├── .gitignore
├── docs
├── logo.kra
├── example.png
├── logo-dark.png
├── logo-light.png
└── example-small.jpg
├── background.jpg
├── .github
└── workflows
│ └── static.yml
├── README.md
├── style.css
├── LICENSE
└── app.js
/.gitignore:
--------------------------------------------------------------------------------
1 | .vs/
2 | .vscode/
3 | *~*
4 | *.code-workspace
5 |
6 | ignore-*
--------------------------------------------------------------------------------
/docs/logo.kra:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/docs/logo.kra
--------------------------------------------------------------------------------
/background.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/background.jpg
--------------------------------------------------------------------------------
/docs/example.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/docs/example.png
--------------------------------------------------------------------------------
/docs/logo-dark.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/docs/logo-dark.png
--------------------------------------------------------------------------------
/docs/logo-light.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/docs/logo-light.png
--------------------------------------------------------------------------------
/docs/example-small.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/vizzdoom/sqlmap-command-builder/HEAD/docs/example-small.jpg
--------------------------------------------------------------------------------
/.github/workflows/static.yml:
--------------------------------------------------------------------------------
1 | # Simple workflow for deploying static content to GitHub Pages
2 | name: Deploy static content to Pages
3 |
4 | on:
5 | # Runs on pushes targeting the default branch
6 | push:
7 | branches: ["main"]
8 |
9 | # Allows you to run this workflow manually from the Actions tab
10 | workflow_dispatch:
11 |
12 | # Sets permissions of the GITHUB_TOKEN to allow deployment to GitHub Pages
13 | permissions:
14 | contents: read
15 | pages: write
16 | id-token: write
17 |
18 | # Allow only one concurrent deployment, skipping runs queued between the run in-progress and latest queued.
19 | # However, do NOT cancel in-progress runs as we want to allow these production deployments to complete.
20 | concurrency:
21 | group: "pages"
22 | cancel-in-progress: false
23 |
24 | jobs:
25 | # Single deploy job since we're just deploying
26 | deploy:
27 | environment:
28 | name: github-pages
29 | url: ${{ steps.deployment.outputs.page_url }}
30 | runs-on: ubuntu-latest
31 | steps:
32 | - name: Checkout
33 | uses: actions/checkout@v4
34 | - name: Build index.html
35 | run: |
36 | python build.py
37 | mkdir output
38 | cp index.html output/
39 | - name: Setup Pages
40 | uses: actions/configure-pages@v5
41 | - name: Upload artifact
42 | uses: actions/upload-pages-artifact@v3
43 | with:
44 | path: 'output/'
45 | - name: Deploy to GitHub Pages
46 | id: deployment
47 | uses: actions/deploy-pages@v4
48 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | ### LIVE VERSION:
2 |
3 | 
4 |
5 | ---
6 |
7 |
8 |
9 |
10 |
11 |
12 |
13 |
14 | ***SQLMAP COMMAND BUILDER*** helps you craft advanced SQLMap commands without memorizing dozens of switches.
15 |
16 | Transform your SQLMap workflow into a **point-and-click experience** through a clean, modern web interface that simplifies complex penetration testing.
17 |
18 | Whether you're an experienced penetration tester, security enthusiast, or just starting out with SQL injection vulnerabilities, this tool helps you generate sophisticated SQLMap commands without diving into documentation.
19 |
20 | - **REAL-TIME COMMAND GENERATION** → Master SQLMap's switches and fine-tune your SQL Injection scans.
21 |
22 | - **WEB USER INTERFACE** → Designed with organized categories, accessible directly through any modern browser you can select particular sqlmap options.
23 |
24 | - **NO INSTALLATION NEEDED** → Built with vanilla HTML/JS/CSS, accessible by [a single HTML file](https://vizzdoom.github.io/sqlmap-command-builder/).
25 |
26 | - **FULLY CLIENT-SIDE ARCHITECTURE** → No server-side processing, no dependencies, no trackers. Because you want to keep your data secure.
27 |
28 | - **COMPATIBLE WITH A NEWEST SQLMAP VERSION** → Implementing all SqlMap switches, including the newest, and even undocumented parameters.
29 |
30 | ## 🌐 HOW TO USE
31 | Every commit deploys freshly compiled *index.html* file into the Github Pages:
32 |
33 | ***https://vizzdoom.github.io/sqlmap-command-builder/***
34 |
35 | Feel free to save this URL in your browser bookmarks.
36 |
37 | ## ⚒️ HOW TO BUILD
38 |
39 | The following Python script compilies JS and CSS into a single, easily-distributable `index.html` file.
40 |
41 |
42 | ```bash
43 | python3 build.py
44 | ```
45 |
46 | The resulting `index.html` file can be opened directly in your browser or served from a web server.
47 |
48 | ## 🛡️ USE RESPONSIBLY
49 |
50 | _This software is exclusively designed for educational purposes._
51 |
52 | _The developer is not liable for any damages or misuse that may result from using this tool._
53 |
54 | _You have to accept this term to use or distribute this software._
55 |
56 | ## 🗯️ GET INVOLVED
57 |
58 | Found a bug? Have a feature idea?
59 |
60 | [→ Submit an issue](https://github.com/vizzdoom/sqlmap-command-builder/issues/new)
--------------------------------------------------------------------------------
/style.css:
--------------------------------------------------------------------------------
1 | :root {
2 | /* Colors */
3 | --color-background: #0a0a0a;
4 | --color-surface: #181818;
5 | --color-text: #00ff41;
6 | --color-text-secondary: #00cc33;
7 | --color-primary: #00ff41;
8 | --color-primary-hover: #10af38;
9 | --color-primary-active: #047f73;
10 | --color-secondary: rgba(255, 0, 0, 0.1);
11 | --color-secondary-hover: rgba(255, 0, 0, 0.2);
12 | --color-secondary-active: rgba(255, 0, 0, 0.3);
13 | --color-btn-primary-text: #0a0a0a;
14 | --color-border: rgba(0, 255, 65, 0.5);
15 | --color-card-border: rgba(0, 255, 65, 0.2);
16 | --color-card-border-inner: rgba(0, 255, 65, 0.15);
17 | --color-error: rgb(232, 201, 203);
18 | --color-success: rgb(139, 214, 222);
19 | --color-warning: rgba(230, 129, 97, 1);
20 | --color-info: rgba(167, 169, 169, 1);
21 | --color-select-caret: rgba(245, 245, 245, 0.8);
22 | --shadow-inset-s: inset 0 1px 0 rgba(255, 255, 255, 0.1),
23 | inset 0 -1px 0 rgba(0, 0, 0, 0.15);
24 | --button-border-secondary: rgba(119, 124, 124, 0.2);
25 | --hacker-primary: #00f83e;
26 | --hacker-secondary: #9bffaafa;
27 | --hacker-bg-dark: #0d1117;
28 | --hacker-bg-dark-opacity: #0a0c14ee;
29 | /* --hacker-surface: #141a23f8; */
30 | --hacker-surface: #141d23;
31 | --hacker-border: #223d2b;
32 |
33 | /* Common style patterns - updated for dark mode */
34 | --focus-ring: 0 0 0 3px var(--color-card-border);
35 | --focus-outline: 2px solid var(--color-primary);
36 | --status-bg-opacity: 0.4;
37 | --status-border-opacity: 0.5;
38 | --select-caret: url("data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' width='16' height='16' viewBox='0 0 24 24' fill='none' stroke='%2310af38' stroke-width='2' stroke-linecap='round' stroke-linejoin='round'%3E%3Cpolyline points='6 9 12 15 18 9'%3E%3C/polyline%3E%3C/svg%3E");
39 |
40 | /* RGB versions for opacity control */
41 | --color-success-rgb: 50, 184, 198;
42 | --color-error-rgb: 255, 84, 89;
43 | --color-warning-rgb: 230, 129, 97;
44 | --color-info-rgb: 167, 169, 169;
45 |
46 | /* Typography */
47 | --font-family-base: "Geist", "Inter", -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, sans-serif;
48 | --font-family-mono: 'Courier New', monospace;
49 | --font-size-xxs: 10px;
50 | --font-size-xs: 11px;
51 | --font-size-s: 12px;
52 | --font-size-m: 14px;
53 | --font-size-l: 16px;
54 | --font-size-xl: 20px;
55 | --font-size-2xl: 22px;
56 | --font-size-3xl: 26px;
57 | --font-size-4xl: 30px;
58 | --font-weight-normal: 400;
59 | --font-weight-medium: 500;
60 | --font-weight-semibold: 550;
61 | --font-weight-bold: 600;
62 | --line-height-tight: 1.2;
63 | --line-height-normal: 1.5;
64 | --letter-spacing-tight: -0.01em;
65 |
66 | /* Spacing */
67 | --space-0: 0;
68 | --space-xxs: 3px;
69 | --space-xs: 6px;
70 | --space-s: 12px;
71 | --space-m: 14px;
72 | --space-l: 16px;
73 | --space-xl: 22px;
74 | --space-2xl: 28px;
75 | --space-3xl: 36px;
76 |
77 | /* Border Radius */
78 | --radius-s: 6px;
79 | --radius-m: 9px;
80 | --radius-l: 12px;
81 | --radius-full: 9999px;
82 |
83 | /* Shadows */
84 | --shadow-xs: 0 1px 2px rgba(0, 0, 0, 0.02);
85 | --shadow-s: 0 1px 3px rgba(0, 0, 0, 0.04), 0 1px 2px rgba(0, 0, 0, 0.02);
86 | --shadow-m: 0 4px 6px -1px rgba(0, 0, 0, 0.04),
87 | 0 2px 4px -1px rgba(0, 0, 0, 0.02);
88 | --shadow-l: 0 10px 15px -3px rgba(0, 0, 0, 0.04),
89 | 0 4px 6px -2px rgba(0, 0, 0, 0.02);
90 | --shadow-inset-s: inset 0 1px 0 rgba(255, 255, 255, 0.15),
91 | inset 0 -1px 0 rgba(0, 0, 0, 0.03);
92 |
93 | /* Animation */
94 | --duration-fast: 200ms;
95 | --duration-normal: 500ms;
96 | --ease-standard: cubic-bezier(0.16, 1, 0.3, 1);
97 |
98 | /* Layout */
99 | --container-s: 350px;
100 | --container-m: 900px;
101 | --container-l: 1500px;
102 | }
103 |
104 | /* Container layout */
105 | .container {
106 | width: 100%;
107 | margin: 0 auto;
108 | padding: var(--space-s);
109 | min-width: var(--container-s);
110 | }
111 | @media (min-width: 600px) {
112 | .container {
113 | max-width: var(--container-m);
114 | padding: var(--space-xl);
115 | }
116 | }
117 | @media (min-width: 1100px) {
118 | .container {
119 | max-width: var(--container-l);
120 | padding: var(--space-2xl);
121 | }
122 | }
123 |
124 |
125 | .tabs {
126 | display: grid;
127 | grid-template-columns: 1fr 1fr 1fr;
128 | gap: 0 var(--space-xs);
129 | transition: all var(--duration-normal) var(--ease-standard);
130 | margin: 0 var(--space-xs);
131 | }
132 | @media (min-width: 600px) {
133 | .tabs {
134 | grid-template-columns: 1fr 1fr 1fr 1fr;
135 | margin: 0 var(--space-2xl);
136 | }
137 | }
138 | @media (min-width: 1100px) {
139 | .tabs {
140 | grid-template-columns: 1fr 1fr 1fr 1fr 1fr 1fr 1fr 1fr;
141 | margin: 0 var(--space-s);
142 | }
143 | }
144 |
145 |
146 | .btn {
147 | display: inline-flex;
148 | align-items: center;
149 | justify-content: center;
150 | font-size: var(--font-size-xs);
151 | width: 200px;
152 | height: 50px;
153 | border-radius: var(--radius-m);
154 | line-height: 1.4;
155 | cursor: pointer;
156 | transition: all var(--duration-normal) var(--ease-standard);
157 | border: none;
158 | text-decoration: none;
159 | position: relative;
160 | overflow: hidden;
161 | margin-left: var(--space-xs);
162 | margin-right: var(--space-xs);
163 | }
164 | .btn svg {
165 | height: var(--font-size-m);
166 | width: var(--font-size-m);
167 |
