mssql injector help
Ok here’s the deal I have 2 main functions i'm playing with
Sub test_injection { My $param=shift; &alter_query ($param); return $param; }
Sub alter_query { my $query_str=shift; Do this blah … }
The purpose of these subs is to 1.) Test for inject able parameters in the query 2.) Alas manipulate the query to return a true result Boolean fashion in sql talk
This isn’t my problem just giving you an idea or a base of my thoughts Here’s wherein my problem is I would like to iterate these errors I divulge with a custom response_scrubber function
Sub response_scrubber { my $response=shift; … #code to iterate these errors }
Based on the fact I want this to have AI ability I have to know how to get this thing to alter its behavior due to the error message and learn from it
I’m coding the brain_logic.pm currently
Here are my questions
1.) Ok so what would be best to store the error driver numbers and strings in a file or internally to the script?
2.) And secondly due to Ajax and other non static web pages etc What would be my best method of page and data comparison for my algorithm?
Well for now id like some pointers after I get this up and going I’ll add other features :ninja:
d0m14n wrote:
1.) Ok so what would be best to store the error driver numbers and strings in a file or internally to the script?
I'd store the error strings internally for starters and expand for the output later on(probably in ARGV), simply because it will be faster, then writing into a file. For the errors, you will have to fetch every page(LWP/Mechanize), put the content into a variable, simple regex will find you the error number, and then put there switch statement according to the error(I'm afraid you need special module for switch as well).
2.) And secondly due to Ajax and other non static web pages etc What would be my best method of page and data comparison for my algorithm?
Well for now id like some pointers after I get this up and going I’ll add other features
There are some modules for javascript in perl (http://search.cpan.org). But you will be injecting url anyway, so wouldn't really worry about the content, because I haven't seen any error pages generated with ajax or javascript in it…
As you've said those are just pointers, so you can get going. I'm little in hurry, but later can expand on the things I mentioned.
i assume this is what you mean by seperate mudule for switch i was hoping this was possible fucking kudos
use Switch;
switch ($val) {
case 1 { print "number 1" }
case "a" { print "string a" }
case [1..10,42] { print "number in list" }
case (@array) { print "number in list" }
case /\w+/ { print "pattern" }
case qr/\w+/ { print "pattern" }
case (%hash) { print "entry in hash" }
case (\%hash) { print "entry in hash" }
case (\&sub) { print "arg to subroutine" }
else { print "previous case not true" }
:ninja: i was looking for something like the swithc case in vb your a genious when this makes it to backtrack your name goes on contribution list