adding filtering of strings for control chars in blind inference mode (way to handle either errornous values, or either binary data)

2025-12-27 18:09:01 +00:00 · 2011-01-05 10:25:07 +00:00
parent c83e9f6ca5
commit 7ae5192070
3 changed files with 14 additions and 5 deletions
--- a/lib/core/common.py
+++ b/lib/core/common.py
@@ -61,6 +61,7 @@ from lib.core.settings import IS_WIN
 from lib.core.settings import PLATFORM
 from lib.core.settings import SITE
 from lib.core.settings import ERROR_PARSING_REGEXES
+from lib.core.settings import NON_CONTROL_CHAR_REGEX
 from lib.core.settings import SQL_STATEMENTS
 from lib.core.settings import SUPPORTED_DBMS
 from lib.core.settings import UNKNOWN_DBMS_VERSION
@@ -1823,6 +1824,13 @@ def filterStringValue(value, regex, replace=None):

    return retVal

+def filterControlChars(value):
+    """
+    Returns string value with control
+    chars being supstituted with ' '
+    """
+    return filterStringValue(output, NON_CONTROL_CHAR_REGEX, ' ')
+
 def isDBMSVersionAtLeast(version):
    """
    Checks if the recognized DBMS version
--- a/lib/core/settings.py
+++ b/lib/core/settings.py
@@ -52,7 +52,7 @@ DUMP_STOP_MARKER    = "__STOP__"

 PAYLOAD_DELIMITER   = "\x00"
 CHAR_INFERENCE_MARK = "%c"
-READABLE_CHAR_REGEX = r'[\ -~]'
+NON_CONTROL_CHAR_REGEX = r'[^\x00-\x1f]'

 # coefficient used for a time-based query delay checking (must be >= 7)
 TIME_STDEV_COEFF    = 10