168 | margin-left: var(--space-xs);
169 | margin-right: var(--space-xs);
170 | position: relative;
171 | }
172 | @media (min-width: 600px) {
173 | .btn {
174 | padding: var(--space-m) var(--space-l);
175 | font-size: var(--font-size-xs);
176 | width: 230px;
177 | max-width: 250px;
178 | height: 45px;
179 | }
180 | }
181 |
182 | /* FORM GRID */
183 | .form-grid {
184 | display: grid;
185 | grid-template-columns: 1fr;
186 | gap: var(--space-xl);
187 | }
188 | @media (min-width: 600px) {
189 | .form-grid {
190 | grid-template-columns: 1fr 1fr;
191 | gap: var(--space-xl);
192 | }
193 | }
194 | @media (min-width: 1100px) {
195 | .form-grid {
196 | grid-template-columns: 1fr 1fr 1fr 1fr;
197 | gap: var(--space-l);
198 | }
199 | }
200 |
201 |
202 | /* FORM GRID TAMPERING TAB */
203 | .form-grid-tamper {
204 | display: grid;
205 | grid-template-columns: 1fr;
206 | gap: 0;
207 | }
208 |
209 | .checkbox-label-tamper {
210 | line-height: 16px;
211 | }
212 |
213 | label span.checkbox-label-tamper__title {
214 | font-size: var(--font-size-s);
215 | font-weight: bold;
216 | padding-left: var(--space-xs);
217 | color: var(--hacker-primary) !important;
218 | }
219 |
220 | .checkbox-label-tamper__subtitle {
221 | font-size: var(--font-size-xs);
222 | font-weight: normal;
223 | }
224 | .checkbox-label-tamper .checkmark {
225 | height: 26px;
226 | width: 26px;
227 | }
228 |
229 | .checkbox-label-tamper .checkmark::after{
230 | height: 11px;
231 | width: 11px;
232 | }
233 |
234 | /* Base styles */
235 | html {
236 | font-size: var(--font-size-m);
237 | font-family: var(--font-family-base);
238 | line-height: var(--line-height-normal);
239 | color: var(--color-text);
240 | background-color: var(--color-background);
241 | -webkit-font-smoothing: antialiased;
242 | box-sizing: border-box;
243 | scrollbar-gutter: stable;
244 |
245 | }
246 |
247 | body {
248 | margin: 0;
249 | padding: 0;
250 | min-height: 100vh;
251 | font-family: var(--font-family-mono);
252 | background-size: cover !important;
253 | background-attachment: fixed !important;
254 | background-position: center center !important;
255 | background-repeat: no-repeat !important;
256 | background: linear-gradient(to bottom, rgba(0, 0, 0, 0.7), rgba(0, 0, 0, 0.4)), url('background.jpg');
257 | }
258 |
259 |
260 | *,
261 | *::before,
262 | *::after {
263 | box-sizing: inherit;
264 | }
265 |
266 | /* Typography */
267 | h1,h2,h3,h4,h5,h6 {
268 | margin: 0;
269 | font-weight: var(--font-weight-semibold);
270 | line-height: var(--line-height-tight);
271 | color: var(--color-text);
272 | letter-spacing: var(--letter-spacing-tight);
273 | text-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
274 | }
275 |
276 | h1 {
277 | font-size: var(--font-size-4xl);
278 | margin-bottom: var(--space-l);
279 | color: var(--hacker-primary);
280 | text-shadow: 0 0 20px var(--color-border);
281 | font-family: var(--font-family-mono);
282 | }
283 | h2 {
284 | font-size: var(--font-size-3xl);
285 | }
286 | h3 {
287 | font-size: var(--font-size-2xl);
288 | }
289 | h4 {
290 | font-size: var(--font-size-xl);
291 | }
292 | h5 {
293 | font-size: var(--font-size-l);
294 | }
295 | h6 {
296 | font-size: var(--font-size-m);
297 | }
298 |
299 | p {
300 | margin: 0 0 var(--space-l) 0;
301 | }
302 |
303 | a {
304 | color: var(--color-primary);
305 | text-decoration: none;
306 | transition: color var(--duration-fast) var(--ease-standard);
307 | }
308 |
309 | a:hover {
310 | color: var(--hacker-secondary);
311 | }
312 |
313 | code,
314 | pre {
315 | font-family: var(--font-family-mono);
316 | font-size: calc(var(--font-size-m) * 0.95);
317 | background-color: var(--color-secondary);
318 | border-radius: var(--radius-s);
319 | }
320 |
321 | code {
322 | padding: var(--space-1) var(--space-xs);
323 | }
324 |
325 | pre {
326 | padding: var(--space-l);
327 | margin: var(--space-l) 0;
328 | overflow: auto;
329 | border: 1px solid var(--color-border);
330 | }
331 |
332 | pre code {
333 | background: none;
334 | padding: 0;
335 | }
336 |
337 | /* Buttons */
338 | .btn::before {
339 | content: '';
340 | position: absolute;
341 | top: 0;
342 | left: -100%;
343 | width: 100%;
344 | height: 100%;
345 | background: linear-gradient(90deg, transparent, var(--hacker-primary), transparent);
346 | transition: left 0.5s;
347 | }
348 |
349 | /* Buttons */
350 | .btn--outline::before {
351 | background: linear-gradient(90deg, transparent, rgba(205, 11, 11, 0.4), transparent);
352 | transition: left 0.5s;
353 | }
354 |
355 | .btn:hover::before {
356 | left: 100%;
357 | }
358 |
359 | .btn:disabled {
360 | opacity: 0.5;
361 | cursor: not-allowed;
362 | }
363 |
364 | .btn--primary {
365 | background: var(--hacker-primary);
366 | color: var(--color-btn-primary-text);
367 | border: 1px solid var(--hacker-primary);
368 | font-weight: bold;
369 | text-transform: uppercase;
370 | letter-spacing: 1px;
371 | }
372 |
373 | .btn--primary:active {
374 | background: var(--color-primary-active);
375 | }
376 |
377 | .btn--primary:hover {
378 | box-shadow: 0 0 15px rgba(0, 255, 65, 0.5);
379 | }
380 |
381 | .btn--secondary {
382 | background: var(--color-secondary);
383 | color: var(--hacker-primary);
384 | border: 1px solid var(--color-border);
385 | }
386 |
387 | .btn--secondary:active {
388 | background: var(--color-secondary-active);
389 | }
390 |
391 | .btn--secondary:hover {
392 | background: var(--color-secondary-hover);
393 | box-shadow: 0 0 15px rgba(0, 255, 65, 0.3);
394 | }
395 |
396 | .btn--outline {
397 | background: var(--color-secondary);
398 | color: #ffb1b1;
399 | border: 0px none;
400 | font-weight: bold;
401 | text-transform: uppercase;
402 | letter-spacing: 1px;
403 | }
404 |
405 | .btn--outline:hover {
406 | background: var(--color-secondary);
407 | }
408 |
409 | .btn.copying {
410 | animation: pulse 1s infinite;
411 | }
412 |
413 | .btn:focus-visible {
414 | outline: none;
415 | box-shadow: var(--focus-ring);
416 | }
417 |
418 | /* Form elements */
419 | .form-control {
420 | display: block;
421 | width: 100%;
422 | padding: var(--space-s) var(--space-m);
423 | font-size: var(--font-size-s);
424 | line-height: 1.3;
425 | color: var(--color-text);
426 | background-color: var(--color-surface);
427 | border: 1px solid var(--hacker-border);
428 | border-radius: var(--radius-m);
429 | background: var(--hacker-bg-dark);
430 | font-family: var(--font-family-mono);
431 | transition: all var(--duration-fast) var(--ease-standard);
432 | }
433 |
434 | .form-group {
435 | display: flex;
436 | flex-direction: column;
437 | margin-bottom: var(--space-l);
438 | }
439 |
440 | .form-label {
441 | user-select: none;
442 | color: var(--hacker-primary);
443 | font-weight: bold;
444 | margin-bottom: var(--space-xs);
445 | font-size: var(--font-size-s);
446 | letter-spacing: 0.5px;
447 | line-height: 1.1;
448 | }
449 |
450 | .form-label u {
451 | font-weight: normal;;
452 | color: var(--hacker-secondary);
453 | text-decoration: none;
454 | }
455 |
456 | /*** ⁱ TOOLTIP */
457 | .form-label i,
458 | .checkbox-label i {
459 | min-width: 18px;
460 | position: relative;
461 | display: inline-block;
462 | margin-left: var(--space-xs);
463 | cursor: pointer;
464 | font-style: normal;
465 | color: var(--hacker-secondary);
466 | }
467 |
468 | .form-label i:hover,
469 | .checkbox-label i:hover {
470 | color: var(--color-primary)
471 | }
472 |
473 | .form-label i:hover::after,
474 | .checkbox-label i:hover::after {
475 | color: var(--hacker-primary);
476 | }
477 |
478 | .form-label i::before,
479 | .checkbox-label i::before {
480 | font-size: var(--font-size-s);
481 | font-weight: var(--font-weight-normal);
482 | color: var(--hacker-secondary);
483 | padding: var(--space-s);
484 | margin: var(--space-m) 0;
485 | border: 2px solid var(--hacker-secondary);
486 | background: var(--hacker-bg-dark);
487 |
488 | line-height: 1.15;
489 | position: absolute;
490 | bottom: calc(100% + var(--space-2xl));
491 | left: 50%;
492 | transform: translateX(-50%);
493 | border-radius: var(--radius-m);
494 | white-space: normal;
495 | overflow-wrap: break-word;
496 | width: max-content;
497 | max-width: min(30rem, calc(100vw - 2rem));
498 | box-sizing: border-box;
499 | visibility: hidden;
500 | display: none;
501 | opacity: 0;
502 | transition: opacity 0.3s ease;
503 | z-index: 1000;
504 | }
505 |
506 | .form-label i:hover::before,
507 | .checkbox-label i:hover::before {
508 | display: block;
509 | opacity: 1;
510 | visibility: visible;
511 | }
512 |
513 | .form-label [tooltip]::before,
514 | .checkbox-label [tooltip]::before {
515 | content: attr(tooltip);
516 | white-space: pre-line;
517 | }
518 |
519 | .form-label i:hover::before,
520 | .checkbox-label i:hover::before {
521 | display: block;
522 | opacity: 1;
523 | visibility: visible;
524 | }
525 | /* ⁱ TOOLTIP ***/
526 |
527 | /*** CHECKBOXES */
528 | .checkbox-group {
529 | flex-direction: row !important;
530 | align-items: center;
531 | }
532 |
533 | .checkbox-grid {
534 | display: grid;
535 | grid-template-columns: repeat(auto-fit, minmax(250px, 1fr));
536 | gap: 0;
537 | }
538 |
539 | .checkbox-label {
540 | line-height: 1.15;
541 | align-items: center;
542 | cursor: pointer;
543 | position: relative;
544 | padding-left: var(--space-3xl);
545 | padding-top: var(--space-xs);
546 | user-select: none;
547 | -webkit-user-select: none;
548 | }
549 |
550 | .form-grid-tamper .checkbox-label {
551 | line-height: 1.0;
552 | padding-top: var(--space-xs);
553 | padding-bottom: var(--space-xs);
554 | }
555 |
556 | .form-grid-tamper .checkbox-label b {
557 | font-size: var(--font-size-s);
558 | }
559 |
560 | .form-grid-tamper .checkbox-label u {
561 | font-size: var(--font-size-s);
562 | line-height: 1.0;
563 | }
564 |
565 | .checkbox-label b {
566 | font-size: var(--font-size-s);
567 | display: flex;
568 | font-weight: bold;
569 | color: var(--hacker-secondary);
570 | text-decoration: none;
571 | color: var(--color-text);
572 | }
573 |
574 | .checkbox-label u {
575 | font-size: var(--font-size-s);
576 | font-weight: normal;;
577 | color: var(--hacker-secondary);
578 | text-decoration: none;
579 | line-height: 2.0;
580 | }
581 |
582 | .checkbox-grid .checkbox-label u {
583 | font-size: var(--font-size-s);
584 | }
585 |
586 | .checkbox-label input[type="checkbox"], .checkbox-label-tamper input[type="checkbox"] {
587 | position: absolute;
588 | opacity: 0;
589 | cursor: pointer;
590 | }
591 |
592 | input[type="range"] {
593 | margin-top: var(--space-m);
594 | max-width: 80%;
595 | }
596 |
597 | input[type="range"]#level {
598 | max-width: 80%;
599 | }
600 |
601 | input[type="range"]#risk {
602 | max-width: 60%;
603 | }
604 |
605 | input[type="range"]#verbose {
606 | max-width: 80%;
607 | }
608 |
609 |
610 | .checkbox-grid .checkbox-label .checkmark {
611 | transform: none;
612 | }
613 |
614 | .form-label.checkbox-grid {
615 | margin-bottom: var(--space-xs);
