PenTest/sqlmap
1
0
Fork 0
mirror of https://github.com/sqlmapproject/sqlmap.git synced 2025-12-07 21:21:33 +00:00
Code Issues Projects Releases Wiki Activity

changed default web server language behaviour

Browse Source
This commit is contained in:
Miroslav Stampar
2010-02-25 16:55:02 +00:00
parent d95a8850c8
commit e4c34ff86c
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
lib/takeover/web.py
View File

@@ -136,12 +136,12 @@ class Web:
message = "which web application language does the web server " message = "which web application language does the web server "
message += "support?\n" message += "support?\n"
message += "[1] ASP\n" message += "[1] ASP%s\n" % " (default)" if kb.os == "Windows" else ""
message += "[2] PHP (default)\n" message += "[2] PHP%s\n" % "" if kb.os == "Windows" else " (default)"
message += "[3] JSP" message += "[3] JSP"
while True: while True:
choice = readInput(message, default="2") choice = readInput(message, default="1" if kb.os == "Windows" else "2")
if not choice or choice == "2": if not choice or choice == "2":
self.webApi = "php" self.webApi = "php"
@@ -202,9 +202,9 @@ class Web:
if self.webApi == "asp": if self.webApi == "asp":
runcmdName = "tmpe%s.exe" % randomStr(4) runcmdName = "tmpe%s.exe" % randomStr(4)
runcmdStream = decloakToNamedTemporaryFile(os.path.join(paths.SQLMAP_SHELL_PATH, 'runcmd.exe_'), runcmdName) runcmdStream = decloakToNamedTemporaryFile(os.path.join(paths.SQLMAP_SHELL_PATH, 'runcmd.exe_'), runcmdName)
match = re.search(r'input type=hidden name=scriptsdir value="([^"]+)"', uplPage) match = re.search(r'input type=hidden name=scriptsdir value="([^"]+)"', uplPage)
if match: if match:
backdoorDirectory = match.group(1) backdoorDirectory = match.group(1)
else: else:
continue continue