this is strictly for educational purposes

2025-12-07 13:11:29 +00:00 · 2010-12-20 17:30:47 +00:00
parent c948bced61
commit 19d8733e9a
4 changed files with 384 additions and 2 deletions
--- a/lib/core/common.py
+++ b/lib/core/common.py
@@ -660,6 +660,7 @@ def setPaths():
    paths.COMMON_COLUMNS         = os.path.join(paths.SQLMAP_TXT_PATH, "common-columns.txt")
    paths.COMMON_TABLES          = os.path.join(paths.SQLMAP_TXT_PATH, "common-tables.txt")
    paths.COMMON_OUTPUTS         = os.path.join(paths.SQLMAP_TXT_PATH, 'common-outputs.txt')
+    paths.DORKS                  = os.path.join(paths.SQLMAP_TXT_PATH, "dorks.txt")
    paths.SQL_KEYWORDS           = os.path.join(paths.SQLMAP_TXT_PATH, "keywords.txt")
    paths.ORACLE_DEFAULT_PASSWD  = os.path.join(paths.SQLMAP_TXT_PATH, "oracle-default-passwords.txt")
    paths.WORDLIST               = os.path.join(paths.SQLMAP_TXT_PATH, "wordlist.txt")
--- a/lib/core/option.py
+++ b/lib/core/option.py
@@ -302,6 +302,20 @@ def __setRequestFromFile():

    __feedTargetsDict(conf.requestFile, addedTargetUrls)

+def __setScriptKiddie():
+    """
+    This function sets a random google dork
+    """
+    if not conf.scriptKiddie or conf.url or conf.list or conf.requestFile or conf.googleDork:
+        return
+
+    dorks = getFileItems(paths.DORKS)
+    conf.googleDork = "inurl:%s" % dorks[randomRange(0, len(dorks) - 1)]
+    conf.multipleTargets = True
+
+    logMsg = "setting random google dork to: '%s'" % conf.googleDork
+    logger.info(logMsg)
+
 def __setGoogleDorking():
    """
    This function checks if the way to request testable hosts is through
@@ -1379,7 +1393,7 @@ def init(inputOptions=advancedDict()):
    parseTargetUrl()
    parseTargetDirect()

-    if conf.url or conf.list or conf.requestFile or conf.googleDork or conf.liveTest:
+    if conf.url or conf.list or conf.requestFile or conf.googleDork or conf.liveTest or conf.scriptKiddie:
        __setHTTPTimeout()
        __setHTTPExtraHeaders()
        __setHTTPCookies()
@@ -1390,6 +1404,7 @@ def init(inputOptions=advancedDict()):
        __setHTTPProxy()
        __setSafeUrl()
        __setUnion()
+        __setScriptKiddie()
        __setGoogleDorking()
        __urllib2Opener()
        __findPageForms()