616 | }
617 |
618 | /* FORCE USAGE OF HTTPS REQUESTS:hover -->> check */
619 | .checkbox-label:hover .checkmark {
620 | border-color: var(--hacker-primary);
621 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.3);
622 | }
623 |
624 | input[type="checkbox"]:checked ~ .checkmark {
625 | background-color: var(--hacker-primary);
626 | border-color: var(--hacker-primary);
627 | box-shadow: 0 0 15px rgba(0, 255, 65, 0.5);
628 | }
629 |
630 | .checkmark {
631 | position: absolute;
632 | left: 0;
633 | transform: translateY(-50%);
634 | height: 28px;
635 | width: 28px;
636 | background-color: var(--hacker-bg-dark);
637 | border: 2px solid var(--hacker-border);
638 | border-radius: 3px;
639 | transition: all 0.3s ease;
640 | }
641 |
642 | .checkbox-grid .checkmark {
643 | position: absolute;
644 | left: 0;
645 | transform: translateY(-50%);
646 | height: 24px;
647 | width: 24px;
648 | background-color: var(--hacker-bg-dark);
649 | border: 2px solid var(--hacker-border);
650 | border-radius: 3px;
651 | transition: all 0.3s ease;
652 | }
653 |
654 | .checkmark:after {
655 | content: "";
656 | position: absolute;
657 | display: none;
658 | left: 7px;
659 | top: 2px;
660 | width: 10px;
661 | height: 14px;
662 | border: solid var(--color-btn-primary-text);
663 | border-width: 0 2px 2px 0;
664 | transform: rotate(45deg);
665 | }
666 |
667 | .checkbox-grid .checkmark:after {
668 | left: 6px;
669 | top: 3px;
670 | width: 8px;
671 | height: 10px;
672 | }
673 |
674 | input[type="checkbox"]:checked ~ .checkmark:after {
675 | display: block;
676 | }
677 |
678 | /* Checkboxes ***/
679 |
680 | .form-control:focus {
681 | border-color: var(--hacker-primary);
682 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.3);
683 | outline: none;
684 | }
685 |
686 | .form-control::placeholder {
687 | color: rgba(0, 255, 65, 0.5);
688 | }
689 |
690 | textarea.form-control {
691 | font-family: var(--font-family-mono);
692 | font-size: var(--font-size-s);
693 | resize: vertical;
694 | min-height: 39px;
695 | }
696 |
697 | select.form-control {
698 | padding: var(--space-s) var(--space-m);
699 | -webkit-appearance: none;
700 | -moz-appearance: none;
701 | appearance: none;
702 | background-image: var(--select-caret);
703 | background-repeat: no-repeat;
704 | background-position: right var(--space-m) center;
705 | background-size: 16px;
706 | padding-right: var(--space-3xl);
707 | }
708 |
709 | .form-control:hover {
710 | border-color: var(--hacker-primary);
711 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.3);
712 | }
713 |
714 | .form-control:focus {
715 | border-color: var(--color-primary);
716 | outline: var(--focus-outline);
717 | }
718 |
719 |
720 |
721 | /* Status indicators - simplified with CSS variables */
722 | #status-container {
723 | display: grid;
724 | grid-column-start: 1;
725 | grid-column-end: 1;
726 | position: fixed;
727 | top: 20px;
728 | right: 30px;
729 | }
730 |
731 | .status {
732 | display: inline-flex;
733 | align-items: center;
734 | padding: var(--space-m) var(--space-m);
735 | margin: var(--space-xs) 0;
736 | border-radius: var(--radius-l);
737 | font-weight: var(--font-weight-bold);
738 | font-size: var(--font-size-s);
739 | width: 275px;
740 | height: 60px;
741 | text-align: center;
742 | }
743 |
744 | .status--success {
745 | background-color: rgba(
746 | var(--color-success-rgb, 33, 128, 141),
747 | var(--status-bg-opacity)
748 | );
749 | color: var(--color-success);
750 | border: 1px solid
751 | rgba(var(--color-success-rgb, 33, 128, 141), var(--status-border-opacity));
752 | }
753 |
754 | .status--error {
755 | background-color: rgba(
756 | var(--color-error-rgb, 192, 21, 47),
757 | var(--status-bg-opacity)
758 | );
759 | color: var(--color-error);
760 | border: 1px solid
761 | rgba(var(--color-error-rgb, 192, 21, 47), var(--status-border-opacity));
762 | }
763 |
764 | .status--warning {
765 | background-color: rgba(
766 | var(--color-warning-rgb, 168, 75, 47),
767 | var(--status-bg-opacity)
768 | );
769 | color: var(--color-warning);
770 | border: 1px solid
771 | rgba(var(--color-warning-rgb, 168, 75, 47), var(--status-border-opacity));
772 | }
773 |
774 | .status--info {
775 | background-color: rgba(
776 | var(--color-info-rgb, 98, 108, 113),
777 | var(--status-bg-opacity)
778 | );
779 | color: var(--color-info);
780 | border: 1px solid
781 | rgba(var(--color-info-rgb, 98, 108, 113), var(--status-border-opacity));
782 | }
783 |
784 | :focus-visible {
785 | outline: var(--focus-outline);
786 | outline-offset: 2px;
787 | }
788 |
789 | /* Header */
790 | .header {
791 | text-align: center;
792 | margin-bottom: var(--space-l);
793 | padding: var(--space-3xl) var(--space-s) var(--space-s) var(--space-s);
794 | color: var(--color-text-secondary);
795 | font-size: var(--font-size-m);
796 | }
797 |
798 | /* Command Section */
799 | .command-section {
800 | margin-bottom: var(--space-3xl);
801 | position: sticky;
802 | top: 8px;
803 | z-index: 900;
804 | }
805 |
806 | .command-header {
807 | display: flex;
808 | justify-content: space-between;
809 | align-items: center;
810 | margin-bottom: var(--space-l);
811 | }
812 |
813 | .command-header h2 {
814 | color: var(--hacker-primary);
815 | font-size: var(--font-size-2xl);
816 | }
817 |
818 | .command-output {
819 | background: var(--hacker-bg-dark);
820 | border: 1px solid var(--color-primary-hover);
821 | border-radius: var(--radius-l);
822 | padding: var(--space-xl);
823 | position: relative;
824 | overflow-x: auto;
825 | box-shadow: 0px 15px 20px 5px rgba(0, 0, 0, 0.4);
826 | margin-left: var(--space-xs);
827 | margin-right: var(--space-xs);
828 | }
829 |
830 | .command-output::before {
831 | content: '$ ';
832 | color: var(--hacker-primary);
833 | font-weight: bold;
834 | }
835 |
836 | .command-output pre {
837 | margin: 0;
838 | padding: 0;
839 | background: none;
840 | border: none;
841 | color: var(--color-text);
842 | font-family: var(--font-family-mono);
843 | font-size: var(--font-size-m);
844 | white-space: pre-wrap;
845 | word-break: break-all;
846 | }
847 |
848 |
849 | /** NAV TABS */
850 | .tab-btn.active {
851 | color: var(--hacker-primary);
852 | border-bottom-color: var(--hacker-primary);
853 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.3);
854 | background-color: var(--hacker-surface);
855 | }
856 |
857 | .tab-content {
858 | display: none;
859 | }
860 |
861 | .tab-content.active {
862 | display: block;
863 | }
864 | .tab-btn {
865 | background-color: var(--hacker-bg-dark);
866 | border: none;
867 | padding: var(--space-m) var(--space-m);
868 | color: var(--color-text-secondary);
869 | cursor: pointer;
870 | transition: all 0.3s ease;
871 | font-weight: bold;
872 | text-transform: uppercase;
873 | letter-spacing: 0.25px;
874 | border-bottom: 2px solid transparent;
875 | margin-top: var(--space-xs);
876 | border-radius: var(--radius-s) var(--radius-s) 0 0;
877 | }
878 |
879 |
880 | /* Card component */
881 | .card {
882 | background: var(--hacker-surface);
883 | border: 1px solid var(--hacker-border);
884 | border-radius: var(--radius-s) var(--radius-s) var(--radius-m) var(--radius-m);
885 | box-shadow: 0 4px 20px rgba(0, 0, 0, 0.3);
886 | }
887 |
888 | .card:hover {
889 | box-shadow: var(--shadow-m);
890 | }
891 |
892 | .card__body {
893 | padding: var(--space-2xl);
894 | }
895 |
896 | .card h3 {
897 | grid-column: 1 / -1;
898 | color: var(--hacker-secondary);
899 | font-size: var(--font-size-xl);
900 | border-bottom-color: var(--hacker-secondary);
901 | border-bottom-style: dotted;
902 | border-bottom-width: 1px;
903 | padding: var(--space-xs) 0 var(--space-s) 0;
904 | }
905 |
906 | /* Sliders */
907 | .slider {
908 | -webkit-appearance: none;
909 | appearance: none;
910 | width: 100%;
911 | height: 6px;
912 | border-radius: 3px;
913 | background: var(--hacker-border);
914 | outline: none;
915 | transition: all 0.3s ease;
916 | }
917 |
918 | .slider::-webkit-slider-thumb {
919 | -webkit-appearance: none;
920 | appearance: none;
921 | width: 20px;
922 | height: 20px;
923 | border-radius: 50%;
924 | background: var(--hacker-primary);
925 | cursor: pointer;
926 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
927 | transition: all 0.3s ease;
928 | }
929 |
930 | .slider::-webkit-slider-thumb:hover {
931 | transform: scale(1.2);
932 | box-shadow: 0 0 20px rgba(0, 255, 65, 0.8);
933 | }
934 |
935 | .slider::-moz-range-thumb {
936 | width: 20px;
937 | height: 20px;
938 | border-radius: 50%;
939 | background: var(--hacker-primary);
940 | cursor: pointer;
941 | border: none;
942 | box-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
943 | }
944 |
945 | /* Configuration Section */
946 | .config-section {
947 | margin-top: var(--space-3xl);
948 | }
949 |
950 | .config-buttons {
951 | display: flex;
952 | gap: var(--space-l);
953 | flex-wrap: wrap;
954 | }
955 |
956 | /* Custom scrollbar */
957 | ::-webkit-scrollbar {
958 | width: 8px;
959 | height: 8px;
960 | }
961 |
962 | ::-webkit-scrollbar-track {
963 | background: var(--hacker-bg-dark);
964 | }
965 |
966 | ::-webkit-scrollbar-thumb {
967 | background: var(--hacker-primary);
968 | border-radius: 4px;
969 | }
970 |
971 | ::-webkit-scrollbar-thumb:hover {
972 | background: var(--hacker-secondary);
973 | }
974 |
975 | /* Loading animation for buttons */
976 | @keyframes pulse {
977 | 0% {
978 | box-shadow: 0 0 0 0 rgba(0, 255, 65, 0.7);
979 | }
980 | 70% {
981 | box-shadow: 0 0 0 10px rgba(0, 255, 65, 0);
982 | }
983 | 100% {
984 | box-shadow: 0 0 0 0 rgba(0, 255, 65, 0);
985 | }
986 | }
987 |
988 | /* Glitch effect for title */
989 | @keyframes glitch {
990 | 0% {
991 | text-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
992 | }
993 | 25% {
994 | text-shadow: -2px 0 rgba(0, 255, 65, 0.5), 2px 0 rgba(255, 0, 255, 0.5);
995 | }
996 | 50% {
997 | text-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
998 | }
999 | 75% {
1000 | text-shadow: 2px 0 rgba(0, 255, 65, 0.5), -2px 0 rgba(255, 255, 0, 0.5);
1001 | }
1002 | 100% {
1003 | text-shadow: 0 0 10px rgba(0, 255, 65, 0.5);
1004 | }
1005 | }
1006 |
1007 | .header h1:hover {
1008 | animation: glitch 0.5s ease-in-out;
1009 | }
1010 |
1011 | /* Command output syntax highlighting */
1012 | .command-output pre .option {
1013 | color: #ff6b6b;
1014 | }
1015 |
1016 | .command-output pre .value {
1017 | color: #4ecdc4;
1018 | }
1019 |
1020 | .command-output pre .flag {
1021 | color: #ffe66d;
1022 | }
1023 |
1024 | .additional-help {
1025 | font-size: var(--font-size-s);
1026 | color: var(--hacker-secondary);
1027 | margin-top: var(--space-l);
1028 | line-height: 1.5;
1029 | height: 3em;
1030 | user-select: none;
1031 | }
1032 |
1033 | .grid-column-span-2 {
1034 | grid-column: span 2;
1035 | }
1036 |
1037 | .grid-column-span-3 {
1038 | grid-column: span 3;
1039 | }
1040 |
1041 | .grid-column-span-4 {
1042 | grid-column: span 4;
1043 | }
