Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 9ceb483

Browse files
bdamelebdamele
committed
added test cases for --common-tables across all DBMSes and supported techniques
1 parent 0128153 commit 9ceb483

1 file changed

Lines changed: 277 additions & 0 deletions

File tree

xml/livetests.xml

Lines changed: 277 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1374,6 +1374,283 @@
13741374
</case>
13751375
<!-- End of custom enumeration switches -->
13761376

1377+
<!-- Brute force switches -->
1378+
<case name="MySQL boolean-based brute-force tables enumeration - provided no database">
1379+
<switches>
1380+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1381+
<threads value="4"/>
1382+
<tech value="B"/>
1383+
<commonTables value="True"/>
1384+
</switches>
1385+
<parse>
1386+
<item value="r'Current database.+2 tables.+data.+users'"/>
1387+
</parse>
1388+
</case>
1389+
<case name="MySQL boolean-based brute-force tables enumeration - provided database">
1390+
<switches>
1391+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1392+
<threads value="4"/>
1393+
<tech value="B"/>
1394+
<db value="testdb"/>
1395+
<commonTables value="True"/>
1396+
</switches>
1397+
<parse>
1398+
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
1399+
</parse>
1400+
</case>
1401+
<case name="MySQL error-based brute-force tables enumeration - provided no database">
1402+
<switches>
1403+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1404+
<threads value="4"/>
1405+
<tech value="E"/>
1406+
<commonTables value="True"/>
1407+
</switches>
1408+
<parse>
1409+
<item value="r'Current database.+2 tables.+data.+users'"/>
1410+
</parse>
1411+
</case>
1412+
<case name="MySQL error-based brute-force tables enumeration - provided database">
1413+
<switches>
1414+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1415+
<threads value="4"/>
1416+
<tech value="E"/>
1417+
<db value="testdb"/>
1418+
<commonTables value="True"/>
1419+
</switches>
1420+
<parse>
1421+
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
1422+
</parse>
1423+
</case>
1424+
<case name="MySQL UNION query brute-force tables enumeration - provided no database">
1425+
<switches>
1426+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1427+
<threads value="4"/>
1428+
<tech value="U"/>
1429+
<commonTables value="True"/>
1430+
</switches>
1431+
<parse>
1432+
<item value="r'Current database.+2 tables.+data.+users'"/>
1433+
</parse>
1434+
</case>
1435+
<case name="MySQL UNION query brute-force tables enumeration - provided database">
1436+
<switches>
1437+
<url value="http://debiandev/sqlmap/mysql/get_int.php?id=1"/>
1438+
<threads value="4"/>
1439+
<tech value="U"/>
1440+
<db value="testdb"/>
1441+
<commonTables value="True"/>
1442+
</switches>
1443+
<parse>
1444+
<item value="r'Database: testdb.+2 tables.+data.+users'"/>
1445+
</parse>
1446+
</case>
1447+
<case name="PostgreSQL boolean-based brute-force tables enumeration - provided no database">
1448+
<switches>
1449+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1450+
<threads value="4"/>
1451+
<tech value="B"/>
1452+
<commonTables value="True"/>
1453+
</switches>
1454+
<parse>
1455+
<item value="r'Current database.+1 table.+users'"/>
1456+
</parse>
1457+
</case>
1458+
<case name="PostgreSQL boolean-based brute-force tables enumeration - provided database">
1459+
<switches>
1460+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1461+
<threads value="4"/>
1462+
<tech value="B"/>
1463+
<db value="public"/>
1464+
<commonTables value="True"/>
1465+
</switches>
1466+
<parse>
1467+
<item value="r'Database: public.+1 table.+users'"/>
1468+
</parse>
1469+
</case>
1470+
<case name="PostgreSQL error-based brute-force tables enumeration - provided no database">
1471+
<switches>
1472+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1473+
<threads value="4"/>
1474+
<tech value="E"/>
1475+
<commonTables value="True"/>
1476+
</switches>
1477+
<parse>
1478+
<item value="r'Current database.+1 table.+users'"/>
1479+
</parse>
1480+
</case>
1481+
<case name="PostgreSQL error-based brute-force tables enumeration - provided database">
1482+
<switches>
1483+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1484+
<threads value="4"/>
1485+
<tech value="E"/>
1486+
<db value="public"/>
1487+
<commonTables value="True"/>
1488+
</switches>
1489+
<parse>
1490+
<item value="r'Database: public.+1 table.+users'"/>
1491+
</parse>
1492+
</case>
1493+
<case name="PostgreSQL UNION query brute-force tables enumeration - provided no database">
1494+
<switches>
1495+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1496+
<threads value="4"/>
1497+
<tech value="U"/>
1498+
<commonTables value="True"/>
1499+
</switches>
1500+
<parse>
1501+
<item value="r'Current database.+1 table.+users'"/>
1502+
</parse>
1503+
</case>
1504+
<case name="PostgreSQL UNION query brute-force tables enumeration - provided database">
1505+
<switches>
1506+
<url value="http://debiandev/sqlmap/pgsql/get_int.php?id=1"/>
1507+
<threads value="4"/>
1508+
<tech value="U"/>
1509+
<db value="public"/>
1510+
