modules/audit/sqli_blind_timing.rb in arachni-0.3 vs modules/audit/sqli_blind_timing.rb in arachni-0.4
- old
+ new
@@ -1,8 +1,8 @@
=begin
Arachni
- Copyright (c) 2010-2011 Tasos "Zapotek" Laskos <tasos.laskos@gmail.com>
+ Copyright (c) 2010-2012 Tasos "Zapotek" Laskos <tasos.laskos@gmail.com>
This is free software; you can copy and distribute and modify
this program under the term of the GPL v2.0 License
(See LICENSE file for details)
@@ -16,26 +16,21 @@
# Blind SQL Injection module using timing attacks.
#
# @author: Tasos "Zapotek" Laskos
# <tasos.laskos@gmail.com>
# <zapotek@segfault.gr>
-# @version: 0.2.1
+# @version: 0.2.2
#
# @see http://cwe.mitre.org/data/definitions/89.html
# @see http://capec.mitre.org/data/definitions/7.html
# @see http://www.owasp.org/index.php/Blind_SQL_Injection
#
class BlindTimingSQLInjection < Arachni::Module::Base
include Arachni::Module::Utilities
- def initialize( page )
- super( page )
- end
-
- def prepare( )
-
+ def prepare
@@__injection_str ||= []
if @@__injection_str.empty?
read_file( 'payloads.txt' ) {
|str|
@@ -73,10 +68,10 @@
Issue::Element::LINK,
Issue::Element::COOKIE,
Issue::Element::HEADER
],
:author => 'Tasos "Zapotek" Laskos <tasos.laskos@gmail.com> ',
- :version => '0.2.1',
+ :version => '0.2.2',
:references => {
'OWASP' => 'http://www.owasp.org/index.php/Blind_SQL_Injection',
'MITRE - CAPEC' => 'http://capec.mitre.org/data/definitions/7.html'
},
:targets => { 'Generic' => 'all' },