minor optimization

stamparm · stamparm · commit 440b7efe55c8 · 2011-11-20T20:14:47.000Z
diff --git a/lib/core/agent.py b/lib/core/agent.py
@@ -348,7 +348,7 @@ def nullCastConcatFields(self, fields):
                 nulledCastedFields.append(self.nullAndCastField(field))
 
             delimiterStr = "%s'%s'%s" % (dbmsDelimiter, kb.chars.delimiter, dbmsDelimiter)
-            nulledCastedConcatFields = delimiterStr.join([field for field in nulledCastedFields])
+            nulledCastedConcatFields = delimiterStr.join(field for field in nulledCastedFields)
 
         return nulledCastedConcatFields
 
diff --git a/lib/core/convert.py b/lib/core/convert.py
@@ -62,10 +62,10 @@ def md5hash(value):
 
 def orddecode(value):
     packedString = struct.pack("!"+"I" * len(value), *value)
-    return "".join([chr(char) for char in struct.unpack("!"+"I"*(len(packedString)/4), packedString)])
+    return "".join(chr(char) for char in struct.unpack("!"+"I"*(len(packedString)/4), packedString))
 
 def ordencode(value):
-    return tuple([ord(char) for char in value])
+    return tuple(ord(char) for char in value)
 
 def sha1hash(value):
     if sys.modules.has_key('hashlib'):
diff --git a/lib/core/settings.py b/lib/core/settings.py
@@ -152,30 +152,30 @@
 DB2_SYSTEM_DBS = ( "NULLID", "SQLJ", "SYSCAT", "SYSFUN", "SYSIBM", "SYSIBMADM", "SYSIBMINTERNAL", "SYSIBMTS",\
                    "SYSPROC", "SYSPUBLIC", "SYSSTAT", "SYSTOOLS" )
 
-MSSQL_ALIASES = [ "microsoft sql server", "mssqlserver", "mssql", "ms" ]
-MYSQL_ALIASES = [ "mysql", "my" ]
-PGSQL_ALIASES = [ "postgresql", "postgres", "pgsql", "psql", "pg" ]
-ORACLE_ALIASES = [ "oracle", "orcl", "ora", "or" ]
-SQLITE_ALIASES = [ "sqlite", "sqlite3" ]
-ACCESS_ALIASES = [ "msaccess", "access", "jet", "microsoft access" ]
-FIREBIRD_ALIASES = [ "firebird", "mozilla firebird", "interbase", "ibase", "fb" ]
-MAXDB_ALIASES = [ "maxdb", "sap maxdb", "sap db" ]
-SYBASE_ALIASES = [ "sybase", "sybase sql server" ]
-DB2_ALIASES = [ "db2", "ibm db2", "ibmdb2" ]
+MSSQL_ALIASES = ( "microsoft sql server", "mssqlserver", "mssql", "ms" )
+MYSQL_ALIASES = ( "mysql", "my" )
+PGSQL_ALIASES = ( "postgresql", "postgres", "pgsql", "psql", "pg" )
+ORACLE_ALIASES = ( "oracle", "orcl", "ora", "or" )
+SQLITE_ALIASES = ( "sqlite", "sqlite3" )
+ACCESS_ALIASES = ( "msaccess", "access", "jet", "microsoft access" )
+FIREBIRD_ALIASES = ( "firebird", "mozilla firebird", "interbase", "ibase", "fb" )
+MAXDB_ALIASES = ( "maxdb", "sap maxdb", "sap db" )
+SYBASE_ALIASES = ( "sybase", "sybase sql server" )
+DB2_ALIASES = ( "db2", "ibm db2", "ibmdb2" )
 
 SUPPORTED_DBMS = MSSQL_ALIASES + MYSQL_ALIASES + PGSQL_ALIASES + ORACLE_ALIASES + SQLITE_ALIASES + ACCESS_ALIASES + FIREBIRD_ALIASES + MAXDB_ALIASES + SYBASE_ALIASES + DB2_ALIASES
 SUPPORTED_OS = ( "linux", "windows" )
 
