mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-29 13:03:50 +03:00
sharp tuning UNION tests even more
This commit is contained in:
parent
74cc974fa7
commit
95dea1fbf9
|
@ -72,13 +72,6 @@ def __findUnionCharCount(comment, place, parameter, value, prefix, suffix, where
|
||||||
ratios.pop(ratios.index(min_))
|
ratios.pop(ratios.index(min_))
|
||||||
ratios.pop(ratios.index(max_))
|
ratios.pop(ratios.index(max_))
|
||||||
|
|
||||||
deviation = stdev(ratios)
|
|
||||||
|
|
||||||
if abs(max_ - min_) < MIN_STATISTICAL_RANGE:
|
|
||||||
kb.errorIsNone = popValue()
|
|
||||||
return None
|
|
||||||
|
|
||||||
lower, upper = average(ratios) - UNION_STDEV_COEFF * deviation, average(ratios) + UNION_STDEV_COEFF * deviation
|
|
||||||
minItem, maxItem = None, None
|
minItem, maxItem = None, None
|
||||||
|
|
||||||
for item in items:
|
for item in items:
|
||||||
|
@ -87,6 +80,20 @@ def __findUnionCharCount(comment, place, parameter, value, prefix, suffix, where
|
||||||
elif item[1] == max_:
|
elif item[1] == max_:
|
||||||
maxItem = item
|
maxItem = item
|
||||||
|
|
||||||
|
if all(map(lambda x: x == min_ and x != max_, ratios)):
|
||||||
|
return maxItem[0]
|
||||||
|
|
||||||
|
elif all(map(lambda x: x != min_ and x == max_, ratios)):
|
||||||
|
return minItem[0]
|
||||||
|
|
||||||
|
deviation = stdev(ratios)
|
||||||
|
|
||||||
|
if abs(max_ - min_) < MIN_STATISTICAL_RANGE:
|
||||||
|
kb.errorIsNone = popValue()
|
||||||
|
return None
|
||||||
|
|
||||||
|
lower, upper = average(ratios) - UNION_STDEV_COEFF * deviation, average(ratios) + UNION_STDEV_COEFF * deviation
|
||||||
|
|
||||||
if min_ < lower:
|
if min_ < lower:
|
||||||
retVal = minItem[0]
|
retVal = minItem[0]
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue
Block a user