sqlmapproject/sqlmap
1
1
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2024-11-22 17:46:37 +03:00
Code Issues Packages Projects Releases Wiki Activity

Making 10% less requests in futile higher level/risk runs (using static template payloads for where==NEGATIVE)

Browse Source
This commit is contained in:
stamparm 2013-07-15 16:24:49 +02:00
parent c9d3974205
commit e6f71c2130
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
lib/controller/checks.py
View File

@ -328,13 +328,14 @@ def checkSqlInjection(place, parameter, value):
# Use different page template than the original
# one as we are changing parameters value, which
# will likely result in a different content
kb.data.setdefault("randomInt", str(randomInt(10)))
if conf.invalidLogical:
_ = randomInt(2)
_ = int(kb.data.randomInt[:2])
origValue = "%s AND %s=%s" % (value, _, _ + 1)
elif conf.invalidBignum:
origValue = "%d.%d" % (randomInt(6), randomInt(1))
origValue = "%s.%s" % (kb.data.randomInt[:6], kb.data.randomInt[0])
else:
origValue = "-%s" % randomInt()
origValue = "-%s" % kb.data.randomInt[:4]
templatePayload = agent.payload(place, parameter, value="", newValue=origValue, where=where)
elif where == PAYLOAD.WHERE.REPLACE:
origValue = ""