Develop-Python
diff --git a/‎doc/THIRD-PARTY.md‎
Lines changed: 2 additions & 0 deletions b/‎doc/THIRD-PARTY.md‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎lib/controller/checks.py‎
Lines changed: 35 additions & 102 deletions b/‎lib/controller/checks.py‎
Lines changed: 35 additions & 102 deletions
diff --git a/‎lib/controller/controller.py‎
Lines changed: 0 additions & 4 deletions b/‎lib/controller/controller.py‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎lib/core/option.py‎
Lines changed: 0 additions & 41 deletions b/‎lib/core/option.py‎
Lines changed: 0 additions & 41 deletions
diff --git a/‎lib/core/optiondict.py‎
Lines changed: 0 additions & 1 deletion b/‎lib/core/optiondict.py‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎lib/core/patch.py‎
Lines changed: 0 additions & 2 deletions b/‎lib/core/patch.py‎
Lines changed: 0 additions & 2 deletions
diff --git a/‎lib/core/settings.py‎
Lines changed: 1 addition & 1 deletion b/‎lib/core/settings.py‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/parse/cmdline.py‎
Lines changed: 0 additions & 3 deletions b/‎lib/parse/cmdline.py‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎sqlmap.conf‎
Lines changed: 0 additions & 4 deletions b/‎sqlmap.conf‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎swagger.yaml‎
Lines changed: 0 additions & 1 deletion b/‎swagger.yaml‎
Lines changed: 0 additions & 1 deletion
@@ -276,6 +276,8 @@ be bound by the terms and conditions of this License Agreement.
 
 * The `bottle` web framework library located under `thirdparty/bottle/`.
   Copyright (C) 2012, Marcel Hellkamp.
+* The `identYwaf` library located under `thirdparty/identywaf/`.
+  Copyright (C) 2019, Miroslav Stampar.
 * The `ordereddict` library located under `thirdparty/odict/`.
   Copyright (C) 2009, Raymond Hettinger.
 * The `six` Python 2 and 3 compatibility library located under `thirdparty/six/`.
 
@@ -108,6 +108,7 @@
 from lib.techniques.union.test import unionTest
 from lib.techniques.union.use import configUnion
 from thirdparty import six
+from thirdparty.identywaf import identYwaf
 from thirdparty.six.moves import http_client as _http_client
 
 def checkSqlInjection(place, parameter, value):
@@ -1402,116 +1403,51 @@ def checkWaf():
         kb.resendPostOnRedirect = popValue()
         kb.redirectChoice = popValue()
 
+    # TODO: today
     if retVal:
-        warnMsg = "heuristics detected that the target "
-        warnMsg += "is protected by some kind of WAF/IPS"
-        logger.critical(warnMsg)
-
-        if not conf.identifyWaf:
-            message = "do you want sqlmap to try to detect backend "
-            message += "WAF/IPS? [y/N] "
-
-            if readInput(message, default='N', boolean=True):
-                conf.identifyWaf = True
-
-        if conf.timeout == defaults.timeout:
-            logger.warning("dropping timeout to %d seconds (i.e. '--timeout=%d')" % (IDS_WAF_CHECK_TIMEOUT, IDS_WAF_CHECK_TIMEOUT))
-            conf.timeout = IDS_WAF_CHECK_TIMEOUT
-
-    hashDBWrite(HASHDB_KEYS.CHECK_WAF_RESULT, retVal, True)
-
-    return retVal
-
-@stackedmethod
-def identifyWaf():
-    if not conf.identifyWaf:
-        return None
-
-    if not kb.wafFunctions:
-        setWafFunctions()
-
-    kb.testMode = True
-
-    infoMsg = "using WAF scripts to detect "
-    infoMsg += "backend WAF/IPS protection"
-    logger.info(infoMsg)
-
-    @cachedmethod
-    def _(*args, **kwargs):
-        page, headers, code = None, None, None
-        try:
-            pushValue(kb.redirectChoice)
-            pushValue(kb.resendPostOnRedirect)
-
-            kb.redirectChoice = REDIRECTION.YES
-            kb.resendPostOnRedirect = True
-
-            if kwargs.get("get"):
-                kwargs["get"] = urlencode(kwargs["get"])
-            kwargs["raise404"] = False
-            kwargs["silent"] = True
-            kwargs["finalCode"] = True
-
-            page, headers, code = Request.getPage(*args, **kwargs)
-        except Exception:
-            pass
-        finally:
-            kb.resendPostOnRedirect = popValue()
-            kb.redirectChoice = popValue()
+        pass
+        # identYwaf
+        #if conf.timeout == defaults.timeout:
+            #logger.warning("dropping timeout to %d seconds (i.e. '--timeout=%d')" % (IDS_WAF_CHECK_TIMEOUT, IDS_WAF_CHECK_TIMEOUT))
+            #conf.timeout = IDS_WAF_CHECK_TIMEOUT
 
