PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-07 21:21:33 +00:00
Code Issues Projects Releases Wiki Activity

pretty important commit (now dumped tables are prone to dictionary attack)

Browse Source
This commit is contained in:
Miroslav Stampar
2010-12-27 10:56:28 +00:00
parent c8d5a6b980
commit 51a492e17d
4 changed files with 116 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
plugins/generic/enumeration.py
View File

@@ -51,7 +51,8 @@ from lib.request.connect import Connect as Request
from lib.techniques.brute.use import columnExists
from lib.techniques.brute.use import tableExists
from lib.techniques.inband.union.test import unionTest
from lib.utils.hash import dictionaryAttack
from lib.utils.hash import attackDumpedTable
from lib.utils.hash import attackCachedUsersPasswords
class Enumeration:
"""
@@ -345,7 +346,7 @@ class Enumeration:
elif test[0] in ("q", "Q"):
raise sqlmapUserQuitException
else:
dictionaryAttack()
attackCachedUsersPasswords()
return kb.data.cachedUsersPasswords
@@ -1315,6 +1316,8 @@ class Enumeration:
return None
attackDumpedTable()
return kb.data.dumpedTable
def dumpAll(self):