Revamp of tamper scripts, now supporting dependencies() function as well. Improved a lot the docstring and retested all. Added a new one from Ahmad too.

2025-12-07 21:21:33 +00:00 · 2011-07-06 21:04:45 +00:00
parent 0d28c1e9e7
commit 23b4efdcaf
18 changed files with 399 additions and 45 deletions
--- a/tamper/space2plus.py
+++ b/tamper/space2plus.py
@@ -11,10 +11,21 @@ from lib.core.enums import PRIORITY

 __priority__ = PRIORITY.LOW

+def dependencies():
+    pass
+
 def tamper(payload):
    """
-    Replaces ' ' with '+'
-    Example: 'SELECT id FROM users' becomes 'SELECT+id+FROM+users'
+    Replaces space character (' ') with plus ('+')
+
+    Example:
+        * Input: SELECT id FROM users
+        * Output: SELECT+id+FROM+users
+
+    Notes:
+        * Is this any useful? The plus get's url-encoded by sqlmap engine
+          invalidating the query afterwards
+        * This tamper script works against all databases
    """

    retVal = payload