<commonTables value="True"/>
1511+
</switches>
1512+
<parse>
1513+
<item value="r'Database: public.+1 table.+users'"/>
1514+
</parse>
1515+
</case>
1516+
<case name="Oracle boolean-based brute-force tables enumeration - provided no database">
1517+
<switches>
1518+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1519+
<threads value="4"/>
1520+
<tech value="B"/>
1521+
<commonTables value="True"/>
1522+
</switches>
1523+
<parse>
1524+
<item value="r'Current database.+6 tables.+users'"/>
1525+
</parse>
1526+
</case>
1527+
<case name="Oracle boolean-based brute-force tables enumeration - provided database">
1528+
<switches>
1529+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1530+
<threads value="4"/>
1531+
<tech value="B"/>
1532+
<db value="sys"/>
1533+
<commonTables value="True"/>
1534+
</switches>
1535+
<parse>
1536+
<item value="r'Database: public.+6 tables.+users'"/>
1537+
</parse>
1538+
</case>
1539+
<case name="Oracle error-based brute-force tables enumeration - provided no database">
1540+
<switches>
1541+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1542+
<threads value="4"/>
1543+
<tech value="E"/>
1544+
<commonTables value="True"/>
1545+
</switches>
1546+
<parse>
1547+
<item value="r'Current database.+6 tables.+users'"/>
1548+
</parse>
1549+
</case>
1550+
<case name="Oracle error-based brute-force tables enumeration - provided database">
1551+
<switches>
1552+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1553+
<threads value="4"/>
1554+
<tech value="E"/>
1555+
<db value="sys"/>
1556+
<commonTables value="True"/>
1557+
</switches>
1558+
<parse>
1559+
<item value="r'Database: public.+6 tables.+users'"/>
1560+
</parse>
1561+
</case>
1562+
<case name="Oracle UNION query brute-force tables enumeration - provided no database">
1563+
<switches>
1564+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1565+
<threads value="4"/>
1566+
<tech value="U"/>
1567+
<commonTables value="True"/>
1568+
</switches>
1569+
<parse>
1570+
<item value="r'Current database.+6 tables.+users'"/>
1571+
</parse>
1572+
</case>
1573+
<case name="Oracle UNION query brute-force tables enumeration - provided database">
1574+
<switches>
1575+
<url value="http://debiandev/sqlmap/oracle/get_int.php?id=1"/>
1576+
<threads value="4"/>
1577+
<tech value="U"/>
1578+
<db value="sys"/>
1579+
<commonTables value="True"/>
1580+
</switches>
1581+
<parse>
1582+
<item value="r'Database: public.+6 tables.+users'"/>
1583+
</parse>
1584+
</case>
1585+
<case name="IBM DB2 boolean-based brute-force tables enumeration - provided no database">
1586+
<switches>
1587+
<url value="http://debiandev/sqlmap/db2/get_int.php?id=1"/>
1588+
<threads value="4"/>
1589+
<tech value="B"/>
1590+
<commonTables value="True"/>
1591+
</switches>
1592+
<parse>
1593+
<item value="r'Current database.+1 table+users'"/>
1594+
</parse>
1595+
</case>
1596+
<case name="IBM DB2 boolean-based brute-force tables enumeration - provided database">
1597+
<switches>
1598+
<url value="http://debiandev/sqlmap/db2/get_int.php?id=1"/>
1599+
<threads value="4"/>
1600+
<tech value="B"/>
1601+
<db value="db2inst1"/>
1602+
<commonTables value="True"/>
1603+
</switches>
1604+
<parse>
1605+
<item value="r'Database: db2inst1.+1 table.+users'"/>
1606+
</parse>
1607+
</case>
1608+
<case name="SQLite 3 boolean-based brute-force tables enumeration - provided no database">
1609+
<switches>
1610+
<url value="http://debiandev/sqlmap/sqlite/get_int_3.php?id=1"/>
1611+
<threads value="4"/>
1612+
<tech value="B"/>
1613+
<commonTables value="True"/>
1614+
</switches>
1615+
<parse>
1616+
<item value="r'Current database.+1 table.+users'"/>
1617+
</parse>
1618+
</case>
1619+
<case name="SQLite 3 UNION query brute-force tables enumeration - provided no database">
1620+
<switches>
1621+
<url value="http://debiandev/sqlmap/sqlite/get_int_3.php?id=1"/>
1622+
<threads value="4"/>
1623+
<tech value="U"/>
1624+
<commonTables value="True"/>
1625+
</switches>
1626+
<parse>
1627+
<item value="r'Current database.+1 table.+users'"/>
1628+
</parse>
1629+
</case>
1630+
<case name="Firebird boolean-based brute-force tables enumeration - provided no database">
1631+
<switches>
1632+
<url value="http://debiandev/sqlmap/firebird/get_int.php?id=1"/>
1633+
<threads value="4"/>
1634+
<tech value="B"/>
1635+
<commonTables value="True"/>
1636+
</switches>
1637+
<parse>
1638+
<item value="r'Current database.+1 table.+users'"/>
1639+
</parse>
1640+
</case>
1641+
<case name="Firebird UNION query brute-force tables enumeration - provided no database">
1642+
<switches>
1643+
<url value="http://debiandev/sqlmap/firebird/get_int.php?id=1"/>
1644+
<threads value="4"/>
1645+
<tech value="U"/>
1646+
<commonTables value="True"/>
1647+
</switches>
1648+
<parse>
1649+
<item value="r'Current database.+1 table.+users'"/>
1650+
</parse>
1651+
</case>
1652+
<!-- End of brute force switches -->
1653+
13771654
<!-- Search enumeration switches -->
13781655
<case name="MySQL boolean-based multi-threaded search enumeration - database">
13791656
<switches>

0 commit comments

Comments
 (0)