Major code refactoring: moved and split plugins (mysql, pgsql, mssql, oracle) more granularly and organized.

Todo for firebird, sqlite, access.
2026-01-24 15:19:04 +00:00 · 2010-03-22 22:57:57 +00:00
parent f9a135e232
commit 09768a7b62
36 changed files with 2578 additions and 1869 deletions
--- a/plugins/generic/enumeration.py
+++ b/plugins/generic/enumeration.py
@@ -50,7 +50,6 @@ from lib.techniques.outband.stacked import stackedTest
 class Enumeration:
    """
    This class defines generic enumeration functionalities for plugins.
-
    """

    def __init__(self, dbms):
@@ -68,30 +67,6 @@ class Enumeration:

        temp.inference                 = queries[dbms].inference

-    def getVersionFromBanner(self):
-        if "dbmsVersion" in kb.bannerFp:
-            return
-
-        infoMsg = "detecting back-end DBMS version from its banner"
-        logger.info(infoMsg)
-
-        if kb.dbms == "MySQL":
-            first, last = 1, 6
-
-        elif kb.dbms == "PostgreSQL":
-            first, last = 12, 6
-
-        elif kb.dbms == "Microsoft SQL Server":
-            first, last = 29, 9
-
-        else:
-            raise sqlmapUnsupportedFeatureException, "unsupported DBMS"
-
-        query = queries[kb.dbms].substring % (queries[kb.dbms].banner, first, last)
-
-        kb.bannerFp["dbmsVersion"] = inject.getValue(query, unpack=False)
-        kb.bannerFp["dbmsVersion"] = kb.bannerFp["dbmsVersion"].replace(",", "").replace("-", "").replace(" ", "")
-
    def getBanner(self):
        if not conf.getBanner:
            return
--- a/plugins/generic/filesystem.py
+++ b/plugins/generic/filesystem.py
@@ -31,6 +31,7 @@ from lib.core.common import randomStr
 from lib.core.common import readInput
 from lib.core.data import kb
 from lib.core.data import logger
+from lib.core.exception import sqlmapUndefinedMethod
 from lib.request import inject
 from lib.techniques.outband.stacked import stackedTest

@@ -250,6 +251,26 @@ class Filesystem:
        if not output or output in ("y", "Y"):
            self.__checkWrittenFile(wFile, dFile, fileType)

+    def unionReadFile(self, rFile):
+        errMsg  = "'unionReadFile' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
+    def stackedReadFile(self, rFile):
+        errMsg  = "'stackedReadFile' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
+    def unionWriteFile(self, wFile, dFile, fileType, confirm=True):
+        errMsg  = "'unionWriteFile' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
+    def stackedWriteFile(self, wFile, dFile, fileType, confirm=True):
+        errMsg  = "'stackedWriteFile' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
    def readFile(self, rFile):
        fileContent = None

--- a/plugins/generic/fingerprint.py
+++ b/plugins/generic/fingerprint.py
@@ -29,17 +29,8 @@ class Fingerprint:
    This class defines generic fingerprint functionalities for plugins.
    """

-    @staticmethod
-    def unescape(expression, quote=True):
-        errMsg  = "'unescape' method must be defined "
-        errMsg += "into the specific DBMS plugin"
-        raise sqlmapUndefinedMethod, errMsg
-
-    @staticmethod
-    def escape(expression):
-        errMsg  = "'escape' method must be defined "
-        errMsg += "into the specific DBMS plugin"
-        raise sqlmapUndefinedMethod, errMsg
+    def __init__(self):
+        pass

    def getFingerprint(self):
        errMsg  = "'getFingerprint' method must be defined "
@@ -51,5 +42,10 @@ class Fingerprint:
        errMsg += "into the specific DBMS plugin"
        raise sqlmapUndefinedMethod, errMsg

+    def checkDbmsOs(self, detailed=False):
+        errMsg  = "'checkDbmsOs' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
    def forceDbmsEnum(self):
        pass
--- a/plugins/generic/misc.py
+++ b/plugins/generic/misc.py
@@ -22,7 +22,6 @@ with sqlmap; if not, write to the Free Software Foundation, Inc., 51
 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
 """

-import os
 import re

 from lib.core.common import normalizePath
@@ -32,6 +31,8 @@ from lib.core.common import readInput
 from lib.core.data import conf
 from lib.core.data import kb
 from lib.core.data import logger
+from lib.core.data import queries
+from lib.core.exception import sqlmapUnsupportedFeatureException
 from lib.core.session import setRemoteTempPath
 from lib.request import inject
 from lib.techniques.outband.stacked import stackedTest
@@ -42,6 +43,9 @@ class Miscellaneous:
    This class defines miscellaneous functionalities for plugins.
    """

