Added hidden (for the moment) switch --technique

2025-12-07 13:11:29 +00:00 · 2010-12-09 13:47:17 +00:00
parent b80a86a669
commit 5fb04515d3
3 changed files with 22 additions and 0 deletions
--- a/lib/controller/checks.py
+++ b/lib/controller/checks.py
@@ -101,6 +101,15 @@ def checkSqlInjection(place, parameter, value):
        stype = test.stype
        clause = test.clause

+        # Skip test if the user's wants to test only for a specific
+        # technique
+        if isinstance(conf.technique, int) and stype != conf.technique:
+            debugMsg = "skipping test '%s' because the user " % title
+            debugMsg += "specified to test only for "
+            debugMsg += "%s" % PAYLOAD.SQLINJECTION[conf.technique]
+            logger.debug(debugMsg)
+            continue
+
        # Skip test if the risk is higher than the provided (or default)
        # value
        # Parse test's <risk>