[sqlmap-users] New feature

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi! I was using sqlmap for a year or two, and in a lot of scenarios i
found the need of "touch" the urls that the tool crafts to send to the
server.
Most of the times this happens because all scenarios are some sort of
unique, even if they share the same DMBS.
In this cases i spend a lot of time programming pseudo proxys (quick
and dirty coding in python) to solve the obstacle.
I have some free time now, and want to make a module for sqlmap that
"tampers" the data to be send, let me introduce some logic to modify
it, and then send it to the server.
For example: i need to replace blanks with /**/ for a mssql server. I
will be using sqlmap like this:

sqlmap -u "http://host/script.py?id=15" -p id
--tamper-script="/home/kaleb/script.py"

In script.py, some sort of code that picks the GET/POST about to be
sent to the server, search for the blanks in the query, replace them
with /**/, and then give it back to sqlmap to be sended.

Another example (mentioned in a previous thread): i need to replace
IFNULL(A,B) sentence with IF(ISNULL(A), B, A). It needed a lot of
string manipulation, made in a mini proxy, losting performance in the
middle.

The question: which part of sqlmap code i need to start reviewing?
Thus i used it a lot, never looked into the code. In need a little
tip, just to start with something in mind.

Thanks a lot.

PD: excuse my rusty english, by the way =)

-- 
--------8<--------
Carlos Gabriel Vergara
http://www.ThorSecurity.com.ar

PGP: http://www.ThorSecurity.com.ar/gabrielvergara.pgp
-------->8--------