-        return page or "", headers or {}, code
+        # identYwaf
 
-    retVal = []
+        #def _(*args, **kwargs):
+            #page, headers, code = None, None, None
+            #try:
+                #pushValue(kb.redirectChoice)
+                #pushValue(kb.resendPostOnRedirect)
 
-    for function, product in kb.wafFunctions:
-        if retVal and "unknown" in product.lower():
-            continue
+                #kb.redirectChoice = REDIRECTION.YES
+                #kb.resendPostOnRedirect = True
 
-        try:
-            logger.debug("checking for WAF/IPS product '%s'" % product)
-            found = function(_)
-        except Exception as ex:
-            errMsg = "exception occurred while running "
-            errMsg += "WAF script for '%s' ('%s')" % (product, getSafeExString(ex))
-            logger.critical(errMsg)
+                #if kwargs.get("get"):
+                    #kwargs["get"] = urlencode(kwargs["get"])
+                #kwargs["raise404"] = False
+                #kwargs["silent"] = True
+                #kwargs["finalCode"] = True
 
-            found = False
+                #page, headers, code = Request.getPage(*args, **kwargs)
+            #except Exception:
+                #pass
+            #finally:
+                #kb.resendPostOnRedirect = popValue()
+                #kb.redirectChoice = popValue()
 
-        if found:
-            errMsg = "WAF/IPS identified as '%s'" % product
-            logger.critical(errMsg)
 
-            retVal.append(product)
+        #message = "are you sure that you want to "
+        #message += "continue with further target testing? [y/N] "
+        #choice = readInput(message, default='N', boolean=True)
 
-    if retVal:
-        if kb.wafSpecificResponse and "You don't have permission to access" not in kb.wafSpecificResponse and len(retVal) == 1 and "unknown" in retVal[0].lower():
-            handle, filename = tempfile.mkstemp(prefix=MKSTEMP_PREFIX.SPECIFIC_RESPONSE)
-            os.close(handle)
-            with openFile(filename, "w+b") as f:
-                f.write(kb.wafSpecificResponse)
-
-            message = "WAF/IPS specific response can be found in '%s'. " % filename
-            message += "If you know the details on used protection please "
-            message += "report it along with specific response "
-            message += "to '%s'" % DEV_EMAIL_ADDRESS
-            logger.warn(message)
-
-        message = "are you sure that you want to "
-        message += "continue with further target testing? [y/N] "
-        choice = readInput(message, default='N', boolean=True)
-
-        if not conf.tamper:
-            warnMsg = "please consider usage of tamper scripts (option '--tamper')"
-            singleTimeWarnMessage(warnMsg)
+        #if not conf.tamper:
+            #warnMsg = "please consider usage of tamper scripts (option '--tamper')"
+            #singleTimeWarnMessage(warnMsg)
 
-        if not choice:
-            raise SqlmapUserQuitException
-    else:
-        warnMsg = "WAF/IPS product hasn't been identified"
-        logger.warn(warnMsg)
+        #if not choice:
+            #raise SqlmapUserQuitException
 
-    kb.testType = None
-    kb.testMode = False
+    hashDBWrite(HASHDB_KEYS.CHECK_WAF_RESULT, retVal, True)
 
     return retVal
 
@@ -1666,6 +1602,3 @@ def checkInternet():
 
 def setVerbosity():  # Cross-referenced function
     raise NotImplementedError
-
-def setWafFunctions():  # Cross-referenced function
-    raise NotImplementedError
@@ -20,7 +20,6 @@
 from lib.controller.checks import checkNullConnection
 from lib.controller.checks import checkWaf
 from lib.controller.checks import heuristicCheckSqlInjection
-from lib.controller.checks import identifyWaf
 from lib.core.agent import agent
 from lib.core.common import dataToStdout
 from lib.core.common import extractRegexResult
@@ -423,9 +422,6 @@ def start():
 
             checkWaf()
 
-            if conf.identifyWaf:
-                identifyWaf()
-
             if conf.nullConnection:
                 checkNullConnection()
 
 
@@ -904,42 +904,6 @@ def _setPreprocessFunctions():
                     errMsg += "(Note: find template script at '%s')" % filename
                     raise SqlmapGenericException(errMsg)
 
