Skip to content

Commit 90b0ac3

Browse files
stamparmstamparm
committed
New WAF script (AWS WAF)
1 parent 63a7477 commit 90b0ac3

File tree

3 files changed

+27
-2
lines changed

3 files changed

+27
-2
lines changed

lib/core/settings.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@
1919
from lib.core.enums import OS
2020

2121
# sqlmap version (<major>.<minor>.<month>.<monthly commit>)
22-
VERSION = "1.0.12.1"
22+
VERSION = "1.0.12.2"
2323
TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
2424
TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
2525
VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)

txt/checksum.md5

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ e60456db5380840a586654344003d4e6 lib/core/readlineng.py
4545
b3a62d41a5af6cd7fa733b6227febb0c lib/core/replication.py
4646
99a2b496b9d5b546b335653ca801153f lib/core/revision.py
4747
7c15dd2777af4dac2c89cab6df17462e lib/core/session.py
48-
e777e700b2a6e9b82993f8be46db45ac lib/core/settings.py
48+
36df24ce03ae666431af14bf24f4c953 lib/core/settings.py
4949
7af83e4f18cab6dff5e67840eb65be80 lib/core/shell.py
5050
23657cd7d924e3c6d225719865855827 lib/core/subprocessng.py
5151
c3ace7874a536d801f308cf1fd03df99 lib/core/target.py
@@ -385,6 +385,7 @@ ca3ab78d6ed53b7f2c07ed2530d47efd udf/postgresql/windows/32/8.4/lib_postgresqlud
385385
deb8dd4543177479b185af8b383a8bdf waf/airlock.py
386386
0da662422cde266dd47cea3f5be6a309 waf/anquanbao.py
387387
012b4acd41f0c12df88cf0276c2afd1a waf/armor.py
388+
64415c1d49defb6a931db731f4a9d972 waf/aws.py
388389
757fe0f66a24719fa596cb974ee6ae71 waf/baidu.py
389390
8a26fe9e0ae48e8f28272769aa7dc16e waf/barracuda.py
390391
826b64868a10caf1229d3bfcbbb4d594 waf/bigip.py

waf/aws.py

Lines changed: 24 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,24 @@
1+
#!/usr/bin/env python
2+
3+
"""
4+
Copyright (c) 2006-2016 sqlmap developers (http://sqlmap.org/)
5+
See the file 'doc/COPYING' for copying permission
6+
"""
7+
8+
import re
9+
10+
from lib.core.enums import HTTP_HEADER
11+
from lib.core.settings import WAF_ATTACK_VECTORS
12+
13+
__product__ = "Amazon Web Services Web Application Firewall (Amazon)"
14+
15+
def detect(get_page):
16+
retval = False
17+
18+
for vector in WAF_ATTACK_VECTORS:
19+
page, headers, code = get_page(get=vector)
20+
retval = code == 403 and re.search(r"\bAWS", headers.get(HTTP_HEADER.SERVER, ""), re.I) is not None
21+
if retval:
22+
break
23+
24+
return retval

0 commit comments

Comments
 (0)