1044 |
1045 | .grid-column-span-5 {
1046 | grid-column: span 5;
1047 | }
1048 |
1049 | .grid-row-span-2 {
1050 | grid-row: span 2;
1051 | }
1052 |
1053 | .grid-row-span-3 {
1054 | grid-row: span 3;
1055 | }
1056 |
1057 | .grid-row-span-4 {
1058 | grid-row: span 4;
1059 | }
1060 |
1061 | .grid-row-span-5 {
1062 | grid-row: span 5;
1063 | }
1064 |
1065 | /* Hide unstylled arrows from input type number */
1066 | input[type=number] {
1067 | -moz-appearance: textfield;
1068 | appearance: textfield;
1069 | }
1070 | input[type=number]::-webkit-inner-spin-button,
1071 | input[type=number]::-webkit-outer-spin-button {
1072 | -webkit-appearance: none;
1073 | }
1074 |
1075 | .tamper--script {
1076 | font-weight: bold;
1077 |
1078 | }
1079 |
1080 | input, select, textarea {
1081 | margin-top: var(--space-xs);
1082 | }
1083 |
1084 | #levelValue, #riskValue {
1085 | color: var(--hacker-secondary);
1086 | font-weight: var(--font-weight-bold);
1087 | }
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | GNU GENERAL PUBLIC LICENSE
2 | Version 3, 29 June 2007
3 |
4 | Copyright (C) 2007 Free Software Foundation, Inc.
5 | Everyone is permitted to copy and distribute verbatim copies
6 | of this license document, but changing it is not allowed.
7 |
8 | Preamble
9 |
10 | The GNU General Public License is a free, copyleft license for
11 | software and other kinds of works.
12 |
13 | The licenses for most software and other practical works are designed
14 | to take away your freedom to share and change the works. By contrast,
15 | the GNU General Public License is intended to guarantee your freedom to
16 | share and change all versions of a program--to make sure it remains free
17 | software for all its users. We, the Free Software Foundation, use the
18 | GNU General Public License for most of our software; it applies also to
19 | any other work released this way by its authors. You can apply it to
20 | your programs, too.
21 |
22 | When we speak of free software, we are referring to freedom, not
23 | price. Our General Public Licenses are designed to make sure that you
24 | have the freedom to distribute copies of free software (and charge for
25 | them if you wish), that you receive source code or can get it if you
26 | want it, that you can change the software or use pieces of it in new
27 | free programs, and that you know you can do these things.
28 |
29 | To protect your rights, we need to prevent others from denying you
30 | these rights or asking you to surrender the rights. Therefore, you have
31 | certain responsibilities if you distribute copies of the software, or if
32 | you modify it: responsibilities to respect the freedom of others.
33 |
34 | For example, if you distribute copies of such a program, whether
35 | gratis or for a fee, you must pass on to the recipients the same
36 | freedoms that you received. You must make sure that they, too, receive
37 | or can get the source code. And you must show them these terms so they
38 | know their rights.
39 |
40 | Developers that use the GNU GPL protect your rights with two steps:
41 | (1) assert copyright on the software, and (2) offer you this License
42 | giving you legal permission to copy, distribute and/or modify it.
43 |
44 | For the developers' and authors' protection, the GPL clearly explains
45 | that there is no warranty for this free software. For both users' and
46 | authors' sake, the GPL requires that modified versions be marked as
47 | changed, so that their problems will not be attributed erroneously to
48 | authors of previous versions.
49 |
50 | Some devices are designed to deny users access to install or run
51 | modified versions of the software inside them, although the manufacturer
52 | can do so. This is fundamentally incompatible with the aim of
53 | protecting users' freedom to change the software. The systematic
54 | pattern of such abuse occurs in the area of products for individuals to
55 | use, which is precisely where it is most unacceptable. Therefore, we
56 | have designed this version of the GPL to prohibit the practice for those
57 | products. If such problems arise substantially in other domains, we
58 | stand ready to extend this provision to those domains in future versions
59 | of the GPL, as needed to protect the freedom of users.
60 |
61 | Finally, every program is threatened constantly by software patents.
62 | States should not allow patents to restrict development and use of
63 | software on general-purpose computers, but in those that do, we wish to
64 | avoid the special danger that patents applied to a free program could
65 | make it effectively proprietary. To prevent this, the GPL assures that
66 | patents cannot be used to render the program non-free.
67 |
68 | The precise terms and conditions for copying, distribution and
69 | modification follow.
70 |
71 | TERMS AND CONDITIONS
72 |
73 | 0. Definitions.
74 |
75 | "This License" refers to version 3 of the GNU General Public License.
76 |
77 | "Copyright" also means copyright-like laws that apply to other kinds of
78 | works, such as semiconductor masks.
79 |
80 | "The Program" refers to any copyrightable work licensed under this
81 | License. Each licensee is addressed as "you". "Licensees" and
82 | "recipients" may be individuals or organizations.
83 |
84 | To "modify" a work means to copy from or adapt all or part of the work
85 | in a fashion requiring copyright permission, other than the making of an
86 | exact copy. The resulting work is called a "modified version" of the
87 | earlier work or a work "based on" the earlier work.
88 |
89 | A "covered work" means either the unmodified Program or a work based
90 | on the Program.
91 |
92 | To "propagate" a work means to do anything with it that, without
93 | permission, would make you directly or secondarily liable for
94 | infringement under applicable copyright law, except executing it on a
95 | computer or modifying a private copy. Propagation includes copying,
96 | distribution (with or without modification), making available to the
97 | public, and in some countries other activities as well.
98 |
99 | To "convey" a work means any kind of propagation that enables other
100 | parties to make or receive copies. Mere interaction with a user through
101 | a computer network, with no transfer of a copy, is not conveying.
102 |
103 | An interactive user interface displays "Appropriate Legal Notices"
104 | to the extent that it includes a convenient and prominently visible
105 | feature that (1) displays an appropriate copyright notice, and (2)
106 | tells the user that there is no warranty for the work (except to the
107 | extent that warranties are provided), that licensees may convey the
108 | work under this License, and how to view a copy of this License. If
109 | the interface presents a list of user commands or options, such as a
110 | menu, a prominent item in the list meets this criterion.
111 |
112 | 1. Source Code.
113 |
114 | The "source code" for a work means the preferred form of the work
115 | for making modifications to it. "Object code" means any non-source
116 | form of a work.
117 |
118 | A "Standard Interface" means an interface that either is an official
119 | standard defined by a recognized standards body, or, in the case of
120 | interfaces specified for a particular programming language, one that
121 | is widely used among developers working in that language.
122 |
123 | The "System Libraries" of an executable work include anything, other
124 | than the work as a whole, that (a) is included in the normal form of
125 | packaging a Major Component, but which is not part of that Major
126 | Component, and (b) serves only to enable use of the work with that
127 | Major Component, or to implement a Standard Interface for which an
128 | implementation is available to the public in source code form. A
129 | "Major Component", in this context, means a major essential component
130 | (kernel, window system, and so on) of the specific operating system
131 | (if any) on which the executable work runs, or a compiler used to
132 | produce the work, or an object code interpreter used to run it.
133 |
134 | The "Corresponding Source" for a work in object code form means all
135 | the source code needed to generate, install, and (for an executable
136 | work) run the object code and to modify the work, including scripts to
137 | control those activities. However, it does not include the work's
138 | System Libraries, or general-purpose tools or generally available free
139 | programs which are used unmodified in performing those activities but
140 | which are not part of the work. For example, Corresponding Source
141 | includes interface definition files associated with source files for
142 | the work, and the source code for shared libraries and dynamically
143 | linked subprograms that the work is specifically designed to require,
144 | such as by intimate data communication or control flow between those
145 | subprograms and other parts of the work.
146 |
147 | The Corresponding Source need not include anything that users
148 | can regenerate automatically from other parts of the Corresponding
149 | Source.
150 |
151 | The Corresponding Source for a work in source code form is that
152 | same work.
153 |
154 | 2. Basic Permissions.
155 |
156 | All rights granted under this License are granted for the term of
157 | copyright on the Program, and are irrevocable provided the stated
158 | conditions are met. This License explicitly affirms your unlimited
159 | permission to run the unmodified Program. The output from running a
160 | covered work is covered by this License only if the output, given its
161 | content, constitutes a covered work. This License acknowledges your
162 | rights of fair use or other equivalent, as provided by copyright law.
163 |
164 | You may make, run and propagate covered works that you do not
165 | convey, without conditions so long as your license otherwise remains
166 | in force. You may convey covered works to others for the sole purpose
167 | of having them make modifications exclusively for you, or provide you
168 | with facilities for running those works, provided that you comply with
169 | the terms of this License in conveying all material for which you do
170 | not control copyright. Those thus making or running the covered works
171 | for you must do so exclusively on your behalf, under your direction
172 | and control, on terms that prohibit them from making any copies of
173 | your copyrighted material outside their relationship with you.
174 |
175 | Conveying under any other circumstances is permitted solely under
176 | the conditions stated below. Sublicensing is not allowed; section 10
177 | makes it unnecessary.
178 |
179 | 3. Protecting Users' Legal Rights From Anti-Circumvention Law.
