From 8593741358c6ac1805e9d2fe8e201173bb890591 Mon Sep 17 00:00:00 2001 From: Bernardo Damele Date: Fri, 5 Mar 2010 15:25:53 +0000 Subject: [PATCH] Minor bug fix --- doc/README.sgml | 24 +++++++++++------------- lib/controller/controller.py | 2 ++ lib/core/target.py | 2 -- 3 files changed, 13 insertions(+), 15 deletions(-) diff --git a/doc/README.sgml b/doc/README.sgml index bbb500200..44c40a7f9 100644 --- a/doc/README.sgml +++ b/doc/README.sgml @@ -5403,25 +5403,23 @@ Example of Google dorking with expression login ext:php and resulting page set to 3: -$ python sqlmap.py -g "login ext:php" --gpage=3 -v 1 +$ python sqlmap.py -g "ext:php login" --gpage 3 -v 1 -[hh:mm:12] [INFO] first request to Google to get the session cookie -[hh:mm:12] [INFO] using search result page #3 -[hh:mm:12] [INFO] sqlmap got 100 results for your Google dork expression, 5 of them are testable targets -[hh:mm:12] [INFO] sqlmap got a total of 5 targets +[hh:mm:14] [INFO] first request to Google to get the session cookie +[hh:mm:14] [INFO] using Google result page #3 +[hh:mm:14] [INFO] sqlmap got 100 results for your Google dork expression, 89 of them are testable targets +[hh:mm:15] [INFO] sqlmap got a total of 89 targets url 1: -GET http://myjobstreet-beta.jobstreet.com/home/login.php?site=in +GET http://www.XXX.com/index.php?pageid=login do you want to test this url? [Y/n/q] -> -[hh:mm:14] [INFO] testing url http://myjobstreet-beta.jobstreet.com/home/login.php?site=in -[hh:mm:14] [INFO] using '/home/stamparm/Work/sqlmap/sqlmap/output/None/session' as session file -[hh:mm:14] [INFO] testing connection to the target url -[hh:mm:15] [INFO] testing if the url is stable, wait a few seconds +> y +[hh:mm:17] [INFO] testing url http://www.XXX.com/index.php?pageid=login +[hh:mm:17] [INFO] using '/home/inquis/software/sqlmap/subversion/trunk/sqlmap/output/www.XXX.com/session' as session file +[hh:mm:17] [INFO] testing connection to the target url +[hh:mm:17] [INFO] testing if the url is stable, wait a few seconds [hh:mm:19] [INFO] url is stable [hh:mm:19] [INFO] testing if User-Agent parameter 'User-Agent' is dynamic [hh:mm:21] [WARNING] User-Agent parameter 'User-Agent' is not dynamic -[hh:mm:21] [INFO] testing if Cookie parameter 'REFERP' is dynamic -[hh:mm:22] [WARNING] Cookie parameter 'REFERP' is not dynamic [hh:mm:22] [INFO] testing if Cookie parameter 'PHPSESSID' is dynamic [hh:mm:24] [INFO] confirming that Cookie parameter 'PHPSESSID' is dynamic [hh:mm:27] [INFO] Cookie parameter 'PHPSESSID' is dynamic diff --git a/lib/controller/controller.py b/lib/controller/controller.py index e3138d43f..d77d5abe5 100644 --- a/lib/controller/controller.py +++ b/lib/controller/controller.py @@ -30,6 +30,7 @@ from lib.controller.checks import checkString from lib.controller.checks import checkRegexp from lib.controller.checks import checkConnection from lib.core.common import paramToDict +from lib.core.common import parseTargetUrl from lib.core.common import readInput from lib.core.data import conf from lib.core.data import kb @@ -133,6 +134,7 @@ def start(): logMsg = "testing url %s" % targetUrl logger.info(logMsg) + parseTargetUrl() createTargetDirs() initTargetEnv() diff --git a/lib/core/target.py b/lib/core/target.py index 19ccbf9f4..e7f4811a4 100644 --- a/lib/core/target.py +++ b/lib/core/target.py @@ -27,7 +27,6 @@ import time from lib.core.common import dataToSessionFile from lib.core.common import paramToDict -from lib.core.common import parseTargetUrl from lib.core.data import conf from lib.core.data import kb from lib.core.data import logger @@ -232,6 +231,5 @@ def initTargetEnv(): kb.unionCount = None kb.unionPosition = None - parseTargetUrl() __setRequestParams() __setOutputResume()