-def _setWafFunctions():
-    """
-    Loads WAF/IPS detecting functions from script(s)
-    """
-
-    if conf.identifyWaf:
-        for found in glob.glob(os.path.join(paths.SQLMAP_WAF_PATH, "*.py")):
-            dirname, filename = os.path.split(found)
-            dirname = os.path.abspath(dirname)
-
-            if filename == "__init__.py":
-                continue
-
-            debugMsg = "loading WAF script '%s'" % filename[:-3]
-            logger.debug(debugMsg)
-
-            if dirname not in sys.path:
-                sys.path.insert(0, dirname)
-
-            try:
-                if filename[:-3] in sys.modules:
-                    del sys.modules[filename[:-3]]
-                module = __import__(safeFilepathEncode(filename[:-3]))
-            except ImportError as ex:
-                raise SqlmapSyntaxException("cannot import WAF script '%s' (%s)" % (getUnicode(filename[:-3]), getSafeExString(ex)))
-
-            _ = dict(inspect.getmembers(module))
-            if "detect" not in _:
-                errMsg = "missing function 'detect(get_page)' "
-                errMsg += "in WAF script '%s'" % found
-                raise SqlmapGenericException(errMsg)
-            else:
-                kb.wafFunctions.append((_["detect"], _.get("__product__", filename[:-3])))
-
-        kb.wafFunctions = sorted(kb.wafFunctions, key=lambda _: "generic" in _[1].lower())
-
 def _setThreads():
     if not isinstance(conf.threads, int) or conf.threads <= 0:
         conf.threads = 1
@@ -2394,10 +2358,6 @@ def _basicOptionValidation():
         errMsg = "option '-d' is incompatible with option '--dbms'"
         raise SqlmapSyntaxException(errMsg)
 
-    if conf.identifyWaf and conf.skipWaf:
-        errMsg = "switch '--identify-waf' is incompatible with switch '--skip-waf'"
-        raise SqlmapSyntaxException(errMsg)
-
     if conf.titles and conf.nullConnection:
         errMsg = "switch '--titles' is incompatible with switch '--null-connection'"
         raise SqlmapSyntaxException(errMsg)
@@ -2630,7 +2590,6 @@ def init():
     _listTamperingFunctions()
     _setTamperingFunctions()
     _setPreprocessFunctions()
-    _setWafFunctions()
     _setTrafficOutputFP()
     _setupHTTPCollector()
     _setHttpChunked()
 
@@ -229,7 +229,6 @@
         "dependencies": "boolean",
         "disableColoring": "boolean",
         "googlePage": "integer",
-        "identifyWaf": "boolean",
         "listTampers": "boolean",
         "mobile": "boolean",
         "offline": "boolean",
 
@@ -28,7 +28,6 @@
 from lib.core.convert import stdoutEncode
 from lib.core.option import _setHTTPHandlers
 from lib.core.option import setVerbosity
-from lib.core.option import _setWafFunctions
 from lib.core.settings import IS_WIN
 from thirdparty.six.moves import http_client as _http_client
 
@@ -70,7 +69,6 @@ def resolveCrossReferences():
     lib.request.connect.setHTTPHandlers = _setHTTPHandlers
     lib.utils.search.setHTTPHandlers = _setHTTPHandlers
     lib.controller.checks.setVerbosity = setVerbosity
-    lib.controller.checks.setWafFunctions = _setWafFunctions
     lib.utils.sqlalchemy.getSafeExString = getSafeExString
     thirdparty.ansistrm.ansistrm.stdoutEncode = stdoutEncode
 
 
@@ -18,7 +18,7 @@
 from thirdparty.six import unichr as _unichr
 
 # sqlmap version (<major>.<minor>.<month>.<monthly commit>)
-VERSION = "1.3.5.130"
+VERSION = "1.3.5.131"
 TYPE = "dev" if VERSION.count('.') > 2 and VERSION.split('.')[-1] != '0' else "stable"
 TYPE_COLORS = {"dev": 33, "stable": 90, "pip": 34}
 VERSION_STRING = "sqlmap/%s#%s" % ('.'.join(VERSION.split('.')[:-1]) if VERSION.count('.') > 2 and VERSION.split('.')[-1] == '0' else VERSION, TYPE)
 
@@ -652,9 +652,6 @@ def cmdLineParser(argv=None):
         miscellaneous.add_option("--gpage", dest="googlePage", type="int",
                                  help="Use Google dork results from specified page number")
 
-        miscellaneous.add_option("--identify-waf", dest="identifyWaf", action="store_true",
-                                 help="Make a thorough testing for a WAF/IPS protection")
-
         miscellaneous.add_option("--list-tampers", dest="listTampers", action="store_true",
                                  help="Display list of available tamper scripts")
 
 
@@ -788,10 +788,6 @@ disableColoring = False
 # Default: 1
 googlePage = 1
 
-# Make a thorough testing for a WAF/IPS protection.
-# Valid: True or False
-identifyWaf = False
-
 # Display list of available tamper scripts
 # Valid: True or False
 listTampers = False
 
@@ -270,7 +270,6 @@ paths:
                   tmpPath: null 
                   titles: false 
                   getSchema: false 
-                  identifyWaf: false 
                   paramDel: null 
                   safeReqFile: null 
                   regKey: null