180 |
181 | No covered work shall be deemed part of an effective technological
182 | measure under any applicable law fulfilling obligations under article
183 | 11 of the WIPO copyright treaty adopted on 20 December 1996, or
184 | similar laws prohibiting or restricting circumvention of such
185 | measures.
186 |
187 | When you convey a covered work, you waive any legal power to forbid
188 | circumvention of technological measures to the extent such circumvention
189 | is effected by exercising rights under this License with respect to
190 | the covered work, and you disclaim any intention to limit operation or
191 | modification of the work as a means of enforcing, against the work's
192 | users, your or third parties' legal rights to forbid circumvention of
193 | technological measures.
194 |
195 | 4. Conveying Verbatim Copies.
196 |
197 | You may convey verbatim copies of the Program's source code as you
198 | receive it, in any medium, provided that you conspicuously and
199 | appropriately publish on each copy an appropriate copyright notice;
200 | keep intact all notices stating that this License and any
201 | non-permissive terms added in accord with section 7 apply to the code;
202 | keep intact all notices of the absence of any warranty; and give all
203 | recipients a copy of this License along with the Program.
204 |
205 | You may charge any price or no price for each copy that you convey,
206 | and you may offer support or warranty protection for a fee.
207 |
208 | 5. Conveying Modified Source Versions.
209 |
210 | You may convey a work based on the Program, or the modifications to
211 | produce it from the Program, in the form of source code under the
212 | terms of section 4, provided that you also meet all of these conditions:
213 |
214 | a) The work must carry prominent notices stating that you modified
215 | it, and giving a relevant date.
216 |
217 | b) The work must carry prominent notices stating that it is
218 | released under this License and any conditions added under section
219 | 7. This requirement modifies the requirement in section 4 to
220 | "keep intact all notices".
221 |
222 | c) You must license the entire work, as a whole, under this
223 | License to anyone who comes into possession of a copy. This
224 | License will therefore apply, along with any applicable section 7
225 | additional terms, to the whole of the work, and all its parts,
226 | regardless of how they are packaged. This License gives no
227 | permission to license the work in any other way, but it does not
228 | invalidate such permission if you have separately received it.
229 |
230 | d) If the work has interactive user interfaces, each must display
231 | Appropriate Legal Notices; however, if the Program has interactive
232 | interfaces that do not display Appropriate Legal Notices, your
233 | work need not make them do so.
234 |
235 | A compilation of a covered work with other separate and independent
236 | works, which are not by their nature extensions of the covered work,
237 | and which are not combined with it such as to form a larger program,
238 | in or on a volume of a storage or distribution medium, is called an
239 | "aggregate" if the compilation and its resulting copyright are not
240 | used to limit the access or legal rights of the compilation's users
241 | beyond what the individual works permit. Inclusion of a covered work
242 | in an aggregate does not cause this License to apply to the other
243 | parts of the aggregate.
244 |
245 | 6. Conveying Non-Source Forms.
246 |
247 | You may convey a covered work in object code form under the terms
248 | of sections 4 and 5, provided that you also convey the
249 | machine-readable Corresponding Source under the terms of this License,
250 | in one of these ways:
251 |
252 | a) Convey the object code in, or embodied in, a physical product
253 | (including a physical distribution medium), accompanied by the
254 | Corresponding Source fixed on a durable physical medium
255 | customarily used for software interchange.
256 |
257 | b) Convey the object code in, or embodied in, a physical product
258 | (including a physical distribution medium), accompanied by a
259 | written offer, valid for at least three years and valid for as
260 | long as you offer spare parts or customer support for that product
261 | model, to give anyone who possesses the object code either (1) a
262 | copy of the Corresponding Source for all the software in the
263 | product that is covered by this License, on a durable physical
264 | medium customarily used for software interchange, for a price no
265 | more than your reasonable cost of physically performing this
266 | conveying of source, or (2) access to copy the
267 | Corresponding Source from a network server at no charge.
268 |
269 | c) Convey individual copies of the object code with a copy of the
270 | written offer to provide the Corresponding Source. This
271 | alternative is allowed only occasionally and noncommercially, and
272 | only if you received the object code with such an offer, in accord
273 | with subsection 6b.
274 |
275 | d) Convey the object code by offering access from a designated
276 | place (gratis or for a charge), and offer equivalent access to the
277 | Corresponding Source in the same way through the same place at no
278 | further charge. You need not require recipients to copy the
279 | Corresponding Source along with the object code. If the place to
280 | copy the object code is a network server, the Corresponding Source
281 | may be on a different server (operated by you or a third party)
282 | that supports equivalent copying facilities, provided you maintain
283 | clear directions next to the object code saying where to find the
284 | Corresponding Source. Regardless of what server hosts the
285 | Corresponding Source, you remain obligated to ensure that it is
286 | available for as long as needed to satisfy these requirements.
287 |
288 | e) Convey the object code using peer-to-peer transmission, provided
289 | you inform other peers where the object code and Corresponding
290 | Source of the work are being offered to the general public at no
291 | charge under subsection 6d.
292 |
293 | A separable portion of the object code, whose source code is excluded
294 | from the Corresponding Source as a System Library, need not be
295 | included in conveying the object code work.
296 |
297 | A "User Product" is either (1) a "consumer product", which means any
298 | tangible personal property which is normally used for personal, family,
299 | or household purposes, or (2) anything designed or sold for incorporation
300 | into a dwelling. In determining whether a product is a consumer product,
301 | doubtful cases shall be resolved in favor of coverage. For a particular
302 | product received by a particular user, "normally used" refers to a
303 | typical or common use of that class of product, regardless of the status
304 | of the particular user or of the way in which the particular user
305 | actually uses, or expects or is expected to use, the product. A product
306 | is a consumer product regardless of whether the product has substantial
307 | commercial, industrial or non-consumer uses, unless such uses represent
308 | the only significant mode of use of the product.
309 |
310 | "Installation Information" for a User Product means any methods,
311 | procedures, authorization keys, or other information required to install
312 | and execute modified versions of a covered work in that User Product from
313 | a modified version of its Corresponding Source. The information must
314 | suffice to ensure that the continued functioning of the modified object
315 | code is in no case prevented or interfered with solely because
316 | modification has been made.
317 |
318 | If you convey an object code work under this section in, or with, or
319 | specifically for use in, a User Product, and the conveying occurs as
320 | part of a transaction in which the right of possession and use of the
321 | User Product is transferred to the recipient in perpetuity or for a
322 | fixed term (regardless of how the transaction is characterized), the
323 | Corresponding Source conveyed under this section must be accompanied
324 | by the Installation Information. But this requirement does not apply
325 | if neither you nor any third party retains the ability to install
326 | modified object code on the User Product (for example, the work has
327 | been installed in ROM).
328 |
329 | The requirement to provide Installation Information does not include a
330 | requirement to continue to provide support service, warranty, or updates
331 | for a work that has been modified or installed by the recipient, or for
332 | the User Product in which it has been modified or installed. Access to a
333 | network may be denied when the modification itself materially and
334 | adversely affects the operation of the network or violates the rules and
335 | protocols for communication across the network.
336 |
337 | Corresponding Source conveyed, and Installation Information provided,
338 | in accord with this section must be in a format that is publicly
339 | documented (and with an implementation available to the public in
340 | source code form), and must require no special password or key for
341 | unpacking, reading or copying.
342 |
343 | 7. Additional Terms.
344 |
345 | "Additional permissions" are terms that supplement the terms of this
346 | License by making exceptions from one or more of its conditions.
347 | Additional permissions that are applicable to the entire Program shall
348 | be treated as though they were included in this License, to the extent
349 | that they are valid under applicable law. If additional permissions
350 | apply only to part of the Program, that part may be used separately
351 | under those permissions, but the entire Program remains governed by
352 | this License without regard to the additional permissions.
353 |
354 | When you convey a copy of a covered work, you may at your option
355 | remove any additional permissions from that copy, or from any part of
356 | it. (Additional permissions may be written to require their own
357 | removal in certain cases when you modify the work.) You may place
358 | additional permissions on material, added by you to a covered work,
359 | for which you have or can give appropriate copyright permission.
360 |
361 | Notwithstanding any other provision of this License, for material you
362 | add to a covered work, you may (if authorized by the copyright holders of
363 | that material) supplement the terms of this License with terms:
364 |
365 | a) Disclaiming warranty or limiting liability differently from the
366 | terms of sections 15 and 16 of this License; or
367 |
368 | b) Requiring preservation of specified reasonable legal notices or
369 | author attributions in that material or in the Appropriate Legal
370 | Notices displayed by works containing it; or
371 |
372 | c) Prohibiting misrepresentation of the origin of that material, or
373 | requiring that modified versions of such material be marked in
374 | reasonable ways as different from the original version; or
375 |
376 | d) Limiting the use for publicity purposes of names of licensors or
377 | authors of the material; or
378 |
379 | e) Declining to grant rights under trademark law for use of some
380 | trade names, trademarks, or service marks; or
381 |
382 | f) Requiring indemnification of licensors and authors of that
383 | material by anyone who conveys the material (or modified versions of
384 | it) with contractual assumptions of liability to the recipient, for
385 | any liability that these contractual assumptions directly impose on
386 | those licensors and authors.
387 |
388 | All other non-permissive additional terms are considered "further
389 | restrictions" within the meaning of section 10. If the Program as you
390 | received it, or any part of it, contains a notice stating that it is
391 | governed by this License along with a term that is a further
392 | restriction, you may remove that term. If a license document contains
393 | a further restriction but permits relicensing or conveying under this
394 | License, you may add to a covered work material governed by the terms
395 | of that license document, provided that the further restriction does
396 | not survive such relicensing or conveying.
397 |
398 | If you add terms to a covered work in accord with this section, you
399 | must place, in the relevant source files, a statement of the
400 | additional terms that apply to those files, or a notice indicating
401 | where to find the applicable terms.
402 |
403 | Additional terms, permissive or non-permissive, may be stated in the
404 | form of a separately written license, or stated as exceptions;
405 | the above requirements apply either way.
406 |
407 | 8. Termination.
408 |
409 | You may not propagate or modify a covered work except as expressly
410 | provided under this License. Any attempt otherwise to propagate or
411 | modify it is void, and will automatically terminate your rights under
412 | this License (including any patent licenses granted under the third
413 | paragraph of section 11).
414 |
415 | However, if you cease all violation of this License, then your
416 | license from a particular copyright holder is reinstated (a)
417 | provisionally, unless and until the copyright holder explicitly and
418 | finally terminates your license, and (b) permanently, if the copyright
419 | holder fails to notify you of the violation by some reasonable means
420 | prior to 60 days after the cessation.
421 |
422 | Moreover, your license from a particular copyright holder is
423 | reinstated permanently if the copyright holder notifies you of the
424 | violation by some reasonable means, this is the first time you have
425 | received notice of violation of this License (for any work) from that
426 | copyright holder, and you cure the violation prior to 30 days after
427 | your receipt of the notice.
428 |
429 | Termination of your rights under this section does not terminate the
430 | licenses of parties who have received copies or rights from you under
431 | this License. If your rights have been terminated and not permanently
432 | reinstated, you do not qualify to receive new licenses for the same
433 | material under section 10.
434 |
435 | 9. Acceptance Not Required for Having Copies.
436 |
437 | You are not required to accept this License in order to receive or
438 | run a copy of the Program. Ancillary propagation of a covered work
439 | occurring solely as a consequence of using peer-to-peer transmission
440 | to receive a copy likewise does not require acceptance. However,
441 | nothing other than this License grants you permission to propagate or
442 | modify any covered work. These actions infringe copyright if you do
443 | not accept this License. Therefore, by modifying or propagating a
444 | covered work, you indicate your acceptance of this License to do so.
445 |
446 | 10. Automatic Licensing of Downstream Recipients.