-DBMS_DICT = { DBMS.MSSQL: [MSSQL_ALIASES, "python-pymssql", "http://pymssql.sourceforge.net/"],
-              DBMS.MYSQL: [MYSQL_ALIASES, "python pymysql", "http://code.google.com/p/pymysql/"],
-              DBMS.PGSQL: [PGSQL_ALIASES, "python-psycopg2", "http://initd.org/psycopg/"],
-              DBMS.ORACLE: [ORACLE_ALIASES, "python cx_Oracle", "http://cx-oracle.sourceforge.net/"],
-              DBMS.SQLITE: [SQLITE_ALIASES, "python-pysqlite2", "http://pysqlite.googlecode.com/"],
-              DBMS.ACCESS: [ACCESS_ALIASES, "python-pyodbc", "http://pyodbc.googlecode.com/"],
-              DBMS.FIREBIRD: [FIREBIRD_ALIASES, "python-kinterbasdb", "http://kinterbasdb.sourceforge.net/"],
-              DBMS.MAXDB: [MAXDB_ALIASES, None, None],
-              DBMS.SYBASE: [SYBASE_ALIASES, "python-pymssql", "http://pymssql.sourceforge.net/"],
-              DBMS.DB2: [DB2_ALIASES, "python ibm-db", "http://code.google.com/p/ibm-db/"]
+DBMS_DICT = { DBMS.MSSQL: (MSSQL_ALIASES, "python-pymssql", "http://pymssql.sourceforge.net/"),
+              DBMS.MYSQL: (MYSQL_ALIASES, "python pymysql", "http://code.google.com/p/pymysql/"),
+              DBMS.PGSQL: (PGSQL_ALIASES, "python-psycopg2", "http://initd.org/psycopg/"),
+              DBMS.ORACLE: (ORACLE_ALIASES, "python cx_Oracle", "http://cx-oracle.sourceforge.net/"),
+              DBMS.SQLITE: (SQLITE_ALIASES, "python-pysqlite2", "http://pysqlite.googlecode.com/"),
+              DBMS.ACCESS: (ACCESS_ALIASES, "python-pyodbc", "http://pyodbc.googlecode.com/"),
+              DBMS.FIREBIRD: (FIREBIRD_ALIASES, "python-kinterbasdb", "http://kinterbasdb.sourceforge.net/"),
+              DBMS.MAXDB: (MAXDB_ALIASES, None, None),
+              DBMS.SYBASE: (SYBASE_ALIASES, "python-pymssql", "http://pymssql.sourceforge.net/"),
+              DBMS.DB2: (DB2_ALIASES, "python ibm-db", "http://code.google.com/p/ibm-db/")
             }
 
 REFERER_ALIASES = ( "ref", "referer", "referrer" )
@@ -258,10 +258,10 @@
 SOAP_REGEX = r"\A(<\?xml[^>]+>)?\s*<soap.+</soap"
 
 # Reference: http://www.cs.ru.nl/bachelorscripties/2010/Martin_Devillers___0437999___Analyzing_password_strength.pdf
-COMMON_PASSWORD_SUFFIXES = ["1", "123", "2", "12", "3", "13", "7", "11", "5", "22", "23", "01", "4", "07", "21", "14", "10", "06", "08", "8", "15", "69", "16", "6", "18"]
+COMMON_PASSWORD_SUFFIXES = ("1", "123", "2", "12", "3", "13", "7", "11", "5", "22", "23", "01", "4", "07", "21", "14", "10", "06", "08", "8", "15", "69", "16", "6", "18")
 
 # Reference: http://www.the-interweb.com/serendipity/index.php?/archives/94-A-brief-analysis-of-40,000-leaked-MySpace-passwords.html
-COMMON_PASSWORD_SUFFIXES += ["!", ".", "*", "!!", "?", ";", "..", "!!!", ",", "@"]
+COMMON_PASSWORD_SUFFIXES += ("!", ".", "*", "!!", "?", ";", "..", "!!!", ",", "@")
 
 # Splitter used between requests in WebScarab log files
 WEBSCARAB_SPLITTER = "### Conversation"
diff --git a/lib/core/target.py b/lib/core/target.py
@@ -147,7 +147,7 @@ def __setRequestParams():
                 # No need for url encoding/decoding the user agent
                 conf.parameters[PLACE.UA] = urldecode(headerValue)
 
