From ca9a56c0ff38d97ab329c32b13b2a79f08e389c7 Mon Sep 17 00:00:00 2001 From: Miroslav Stampar Date: Sat, 15 Sep 2018 23:27:24 +0200 Subject: [PATCH] Minor update of WebKnight WAF script --- lib/core/settings.py | 2 +- txt/checksum.md5 | 4 ++-- waf/webknight.py | 3 ++- 3 files changed, 5 insertions(+), 4 deletions(-) diff --git a/lib/core/settings.py b/lib/core/settings.py index b12549a1f..eb83b3c2f 100644 --- a/lib/core/settings.py +++ b/lib/core/settings.py @@ -19,7 +19,7 @@ from lib.core.enums import DBMS_DIRECTORY_NAME from lib.core.enums import OS # sqlmap version (...) -VERSION = "1.2.9.25" +VERSION = "1.2.9.26" TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable" TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34} VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE) diff --git a/txt/checksum.md5 b/txt/checksum.md5 index e9eb6c16f..affd4e154 100644 --- a/txt/checksum.md5 +++ b/txt/checksum.md5 @@ -50,7 +50,7 @@ c8c386d644d57c659d74542f5f57f632 lib/core/patch.py 0c3eef46bdbf87e29a3f95f90240d192 lib/core/replication.py a7db43859b61569b601b97f187dd31c5 lib/core/revision.py fcb74fcc9577523524659ec49e2e964b lib/core/session.py -94b6f9ade36d5622998a480dcea19946 lib/core/settings.py +1d4a4c8a47f7d7ce2b5fa59548e84bc5 lib/core/settings.py dd68a9d02fccb4fa1428b20e15b0db5d lib/core/shell.py a7edc9250d13af36ac0108f259859c19 lib/core/subprocessng.py 248bd121e0565318e1efaff54aa427bc lib/core/target.py @@ -455,7 +455,7 @@ a687449cd4e45f69e33b13d41e021480 waf/uspses.py 20840afc269920826deac2b6c00d6b9c waf/wallarm.py 11205abf397ae9072adc3234b656ade9 waf/watchguard.py 9bf34539f382987490d2239d8ef0a651 waf/webappsecure.py -5b1eefdc39d449a74fce0564364b0e09 waf/webknight.py +6802052ddae241e2f4f78974ed11904a waf/webknight.py 11a5c6b10ced11e505a74e36ee2503b3 waf/wordfence.py 68e332530fab216d017ede506c3fec2f waf/yundun.py bea35ba732ccc9548e6c4023cea6832b waf/yunsuo.py diff --git a/waf/webknight.py b/waf/webknight.py index ed9247bdd..54abfa8ac 100644 --- a/waf/webknight.py +++ b/waf/webknight.py @@ -16,9 +16,10 @@ def detect(get_page): retval = False for vector in WAF_ATTACK_VECTORS: - _, headers, code = get_page(get=vector) + page, headers, code = get_page(get=vector) retval = code == 999 retval |= re.search(r"WebKnight", headers.get(HTTP_HEADER.SERVER, ""), re.I) is not None + retval |= any(_ in (page or "") for _ in ("WebKnight Application Firewall Alert", "AQTRONIX WebKnight")) if retval: break