CoCalc -- fingerprint.py

GitHub Repository: sqlmapproject/sqlmap
Path: blob/master/plugins/dbms/raima/fingerprint.py
²⁹⁹² views
1
#!/usr/bin/env python
2

3
"""
4
Copyright (c) 2006-2025 sqlmap developers (https://sqlmap.org)
5
See the file 'LICENSE' for copying permission
6
"""
7

8
from lib.core.common import Backend
9
from lib.core.common import Format
10
from lib.core.data import conf
11
from lib.core.data import kb
12
from lib.core.data import logger
13
from lib.core.enums import DBMS
14
from lib.core.session import setDbms
15
from lib.core.settings import METADB_SUFFIX
16
from lib.core.settings import RAIMA_ALIASES
17
from lib.request import inject
18
from plugins.generic.fingerprint import Fingerprint as GenericFingerprint
19

20
class Fingerprint(GenericFingerprint):
21
    def __init__(self):
22
        GenericFingerprint.__init__(self, DBMS.RAIMA)
23

24
    def getFingerprint(self):
25
        value = ""
26
        wsOsFp = Format.getOs("web server", kb.headersFp)
27

28
        if wsOsFp:
29
            value += "%s\n" % wsOsFp
30

31
        if kb.data.banner:
32
            dbmsOsFp = Format.getOs("back-end DBMS", kb.bannerFp)
33

34
            if dbmsOsFp:
35
                value += "%s\n" % dbmsOsFp
36

37
        value += "back-end DBMS: "
38

39
        if not conf.extensiveFp:
40
            value += DBMS.RAIMA
41
            return value
42

43
        actVer = Format.getDbms()
44
        blank = " " * 15
45
        value += "active fingerprint: %s" % actVer
46

47
        if kb.bannerFp:
48
            banVer = kb.bannerFp.get("dbmsVersion")
49

50
            if banVer:
51
                banVer = Format.getDbms([banVer])
52
                value += "\n%sbanner parsing fingerprint: %s" % (blank, banVer)
53

54
        htmlErrorFp = Format.getErrorParsedDBMSes()
55

56
        if htmlErrorFp:
57
            value += "\n%shtml error message fingerprint: %s" % (blank, htmlErrorFp)
58

59
        return value
60

61
    def checkDbms(self):
62
        if not conf.extensiveFp and Backend.isDbmsWithin(RAIMA_ALIASES):
63
            setDbms(DBMS.RAIMA)
64
            return True
65

66
        infoMsg = "testing %s" % DBMS.RAIMA
67
        logger.info(infoMsg)
68

69
        result = inject.checkBooleanExpression("ROWNUMBER()=ROWNUMBER()")
70

71
        if result:
72
            infoMsg = "confirming %s" % DBMS.RAIMA
73
            logger.info(infoMsg)
74

75
            result = inject.checkBooleanExpression("INSSTR('[RANDSTR1]',0,0,'[RANDSTR2]') IS NOT NULL")
76

77
            if not result:
78
                warnMsg = "the back-end DBMS is not %s" % DBMS.RAIMA
79
                logger.warning(warnMsg)
80

81
                return False
82

83
            setDbms(DBMS.RAIMA)
84

85
            return True
86
        else:
87
            warnMsg = "the back-end DBMS is not %s" % DBMS.RAIMA
88
            logger.warning(warnMsg)
89

90
            return False
91

92
    def forceDbmsEnum(self):
93
        conf.db = ("%s%s" % (DBMS.RAIMA, METADB_SUFFIX)).replace(' ', '_')
94

95
Product

Resources

Company
