📄 mssqlscancontent.pas

📁 domain3.2 SQL注入漏洞扫描旁注上传功能数据库浏览

💻 PAS

字号:

{##########################################
         旁注入侵专用程序 3.0升级版
 ----------------------------------------
  模块：SQL注入检测 - 检测字段内容
  描述：该单元为检测字段内容的多线程单元
  作者：2005.3.20日下午  明小子
  更新：2005.4.14日凌晨更新
##########################################}

unit MSSQLScanContent;

interface

uses
  Classes, GetHttpSize, SysUtils, StdCtrls, Windows, Dialogs;

type
  MyMSSQLScanContent = class(TThread)
  private
    ContentInt, OutTextInt, OutTime: integer;
    ContentStr: string;
    ForNum, And1: integer;
    SqlURL: string;
    Tmpcn1, Min, Max: integer;
    TmpHanzi1, TmpHanzi2: byte;
    TmpFuncStr: string;
    TmpScanType: string;
    TmpTopNum: integer;
    TmpN: integer;
    procedure UpDataStr;
    procedure hanzi;
  protected
    procedure Execute; override;
  public
    constructor Create(Num, TmpAnd1, TopNum: integer; URL, FuncStr, ScanType: string);
  end;

implementation

uses MainUnit;

constructor MyMSSQLScanContent.Create(Num, TmpAnd1, TopNum: integer; URL, FuncStr, ScanType: string);
begin
  ForNum := Num;
  and1 := TmpAnd1;
  TmpTopNum := TopNum;
  TmpScanType := ScanType;
  TmpFuncStr := FuncStr;
  SqlUrl := Url;
  FreeonTerminate := True;
  inherited Create(False);
end;

procedure MyMSSQLScanContent.UpDataStr;
begin
  MainForm.GuessLsv.Items[ForNum - 1].SubItems.Text := Chr(OutTextInt);
end;

procedure MyMSSQLScanContent.hanzi;
begin
  MainForm.GuessLsv.Items[ForNum - 1].SubItems.Text := char(TmpHanzi1) + char(TmpHanzi2);
end;

procedure MyMSSQLScanContent.Execute;
begin

end;

end.

💿 文件大小 1129 K

👤 上传用户 xuhuizi

📂 所属分类 Internet/网络编程

🏷️ 相关标签

#domain #3.2 #SQL #漏洞扫描

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -