AutoSQLi icon indicating copy to clipboard operation
AutoSQLi copied to clipboard

Published 20 hours ago verified publisher icon clouedoc

tampers white-list; use sqlmap tampers

Open clouedoc opened this issue 7 years ago • 1 comments

~~Hola, currently a lot of tampers are used.~~ ~~The problem is that some tampers only works with some db and some are not needed in our case ( like the base64encode one )~~

~~If you've a suggestion of tamper to blacklist, I would be glad you post it here.~~

I'm thinking that AutoSQLI should adopt a white-list way of getting tampers. And I may get rid of the custom WhatWaf tampers (even if they are proven to be effective), because they don't have a priority level assigned to them

clouedoc avatar May 18 '18 18:05 clouedoc

To do this, I created a tampers directory in the root of the project, which in there is a WhatWaf_tampers, a sqlmap_tampers, and a whitelisted_tampers dir.

clouedoc avatar May 21 '18 19:05 clouedoc