447 |
448 | Each time you convey a covered work, the recipient automatically
449 | receives a license from the original licensors, to run, modify and
450 | propagate that work, subject to this License. You are not responsible
451 | for enforcing compliance by third parties with this License.
452 |
453 | An "entity transaction" is a transaction transferring control of an
454 | organization, or substantially all assets of one, or subdividing an
455 | organization, or merging organizations. If propagation of a covered
456 | work results from an entity transaction, each party to that
457 | transaction who receives a copy of the work also receives whatever
458 | licenses to the work the party's predecessor in interest had or could
459 | give under the previous paragraph, plus a right to possession of the
460 | Corresponding Source of the work from the predecessor in interest, if
461 | the predecessor has it or can get it with reasonable efforts.
462 |
463 | You may not impose any further restrictions on the exercise of the
464 | rights granted or affirmed under this License. For example, you may
465 | not impose a license fee, royalty, or other charge for exercise of
466 | rights granted under this License, and you may not initiate litigation
467 | (including a cross-claim or counterclaim in a lawsuit) alleging that
468 | any patent claim is infringed by making, using, selling, offering for
469 | sale, or importing the Program or any portion of it.
470 |
471 | 11. Patents.
472 |
473 | A "contributor" is a copyright holder who authorizes use under this
474 | License of the Program or a work on which the Program is based. The
475 | work thus licensed is called the contributor's "contributor version".
476 |
477 | A contributor's "essential patent claims" are all patent claims
478 | owned or controlled by the contributor, whether already acquired or
479 | hereafter acquired, that would be infringed by some manner, permitted
480 | by this License, of making, using, or selling its contributor version,
481 | but do not include claims that would be infringed only as a
482 | consequence of further modification of the contributor version. For
483 | purposes of this definition, "control" includes the right to grant
484 | patent sublicenses in a manner consistent with the requirements of
485 | this License.
486 |
487 | Each contributor grants you a non-exclusive, worldwide, royalty-free
488 | patent license under the contributor's essential patent claims, to
489 | make, use, sell, offer for sale, import and otherwise run, modify and
490 | propagate the contents of its contributor version.
491 |
492 | In the following three paragraphs, a "patent license" is any express
493 | agreement or commitment, however denominated, not to enforce a patent
494 | (such as an express permission to practice a patent or covenant not to
495 | sue for patent infringement). To "grant" such a patent license to a
496 | party means to make such an agreement or commitment not to enforce a
497 | patent against the party.
498 |
499 | If you convey a covered work, knowingly relying on a patent license,
500 | and the Corresponding Source of the work is not available for anyone
501 | to copy, free of charge and under the terms of this License, through a
502 | publicly available network server or other readily accessible means,
503 | then you must either (1) cause the Corresponding Source to be so
504 | available, or (2) arrange to deprive yourself of the benefit of the
505 | patent license for this particular work, or (3) arrange, in a manner
506 | consistent with the requirements of this License, to extend the patent
507 | license to downstream recipients. "Knowingly relying" means you have
508 | actual knowledge that, but for the patent license, your conveying the
509 | covered work in a country, or your recipient's use of the covered work
510 | in a country, would infringe one or more identifiable patents in that
511 | country that you have reason to believe are valid.
512 |
513 | If, pursuant to or in connection with a single transaction or
514 | arrangement, you convey, or propagate by procuring conveyance of, a
515 | covered work, and grant a patent license to some of the parties
516 | receiving the covered work authorizing them to use, propagate, modify
517 | or convey a specific copy of the covered work, then the patent license
518 | you grant is automatically extended to all recipients of the covered
519 | work and works based on it.
520 |
521 | A patent license is "discriminatory" if it does not include within
522 | the scope of its coverage, prohibits the exercise of, or is
523 | conditioned on the non-exercise of one or more of the rights that are
524 | specifically granted under this License. You may not convey a covered
525 | work if you are a party to an arrangement with a third party that is
526 | in the business of distributing software, under which you make payment
527 | to the third party based on the extent of your activity of conveying
528 | the work, and under which the third party grants, to any of the
529 | parties who would receive the covered work from you, a discriminatory
530 | patent license (a) in connection with copies of the covered work
531 | conveyed by you (or copies made from those copies), or (b) primarily
532 | for and in connection with specific products or compilations that
533 | contain the covered work, unless you entered into that arrangement,
534 | or that patent license was granted, prior to 28 March 2007.
535 |
536 | Nothing in this License shall be construed as excluding or limiting
537 | any implied license or other defenses to infringement that may
538 | otherwise be available to you under applicable patent law.
539 |
540 | 12. No Surrender of Others' Freedom.
541 |
542 | If conditions are imposed on you (whether by court order, agreement or
543 | otherwise) that contradict the conditions of this License, they do not
544 | excuse you from the conditions of this License. If you cannot convey a
545 | covered work so as to satisfy simultaneously your obligations under this
546 | License and any other pertinent obligations, then as a consequence you may
547 | not convey it at all. For example, if you agree to terms that obligate you
548 | to collect a royalty for further conveying from those to whom you convey
549 | the Program, the only way you could satisfy both those terms and this
550 | License would be to refrain entirely from conveying the Program.
551 |
552 | 13. Use with the GNU Affero General Public License.
553 |
554 | Notwithstanding any other provision of this License, you have
555 | permission to link or combine any covered work with a work licensed
556 | under version 3 of the GNU Affero General Public License into a single
557 | combined work, and to convey the resulting work. The terms of this
558 | License will continue to apply to the part which is the covered work,
559 | but the special requirements of the GNU Affero General Public License,
560 | section 13, concerning interaction through a network will apply to the
561 | combination as such.
562 |
563 | 14. Revised Versions of this License.
564 |
565 | The Free Software Foundation may publish revised and/or new versions of
566 | the GNU General Public License from time to time. Such new versions will
567 | be similar in spirit to the present version, but may differ in detail to
568 | address new problems or concerns.
569 |
570 | Each version is given a distinguishing version number. If the
571 | Program specifies that a certain numbered version of the GNU General
572 | Public License "or any later version" applies to it, you have the
573 | option of following the terms and conditions either of that numbered
574 | version or of any later version published by the Free Software
575 | Foundation. If the Program does not specify a version number of the
576 | GNU General Public License, you may choose any version ever published
577 | by the Free Software Foundation.
578 |
579 | If the Program specifies that a proxy can decide which future
580 | versions of the GNU General Public License can be used, that proxy's
581 | public statement of acceptance of a version permanently authorizes you
582 | to choose that version for the Program.
583 |
584 | Later license versions may give you additional or different
585 | permissions. However, no additional obligations are imposed on any
586 | author or copyright holder as a result of your choosing to follow a
587 | later version.
588 |
589 | 15. Disclaimer of Warranty.
590 |
591 | THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
592 | APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
593 | HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
594 | OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
595 | THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
596 | PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
597 | IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
598 | ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
599 |
600 | 16. Limitation of Liability.
601 |
602 | IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
603 | WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS
604 | THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY
605 | GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE
606 | USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF
607 | DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD
608 | PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS),
609 | EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
610 | SUCH DAMAGES.
611 |
612 | 17. Interpretation of Sections 15 and 16.
613 |
614 | If the disclaimer of warranty and limitation of liability provided
615 | above cannot be given local legal effect according to their terms,
616 | reviewing courts shall apply local law that most closely approximates
617 | an absolute waiver of all civil liability in connection with the
618 | Program, unless a warranty or assumption of liability accompanies a
619 | copy of the Program in return for a fee.
620 |
621 | END OF TERMS AND CONDITIONS
622 |
623 | How to Apply These Terms to Your New Programs
624 |
625 | If you develop a new program, and you want it to be of the greatest
626 | possible use to the public, the best way to achieve this is to make it
627 | free software which everyone can redistribute and change under these terms.
628 |
629 | To do so, attach the following notices to the program. It is safest
630 | to attach them to the start of each source file to most effectively
631 | state the exclusion of warranty; and each file should have at least
632 | the "copyright" line and a pointer to where the full notice is found.
633 |
634 |
635 | Copyright (C)
636 |
637 | This program is free software: you can redistribute it and/or modify
638 | it under the terms of the GNU General Public License as published by
639 | the Free Software Foundation, either version 3 of the License, or
640 | (at your option) any later version.
641 |
642 | This program is distributed in the hope that it will be useful,
643 | but WITHOUT ANY WARRANTY; without even the implied warranty of
644 | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
645 | GNU General Public License for more details.
646 |
647 | You should have received a copy of the GNU General Public License
648 | along with this program. If not, see .
649 |
650 | Also add information on how to contact you by electronic and paper mail.
651 |
652 | If the program does terminal interaction, make it output a short
653 | notice like this when it starts in an interactive mode:
654 |
655 | Copyright (C)
656 | This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
657 | This is free software, and you are welcome to redistribute it
658 | under certain conditions; type `show c' for details.
659 |
660 | The hypothetical commands `show w' and `show c' should show the appropriate
661 | parts of the General Public License. Of course, your program's commands
662 | might be different; for a GUI interface, you would use an "about box".
663 |
664 | You should also get your employer (if you work as a programmer) or school,
665 | if any, to sign a "copyright disclaimer" for the program, if necessary.
666 | For more information on this, and how to apply and follow the GNU GPL, see
667 | .
668 |
669 | The GNU General Public License does not permit incorporating your program
670 | into proprietary programs. If your program is a subroutine library, you
671 | may consider it more useful to permit linking proprietary applications with
672 | the library. If this is what you want to do, use the GNU Lesser General
673 | Public License instead of this License. But first, please read
674 | .