-                condition = any([not conf.testParameter, intersect(conf.testParameter, USER_AGENT_ALIASES)])
+                condition = any((not conf.testParameter, intersect(conf.testParameter, USER_AGENT_ALIASES)))
 
                 if condition:
                     conf.paramDict[PLACE.UA] = { PLACE.UA: headerValue }
@@ -157,7 +157,7 @@ def __setRequestParams():
                 # No need for url encoding/decoding the referer
                 conf.parameters[PLACE.REFERER] = urldecode(headerValue)
 
-                condition = any([not conf.testParameter, intersect(conf.testParameter, REFERER_ALIASES)])
+                condition = any((not conf.testParameter, intersect(conf.testParameter, REFERER_ALIASES)))
 
                 if condition:
                     conf.paramDict[PLACE.REFERER] = { PLACE.REFERER: headerValue }
diff --git a/lib/parse/cmdline.py b/lib/parse/cmdline.py
@@ -630,8 +630,8 @@ def cmdLineParser():
                 expandMnemonics(sys.argv[i+1], parser, args)
                 break
 
-        if not any([args.direct, args.url, args.logFile, args.bulkFile, args.googleDork, args.configFile, \
-            args.requestFile, args.updateAll, args.smokeTest, args.liveTest, args.realTest, args.wizard, args.dependencies]):
+        if not any((args.direct, args.url, args.logFile, args.bulkFile, args.googleDork, args.configFile, \
+            args.requestFile, args.updateAll, args.smokeTest, args.liveTest, args.realTest, args.wizard, args.dependencies)):
             errMsg = "missing a mandatory parameter (-d, -u, -l, -m, -r, -g, -c, --wizard, --update or --dependencies), "
             errMsg += "-h for help"
             parser.error(errMsg)
diff --git a/lib/request/connect.py b/lib/request/connect.py
@@ -266,7 +266,7 @@ def getPage(**kwargs):
             if not req.has_header(HTTPHEADER.ACCEPT_ENCODING):
                 requestHeaders += "%s: identity\n" % HTTPHEADER.ACCEPT_ENCODING
 
-            requestHeaders += "\n".join(["%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in req.header_items()])
+            requestHeaders += "\n".join("%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in req.header_items())
 
             if not req.has_header(HTTPHEADER.COOKIE) and cookieStr:
                 requestHeaders += "\n%s" % cookieStr[:-2]
@@ -396,7 +396,7 @@ def getPage(**kwargs):
             responseMsg += "[#%d] (%d %s):\n" % (threadData.lastRequestUID, code, status)
 
             if responseHeaders:
-                logHeaders = "\n".join(["%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in responseHeaders.items()])
+                logHeaders = "\n".join("%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in responseHeaders.items())
 
             logHTTPTraffic(requestMsg, "%s%s\n\n%s" % (responseMsg, logHeaders, page if isinstance(page, unicode) else getUnicode(page)))
 
@@ -486,7 +486,7 @@ def getPage(**kwargs):
 
         responseMsg += "[#%d] (%d %s):\n" % (threadData.lastRequestUID, code, status)
         if responseHeaders:
-            logHeaders = "\n".join(["%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in responseHeaders.items()])
+            logHeaders = "\n".join("%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in responseHeaders.items())
 
         logHTTPTraffic(requestMsg, "%s%s\n\n%s" % (responseMsg, logHeaders, page if isinstance(page, unicode) else getUnicode(page)))
 
diff --git a/lib/request/inject.py b/lib/request/inject.py
@@ -319,7 +319,7 @@ def __goInferenceProxy(expression, fromUser=False, expected=None, batch=False, r
         expression += FROM_TABLE[Backend.getIdentifiedDbms()]
 
     outputs = __goInferenceFields(expression, expressionFields, expressionFieldsList, payload, expected, resumeValue=resumeValue, charsetType=charsetType, firstChar=firstChar, lastChar=lastChar, dump=dump)
-    returnValue = ", ".join([output for output in outputs])
+    returnValue = ", ".join(output for output in outputs)
 
     return returnValue
 
diff --git a/lib/request/redirecthandler.py b/lib/request/redirecthandler.py
@@ -49,7 +49,7 @@ def common_http_redirect(self, result, headers, code, content, msg):
         responseMsg += "[#%d] (%d %s):\n" % (threadData.lastRequestUID, code, getUnicode(msg))
 
         if headers:
-            logHeaders = "\n".join(["%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in headers.items()])
+            logHeaders = "\n".join("%s: %s" % (key.capitalize() if isinstance(key, basestring) else key, getUnicode(value)) for (key, value) in headers.items())
         else:
             logHeaders = ""
 