+    def __init__(self):
+        pass
+
    def getRemoteTempPath(self):
        if not conf.tmpPath:
            if kb.os == "Windows":
@@ -73,6 +77,30 @@ class Miscellaneous:

        setRemoteTempPath()

+    def getVersionFromBanner(self):
+        if "dbmsVersion" in kb.bannerFp:
+            return
+
+        infoMsg = "detecting back-end DBMS version from its banner"
+        logger.info(infoMsg)
+
+        if kb.dbms == "MySQL":
+            first, last = 1, 6
+
+        elif kb.dbms == "PostgreSQL":
+            first, last = 12, 6
+
+        elif kb.dbms == "Microsoft SQL Server":
+            first, last = 29, 9
+
+        else:
+            raise sqlmapUnsupportedFeatureException, "unsupported DBMS"
+
+        query = queries[kb.dbms].substring % (queries[kb.dbms].banner, first, last)
+
+        kb.bannerFp["dbmsVersion"] = inject.getValue(query, unpack=False)
+        kb.bannerFp["dbmsVersion"] = kb.bannerFp["dbmsVersion"].replace(",", "").replace("-", "").replace(" ", "")
+
    def delRemoteFile(self, tempFile, doubleslash=False):
        self.checkDbmsOs()

--- a/plugins/generic/syntax.py
+++ b/plugins/generic/syntax.py
@@ -0,0 +1,45 @@
+#!/usr/bin/env python
+
+"""
+$Id$
+
+This file is part of the sqlmap project, http://sqlmap.sourceforge.net.
+
+Copyright (c) 2007-2010 Bernardo Damele A. G. <bernardo.damele@gmail.com>
+Copyright (c) 2006 Daniele Bellucci <daniele.bellucci@gmail.com>
+
+sqlmap is free software; you can redistribute it and/or modify it under
+the terms of the GNU General Public License as published by the Free
+Software Foundation version 2 of the License.
+
+sqlmap is distributed in the hope that it will be useful, but WITHOUT ANY
+WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
+FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more
+details.
+
+You should have received a copy of the GNU General Public License along
+with sqlmap; if not, write to the Free Software Foundation, Inc., 51
+Franklin St, Fifth Floor, Boston, MA  021101301  USA
+"""
+
+from lib.core.exception import sqlmapUndefinedMethod
+
+class Syntax:
+    """
+    This class defines generic syntax functionalities for plugins.
+    """
+
+    def __init__(self):
+        pass
+
+    @staticmethod
+    def unescape(expression, quote=True):
+        errMsg  = "'unescape' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
+    @staticmethod
+    def escape(expression):
+        errMsg  = "'escape' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
--- a/plugins/generic/takeover.py
+++ b/plugins/generic/takeover.py
@@ -22,38 +22,29 @@ with sqlmap; if not, write to the Free Software Foundation, Inc., 51
 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
 """

-import os
-import re
-
-from lib.core.agent import agent
-from lib.core.common import decloakToNamedTemporaryFile
-from lib.core.common import fileToStr
-from lib.core.common import getDirs
-from lib.core.common import getDocRoot
-from lib.core.common import randomStr
 from lib.core.common import readInput
-from lib.core.convert import hexencode
 from lib.core.data import conf
 from lib.core.data import kb
 from lib.core.data import logger
-from lib.core.data import paths
+from lib.core.exception import sqlmapMissingMandatoryOptionException
 from lib.core.exception import sqlmapNotVulnerableException
+from lib.core.exception import sqlmapUndefinedMethod
 from lib.core.exception import sqlmapUnsupportedDBMSException
-from lib.core.shell import autoCompletion
-from lib.request.connect import Connect as Request
 from lib.takeover.abstraction import Abstraction
 from lib.takeover.metasploit import Metasploit
 from lib.takeover.registry import Registry
 from lib.techniques.outband.stacked import stackedTest

-class Takeover(Abstraction, Metasploit, Registry):
+from plugins.generic.misc import Miscellaneous
+
+class Takeover(Abstraction, Metasploit, Registry, Miscellaneous):
    """
    This class defines generic OS takeover functionalities for plugins.
    """

    def __init__(self):
-        self.cmdTblName       = "sqlmapoutput"
-        self.tblField         = "data"
+        self.cmdTblName = "sqlmapoutput"
+        self.tblField = "data"

        Abstraction.__init__(self)

@@ -268,6 +259,11 @@ class Takeover(Abstraction, Metasploit, Registry):
        self.createMsfShellcode(exitfunc="seh", format="raw", extra="-b 27", encode=True)
        self.bof()

+    def uncPathRequest(self):
+        errMsg  = "'uncPathRequest' method must be defined "
+        errMsg += "into the specific DBMS plugin"
+        raise sqlmapUndefinedMethod, errMsg
+
    def __regInit(self):
        stackedTest()