675 |
--------------------------------------------------------------------------------
/app.js:
--------------------------------------------------------------------------------
1 | class SQLMapGenerator {
2 | constructor() {
3 | this.config = {};
4 |
5 | this.paramMapping = {
6 | '-u': 'url',
7 | '-d': 'directDb',
8 | '-g': 'googleDork',
9 | '-m': 'targetsFile',
10 | '-l': 'burpFile',
11 | '--scope': 'burpFileScope',
12 |
13 | '--timeout': 'timeout',
14 | '--delay': 'delay',
15 | '--threads': 'threads',
16 | '--force-ssl': 'forceSsl',
17 | '--keep-alive': 'keepAlive',
18 | '--null-connection': 'nullConnection',
19 | '--http2': 'http2',
20 |
21 | '--proxy': 'proxy',
22 | '--proxy-cred': 'proxyCred',
23 | '--proxy-file': 'proxyFile',
24 | '--proxy-freq': 'proxyFreq',
25 | '--ignore-proxy': 'proxyIgnore',
26 | '--tor': 'tor',
27 | '--check-tor': 'checkTor',
28 | '--tor-port': 'torPort',
29 | '--tor-type': 'torType',
30 |
31 | '--method': 'method',
32 | '--param-del': 'paramDel',
33 | '-r': 'requestFile',
34 | '--eval': 'eval',
35 | '--data': 'data',
36 |
37 | '--host': 'host',
38 | '-A': 'userAgent',
39 | '--random-agent': 'userAgent',
40 | '--mobile': 'mobileUserAgent',
41 | '--referer': 'referer',
42 | '--headers': 'headers',
43 |
44 | '--cookie': 'cookie',
45 | '--cookie-del': 'cookieDel',
46 | '--live-cookies': 'cookieLive',
47 | '--load-cookies': 'cookieLoad',
48 | '--drop-set-cookie': 'cookieDrop',
49 | '--auth-type': 'authType',
50 | '--auth-cred': 'authCred',
51 | '--auth-file': 'authFile',
52 |
53 | '--csrf-url': 'csrfUrl',
54 | '--csrf-method': 'csrfMethod',
55 | '--csrf-data': 'csrfData',
56 | '--csrf-token': 'csrfToken',
57 | '--csrf-retries': 'csrfRetries',
58 |
59 | '--safe-url': 'safeUrl',
60 | '--safe-post': 'safePost',
61 | '--safe-req': 'safeReq',
62 | '--safe-freq': 'safeFreq',
63 |
64 |
65 | '-p': 'paramTest',
66 | '--skip': 'paramSkip',
67 | '--param-exclude': 'paramExclude',
68 | '--param-filter': 'paramFilter',
69 | '--prefix': 'prefix',
70 | '--suffix': 'suffix',
71 | '--randomize': 'randomize',
72 |
73 | '--titles': 'titles',
74 | '--text-only': 'textOnly',
75 | '--ignore-redirects': 'ignoreRedirects',
76 | '--ignore-timeouts': 'ignoreTimeouts',
77 | '--string': 'string',
78 | '--regexp': 'regexp',
79 | '--not-string': 'notString',
80 | '--code': 'code',
81 | '--abort-code': 'abortCode',
82 | '--ignore-code': 'ignoreCode',
83 | '--retries': 'retries',
84 | '--retry-on': 'retryOn',
85 |
86 | '--level': 'level',
87 | '--risk': 'risk',
88 | '--dbms': 'dbms',
89 | '--os': 'os',
90 | '--second-url': 'secondUrl',
91 | '--second-req': 'secondReq',
92 | '--technique': 'technique',
93 | '--invalid-bignum': 'invalidBignum',
94 | '--invalid-logical': 'invalidLogical',
95 | '--invalid-string': 'invalidString',
96 | '--no-cast': 'noCast',
97 | '--no-escape': 'noEscape',
98 | '--predict-output':'predictOutput',
99 | '--skip-urlencode':'skipUrlencode',
100 | '--chunked':'chunked',
101 | '--hpp':'hpp',
102 |
103 | '--all': 'all',
104 | '--banner': 'banner',
105 | '--columns': 'columns',
106 | '--comments': 'comments',
107 | '--count': 'count',
108 | '--current-user': 'currentUser',
109 | '--current-db': 'currentDb',
110 | '--dbs': 'dbs',
111 | '--dump': 'dump',
112 | '--dump-all': 'dumpAll',
113 | '--exclude-sysdbs': 'excludeSysdbs',
114 | '--hostname': 'hostname',
115 | '--is-dba': 'isDba',
116 | '--passwords': 'passwords',
117 | '--privileges': 'privileges',
118 | '--roles': 'roles',
119 | '--schema': 'schema',
120 | '--search': 'search',
121 | '--statements': 'statements',
122 | '--tables': 'tables',
123 | '--users': 'users',
124 |
125 | '-D': 'database',
126 | '-T': 'table',
127 | '-C': 'column',
128 | '-X': 'exclude',
129 | '-U': 'user',
130 | '--pivot-column': 'pivotColumn',
131 | '--where': 'where',
132 | '--start': 'start',
133 | '--stop': 'stop',
134 | '--first': 'first',
135 | '--last': 'last',
136 | '--sql-query': 'sqlQuery',
137 | '--sql-file': 'sqlFile',
138 |
139 | '--tamper': 'tamper',
140 |
141 | '-v': 'verbose',
142 | '-t': 'trafficFile',
143 | '-c': 'configFile',
144 | '--batch': 'batch',
145 | '--parse-errors': 'parseErrors'
146 | };
147 |
148 | this.tamperScriptList = [
149 | "0eunion",
150 | "apostrophemask",
151 | "apostrophenullencode",
152 | "appendnullbyte",
153 | "base64encode",
154 | "between",
155 | "binary",
156 | "bluecoat",
157 | "chardoubleencode",
158 | "charencode",
159 | "charunicodeencode",
160 | "charunicodeescape",
161 | "commalesslimit",
162 | "commalessmid",
163 | "commentbeforeparentheses",
164 | "concat2concatws",
165 | "decentities",
166 | "dunion",
167 | "equaltolike",
168 | "equaltorlike",
169 | "escapequotes",
170 | "greatest",
171 | "halfversionedmorekeywords",
172 | "hex2char",
173 | "hexentities",
174 | "htmlencode",
175 | "if2case",
176 | "ifnull2casewhenisnull",
177 | "ifnull2ifisnull",
178 | "informationschemacomment",
179 | "least",
180 | "lowercase",
181 | "luanginx",
182 | "luanginxmore",
183 | "misunion",
184 | "modsecurityversioned",
185 | "modsecurityzeroversioned",
186 | "multiplespaces",
187 | "ord2ascii",
188 | "overlongutf8",
189 | "overlongutf8more",
190 | "percentage",
191 | "plus2concat",
192 | "plus2fnconcat",
193 | "randomcase",
194 | "randomcomments",
195 | "schemasplit",
196 | "scientific",
197 | "sleep2getlock",
198 | "sp_password",
199 | "space2comment",
200 | "space2dash",
201 | "space2hash",
202 | "space2morecomment",
203 | "space2morehash",
204 | "space2mssqlblank",
205 | "space2mssqlhash",
206 | "space2mysqlblank",
207 | "space2mysqldash",
208 | "space2plus",
209 | "space2randomblank",
210 | "substring2leftright",
211 | "symboliclogical",
212 | "unionalltounion",
213 | "unmagicquotes",
214 | "uppercase",
215 | "varnish",
216 | "versionedkeywords",
217 | "versionedmorekeywords",
218 | "xforwardedfor"
219 | ];
220 |
221 | this.init();
222 | }
223 |
224 | init() {
225 | this.setupEventListeners();
226 | this.setupTabs();
227 | this.setupSliders();
228 | this.handleHashtag();
229 | this.updateCommand();
230 | }
231 |
232 | setStandardConfigItem(config, confkey) {
233 | var id = this.paramMapping[confkey];
234 | var elem = document.getElementById(id);
235 | var value = null;
236 | try {
237 |
238 |
239 | if (elem.type === 'checkbox') {
240 | value = elem.checked;
241 | }
242 | else if (elem.type === 'text' || elem.type === 'number' || elem.type === 'url' || elem.type === 'select-one') {
243 | value = elem.value.trim();
244 | }
245 | else if (elem.type === 'textarea') {
246 | value = elem.value.trim().replaceAll("\n", "\\\n");
247 | }
248 |
249 | if (value) {
250 | config[confkey] = value;
251 | }
252 |
253 | } catch (e) {
254 | console.log(confkey, e);
255 | }
256 | }
257 |
258 | getCurrentConfig() {
259 | const config = {};
260 |
261 | // # TARGET TAB
262 | this.setStandardConfigItem(config, '-u');
263 | this.setStandardConfigItem(config, '-d');
264 | this.setStandardConfigItem(config, '-g');
265 | this.setStandardConfigItem(config, '-m');
266 | this.setStandardConfigItem(config, '-l');
267 |
268 | const burpFileScope = document.getElementById('burpFileScope').value.trim();
269 | if (burpFileScope) config['--scope'] = burpFileScope;
270 | if (burpFileScope && !burpFile) document.getElementById('burpFile').value = "burp.txt";
271 |
272 | // # CONNECECTION TAB
273 | // ## Connection Control
274 | const timeout = document.getElementById('timeout').value;
275 | if (timeout && timeout != 30) config['--timeout'] = timeout;
276 |
277 | const delay = document.getElementById('delay').value;
278 | if (delay && delay > 0) config['--delay'] = delay;
279 |
280 | const threads = document.getElementById('threads').value;
281 | if (threads && threads > 1) config['--threads'] = threads;
282 |
283 | this.setStandardConfigItem(config, '--force-ssl');
284 | this.setStandardConfigItem(config, '--keep-alive');
285 | this.setStandardConfigItem(config, '--null-connection');
286 | this.setStandardConfigItem(config, '--http2');
287 |
288 | // ## Proxy Options
289 | this.setStandardConfigItem(config, '--proxy');
290 | this.setStandardConfigItem(config, '--proxy-cred');
291 | this.setStandardConfigItem(config, '--proxy-file');
292 |
293 | const proxyFreq = document.getElementById('proxyFreq').value.trim();
294 | if (proxyFreq && proxyFreq >= 1) config['--proxy-freq'] = proxyFreq;
295 |
296 | this.setStandardConfigItem(config, '--http2');
297 | this.setStandardConfigItem(config, '--ignore-proxy');
298 | this.setStandardConfigItem(config, '--tor');
299 | this.setStandardConfigItem(config, '--check-tor');
300 | this.setStandardConfigItem(config, '--tor-port');
301 |
302 | const torType = document.getElementById('torType').value.trim();
303 | if (torType && torType !== "SOCKS5") config['--tor-type'] = torType;
304 |
305 | // # REQUEST TAB
306 | // ## Request Data
307 | const method = document.getElementById('method').value;
308 | if (method && method !== 'custom') {
309 | config['--method'] = method;
310 | } else if (method === 'custom') {
311 | const customHttpMethod = document.getElementById('customHttpMethod').value.trim();
312 | if (customHttpMethod) config['--method'] = customHttpMethod;
313 | }
314 |
315 | const paramDel = document.getElementById('paramDel').value.trim();
316 | if (paramDel && paramDel !== "&") config['--param-del'] = paramDel;
317 |
318 | this.setStandardConfigItem(config, '-r');
319 | this.setStandardConfigItem(config, '--eval');
320 | this.setStandardConfigItem(config, '--data');
321 |
322 | // ## Request Headers
323 | this.setStandardConfigItem(config, '--host');
324 |
325 | const userAgent = document.getElementById('userAgent').value;
326 | if (userAgent && userAgent === 'random') {
327 | config['--random-agent'] = true;
328 | }
329 | else if (userAgent && userAgent === 'mobile') {
330 | config['--mobile'] = true;
331 | }
332 | else if (userAgent && userAgent === 'custom') {
333 | const customUserAgent = document.getElementById('customUserAgent').value;
334 | if (customUserAgent) config['-A'] = customUserAgent;
335 | }
336 | else if (userAgent) {
337 | config['-A'] = userAgent;
338 | }
339 |
340 | this.setStandardConfigItem(config, '--referer');
341 | this.setStandardConfigItem(config, '--headers');
342 |
343 | // ## Authentication
344 | this.setStandardConfigItem(config, '--cookie');
345 | this.setStandardConfigItem(config, '--cookie-del');
346 | this.setStandardConfigItem(config, '--live-cookies');
347 | this.setStandardConfigItem(config, '--load-cookies');
348 |
349 | this.setStandardConfigItem(config, '--drop-set-cookie');
350 |
351 | const authType = document.getElementById('authType').value;
352 | const authCred = document.getElementById('authCred').value.trim();
353 | if (authType && authCred) {
354 | config['--auth-type'] = authType;
355 | config['--auth-cred'] = authCred;
356 | }
357 |
358 | this.setStandardConfigItem(config, '--auth-file');
359 |
360 | // ## CSRF Tokens Control
361 | this.setStandardConfigItem(config, '--csrf-url');
362 |
363 | const csrfMethod = document.getElementById('csrfMethod').value;
364 | if (csrfMethod && csrfMethod !== 'custom') {
365 | config['--csrf-method'] = csrfMethod;
366 | } else if (csrfMethod === 'custom') {
367 | const customCsrfMethod = document.getElementById('customCsrfMethod').value;
368 | if (customCsrfMethod) config['--csrf-method'] = customCsrfMethod;
369 | }
370 |
371 | this.setStandardConfigItem(config, '--csrf-data');
372 | this.setStandardConfigItem(config, '--csrf-token');
373 |
374 | const csrfRetries = document.getElementById('csrfRetries').value.trim();
