diff --git a/tamper/space2htab.py b/tamper/space2htab.py new file mode 100644 index 000000000..271c420dc --- /dev/null +++ b/tamper/space2htab.py @@ -0,0 +1,22 @@ +from lib.core.compat import xrange + + + +def dependencies(): + pass + +def tamper(payload:str,**kwargs): + """ + Replace payload space characters with horizontal space(%09) + >>> tamper("SELECT id FROM users") + 'SELECT%09id%09FROM%09users' + """ + retVal = payload + place_space = "%9" + if payload: + for i in xrange(len(payload)): + if payload[i].isspace(): + rm_value = payload[i] + retVal = retVal.replace(rm_value, place_space) + + return retVal