HTTPHEADER:
     REFERER = "Referer"
     SERVER = "Server"
     USER_AGENT = "User-Agent"
+    TRANSFER_ENCODING = "Transfer-Encoding"
 
 class EXPECTED:
     BOOL = "bool"
diff --git a/waf/secureiis.py b/waf/secureiis.py
new file mode 100644
index 000000000..5e099cfbd
--- /dev/null
+++ b/waf/secureiis.py
@@ -0,0 +1,19 @@
+#!/usr/bin/env python
+
+"""
+Copyright (c) 2006-2013 sqlmap developers (http://sqlmap.org/)
+See the file 'doc/COPYING' for copying permission
+"""
+
+import re
+
+from lib.core.enums import HTTPHEADER
+
+__product__ = "SecureIIS Web Server Security (BeyondTrust)"
+
+def detect(get_page):
+    page, headers, code = get_page()
+    retval = code != 404
+    page, headers, code = get_page(auxHeaders={HTTPHEADER.TRANSFER_ENCODING: 'a' * 1025, HTTPHEADER.ACCEPT_ENCODING: "identity"})
+    retval = retval and code == 404
+    return retval