diff --git a/lib/utils/hash.py b/lib/utils/hash.py
@@ -394,7 +394,7 @@ def hashRecognition(value):
             elif isMySQL and regex == HASH.ORACLE_OLD:
                 continue
             elif regex == HASH.CRYPT_GENERIC:
-                if any([getCompiledRegex(GENERAL_IP_ADDRESS_REGEX).match(value), value.lower() == value, value.upper() == value, value.isdigit()]):
+                if any((getCompiledRegex(GENERAL_IP_ADDRESS_REGEX).match(value), value.lower() == value, value.upper() == value, value.isdigit())):
                     continue
             elif getCompiledRegex(regex).match(value):
                 retVal = regex
diff --git a/lib/utils/resume.py b/lib/utils/resume.py
@@ -124,7 +124,7 @@ def resume(expression, payload):
 
             if logValue:
                 if kb.technique == PAYLOAD.TECHNIQUE.UNION:
-                    logValue = ", ".join([value.replace(DUMP_DEL_MARKER, ", ") for value in logValue])
+                    logValue = ", ".join(value.replace(DUMP_DEL_MARKER, ", ") for value in logValue)
                 else:
                     return None
             else:
diff --git a/plugins/dbms/access/syntax.py b/plugins/dbms/access/syntax.py
@@ -67,7 +67,7 @@ def escape(expression):
             oldUpper = oldUpper.lstrip("CHR(").rstrip(")")
             oldUpper = oldUpper.split("&")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped).replace("'&'", "")
 
         return expression
diff --git a/plugins/dbms/db2/syntax.py b/plugins/dbms/db2/syntax.py
@@ -66,7 +66,7 @@ def escape(expression):
             oldUpper = oldUpper.lstrip("CHR(").rstrip(")")
             oldUpper = oldUpper.split("||")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped)
 
         return expression
diff --git a/plugins/dbms/firebird/syntax.py b/plugins/dbms/firebird/syntax.py
@@ -69,7 +69,7 @@ def escape(expression):
             oldUpper = oldUpper.lstrip("ASCII_CHAR(").rstrip(")")
             oldUpper = oldUpper.split("||")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped).replace("'||'", "")
 
         return expression
diff --git a/plugins/dbms/mysql/syntax.py b/plugins/dbms/mysql/syntax.py
@@ -47,7 +47,7 @@ def escape(expression):
             oldUpper = oldUpper.lstrip("CHAR(").rstrip(")")
             oldUpper = oldUpper.split(",")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped)
 
         original = expression
diff --git a/plugins/dbms/oracle/syntax.py b/plugins/dbms/oracle/syntax.py
@@ -64,7 +64,7 @@ def escape(expression):
             oldUpper = oldUpper.replace("CHR(", "").replace(")", "")
             oldUpper = oldUpper.split("||")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped)
 
         return expression
diff --git a/plugins/dbms/postgresql/syntax.py b/plugins/dbms/postgresql/syntax.py
@@ -65,7 +65,7 @@ def escape(expression):
             oldUpper = oldUpper.replace("CHR(", "").replace(")", "")
             oldUpper = oldUpper.split("||")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped)
 
         return expression
diff --git a/plugins/dbms/sybase/syntax.py b/plugins/dbms/sybase/syntax.py
@@ -65,7 +65,7 @@ def escape(expression):
             oldUpper = oldUpper.replace("CHAR(", "").replace(")", "")
             oldUpper = oldUpper.split("+")
 
-            escaped = "'%s'" % "".join([chr(int(char)) for char in oldUpper])
+            escaped = "'%s'" % "".join(chr(int(char)) for char in oldUpper)
             expression = expression.replace(old, escaped)
 
         return expression
diff --git a/plugins/generic/enumeration.py b/plugins/generic/enumeration.py
@@ -897,7 +897,7 @@ def getTables(self, bruteForce=None):
                 value = filter(None, arrayizeValue(value))
 
                 if len(value) > 0 and not isinstance(value[0], (list, tuple)):
-                    value = zip([conf.db for i in xrange(len(value))], value)
+                    value = zip((conf.db for i in xrange(len(value))), value)
 
                 for db, table in filterPairValues(value):
                     db = safeSQLIdentificatorNaming(db)