375 | if (csrfRetries && csrfRetries > 0) config['--csrf-retries'] = csrfRetries;
376 |
377 | // ## Safe Requests
378 | this.setStandardConfigItem(config, '--safe-url');
379 | this.setStandardConfigItem(config, '--safe-post');
380 | this.setStandardConfigItem(config, '--safe-req');
381 | this.setStandardConfigItem(config, '--safe-freq');
382 |
383 | // # INJECTION TAB
384 | // ## Parameters
385 | this.setStandardConfigItem(config, '-p');
386 | this.setStandardConfigItem(config, '--skip');
387 | this.setStandardConfigItem(config, '--param-exclude');
388 | this.setStandardConfigItem(config, '--param-filter');
389 | this.setStandardConfigItem(config, '--prefix');
390 | this.setStandardConfigItem(config, '--suffix');
391 | this.setStandardConfigItem(config, '--randomize');
392 |
393 | // ## Detection
394 | this.setStandardConfigItem(config, '--text-only');
395 | this.setStandardConfigItem(config, '--titles');
396 | this.setStandardConfigItem(config, '--ignore-redirects');
397 | this.setStandardConfigItem(config, '--ignore-timeouts');
398 | this.setStandardConfigItem(config, '--string');
399 | this.setStandardConfigItem(config, '--regexp');
400 | this.setStandardConfigItem(config, '--not-string');
401 |
402 | const code = document.getElementById('code').value.trim();
403 | if (code && code >= 100 && code <= 599) config['--code'] = code;
404 |
405 | this.setStandardConfigItem(config, '--abort-code');
406 | this.setStandardConfigItem(config, '--ignore-code');
407 |
408 | const retries = document.getElementById('retries').value.trim();
409 | if (retries && retries >= 0) config['--retries'] = csrfRetries;
410 |
411 | this.setStandardConfigItem(config, '--retry-on');
412 |
413 | // ## Attack Optimalization
414 | const level = document.getElementById('level').value;
415 | if (level > 1) config['--level'] = level;
416 |
417 | const risk = document.getElementById('risk').value;
418 | if (risk > 1) config['--risk'] = risk;
419 |
420 | this.setStandardConfigItem(config, '--dbms');
421 | this.setStandardConfigItem(config, '--os');
422 | this.setStandardConfigItem(config, '--second-url');
423 | this.setStandardConfigItem(config, '--second-req');
424 |
425 | const techniques = [];
426 | if (document.getElementById('techB').checked) techniques.push('B');
427 | if (document.getElementById('techE').checked) techniques.push('E');
428 | if (document.getElementById('techU').checked) techniques.push('U');
429 | if (document.getElementById('techS').checked) techniques.push('S');
430 | if (document.getElementById('techT').checked) techniques.push('T');
431 | if (document.getElementById('techQ').checked) techniques.push('Q');
432 | if (techniques.length > 0) config['--technique'] = techniques.join('');
433 |
434 | this.setStandardConfigItem(config, '--invalid-bignum');
435 | this.setStandardConfigItem(config, '--invalid-logical');
436 | this.setStandardConfigItem(config, '--invalid-string');
437 | this.setStandardConfigItem(config, '--no-cast');
438 | this.setStandardConfigItem(config, '--no-escape');
439 | this.setStandardConfigItem(config, '--predict-output');
440 | this.setStandardConfigItem(config, '--skip-urlencode');
441 | this.setStandardConfigItem(config, '--chunked');
442 | this.setStandardConfigItem(config, '--hpp');
443 |
444 | // # EXPLOITATION TAB
445 | // ## Enumeration and Data Exfiltraion
446 | this.setStandardConfigItem(config, '--all');
447 | this.setStandardConfigItem(config, '--banner');
448 | this.setStandardConfigItem(config, '--columns');
449 | this.setStandardConfigItem(config, '--comments');
450 | this.setStandardConfigItem(config, '--count');
451 | this.setStandardConfigItem(config, '--current-user');
452 | this.setStandardConfigItem(config, '--current-db');
453 | this.setStandardConfigItem(config, '--dbs');
454 | this.setStandardConfigItem(config, '--dump');
455 | this.setStandardConfigItem(config, '--dump-all');
456 | this.setStandardConfigItem(config, '--hostname');
457 | this.setStandardConfigItem(config, '--is-dba');
458 | this.setStandardConfigItem(config, '--exclude-sysdbs');
459 | this.setStandardConfigItem(config, '--passwords');
460 | this.setStandardConfigItem(config, '--privileges');
461 | this.setStandardConfigItem(config, '--roles');
462 | this.setStandardConfigItem(config, '--schema');
463 | this.setStandardConfigItem(config, '--search');
464 | this.setStandardConfigItem(config, '--statements');
465 | this.setStandardConfigItem(config, '--tables');
466 | this.setStandardConfigItem(config, '--users');
467 |
468 | // ## Other Exploitation Options
469 | this.setStandardConfigItem(config, '-D');
470 | this.setStandardConfigItem(config, '-T');
471 | this.setStandardConfigItem(config, '-C');
472 | this.setStandardConfigItem(config, '-X');
473 | this.setStandardConfigItem(config, '-U');
474 | this.setStandardConfigItem(config, '--pivot-column');
475 | this.setStandardConfigItem(config, '--where');
476 | this.setStandardConfigItem(config, '--start');
477 | this.setStandardConfigItem(config, '--stop');
478 | this.setStandardConfigItem(config, '--first');
479 | this.setStandardConfigItem(config, '--last');
480 | this.setStandardConfigItem(config, '--sql-query');
481 | this.setStandardConfigItem(config, '--sql-file');
482 |
483 | // # TAMPERING TAB
484 | const tamperScripts = [];
485 | this.tamperScriptList.forEach(s => {
486 | if (document.getElementById('tamperscript-'+s).checked) tamperScripts.push(s);
487 | });
488 | const tamper = document.getElementById('tamper');
489 | tamper.value = tamperScripts.join(',');
490 | if (tamper.value.trim()) config['--tamper'] = tamper.value.trim();
491 |
492 |
493 | // SQLMAP TAB
494 | const verbose = document.getElementById('verbose').value;
495 | if (verbose != 1) config['-v'] = verbose;
496 |
497 | this.setStandardConfigItem(config, '-t');
498 | this.setStandardConfigItem(config, '-c');
499 | this.setStandardConfigItem(config, '--batch');
500 | this.setStandardConfigItem(config, '--parse-errors');
501 |
502 | return config;
503 | }
504 |
505 | setupEventListeners() {
506 | // Copy button
507 | document.getElementById('copyBtn').addEventListener('click', () => this.copyCommand());
508 | document.getElementById('copyUrlBtn').addEventListener('click', () => this.copyUrl());
509 |
510 | // Template buttons
511 | document.querySelectorAll('.template-btn').forEach(btn => {
512 | btn.addEventListener('click', (e) => this.loadTemplate(e.target.dataset.template));
513 | });
514 |
515 | // Configuration buttons
516 | document.getElementById('saveConfig').addEventListener('click', () => this.saveConfiguration());
517 | document.getElementById('loadConfig').addEventListener('click', () => this.loadConfiguration());
518 | document.getElementById('resetConfig').addEventListener('click', () => this.resetConfiguration());
519 |
520 | // All form inputs
521 | document.querySelectorAll('input, select, textarea').forEach(input => {
522 | input.addEventListener('input', () => this.updateCommand());
523 | input.addEventListener('change', () => this.updateCommand());
524 | });
525 |
526 | // HTTP method custom field toggle
527 | document.getElementById('method').addEventListener('change', (e) => {
528 | const customHttpGroup = document.getElementById('customHttpMethodGroup');
529 | if (e.target.value === 'custom') {
530 | customHttpGroup.style.display = 'block';
531 | } else {
532 | customHttpGroup.style.display = 'none';
533 | }
534 | });
535 |
536 | // User-Agent custom field toggle
537 | document.getElementById('userAgent').addEventListener('change', (e) => {
538 | const customUserAgentGroup = document.getElementById('customUserAgentGroup');
539 | if (e.target.value === 'custom') {
540 | customUserAgentGroup.style.display = 'block';
541 | } else {
542 | customUserAgentGroup.style.display = 'none';
543 | }
544 | });
545 |
546 | // CSRF method custom field toggle
547 | document.getElementById('csrfMethod').addEventListener('change', (e) => {
548 | const customCsrfMethodGroup = document.getElementById('customCsrfMethodGroup');
549 | if (e.target.value === 'custom') {
550 | customCsrfMethodGroup.style.display = 'block';
551 | } else {
552 | customCsrfMethodGroup.style.display = 'none';
553 | }
554 | });
555 | }
556 |
557 | setupTabs() {
558 | document.querySelectorAll('.tab-btn').forEach(btn => {
559 | btn.addEventListener('click', (e) => {
560 | // Remove active class from all tabs and content
561 | document.querySelectorAll('.tab-btn').forEach(b => b.classList.remove('active'));
562 | document.querySelectorAll('.tab-content').forEach(c => c.classList.remove('active'));
563 |
564 | // Add active class to clicked tab and corresponding content
565 | e.target.classList.add('active');
566 | document.getElementById(e.target.dataset.tab).classList.add('active');
567 | });
568 | });
569 | }
570 |
571 | setupSliders() {
572 | // Level slider
573 | const levelSlider = document.getElementById('level');
574 | const levelValue = document.getElementById('levelValue');
575 | levelSlider.addEventListener('input', (e) => {
576 | levelValue.textContent = e.target.value;
577 | let levelHelp = "";
578 | switch (levelSlider.value) {
579 | case "1": levelHelp = "1: Fastest and least intrusive testing of GET and POST parameters (default)."; break;
580 | case "2": levelHelp = "2: Additionally test injections in the Cookie header."; break;
581 | case "3": levelHelp = "3: Additionally test injections in User-Agent and Referer headers."; break;
582 | case "4": levelHelp = "4: Additionally perform more advanced tests, such as null values and some extra payloads."; break;
583 | case "5": levelHelp = "5: Additionally test Host header, using all possible payloads."; break;
584 | }
585 | document.getElementById('level-help').textContent = levelHelp;
586 | });
587 |
588 | // Risk slider
589 | const riskSlider = document.getElementById('risk');
590 | const riskValue = document.getElementById('riskValue');
591 | riskSlider.addEventListener('input', (e) => {
592 | riskValue.textContent = e.target.value;
593 | let riskHelp = "";
594 | switch (riskSlider.value) {
595 | case "1": riskHelp = "1: Innocuous test for the majority of SQL injection points (default)."; break;
596 | case "2": riskHelp = "2: Adds also time-based SQL injections."; break;
597 | case "3": riskHelp = "3: Adds also OR-based SQL injection tests."; break;
598 | }
599 | document.getElementById('risk-help').textContent = riskHelp;
600 | });
601 |
602 | // Verbose slider
603 | const verboseSlider = document.getElementById('verbose');
604 | const verboseValue = document.getElementById('verboseValue');
605 | verboseSlider.addEventListener('input', (e) => {
606 | verboseValue.textContent = e.target.value;
607 | let verboseHelp = "";
608 | switch (verboseSlider.value) {
609 | case "0": verboseHelp = "0: Show only Python tracebacks, error and critical messages."; break;
610 | case "1": verboseHelp = "1: Show also information and warning messages (default)."; break;
611 | case "2": verboseHelp = "2: Show also debug messages."; break;
612 | case "3": verboseHelp = "3: Show also payloads injected."; break;
613 | case "4": verboseHelp = "4: Show also HTTP requests."; break;
614 | case "5": verboseHelp = "5: Show also HTTP responses' headers."; break;
615 | case "6": verboseHelp = "6: Show also HTTP responses' page content."; break;
616 | }
617 | document.getElementById('verbose-help').textContent = verboseHelp;
618 | });
619 | }
620 |
621 | generateCommand() {
622 | const config = this.getCurrentConfig();
623 | let command = 'sqlmap';
624 |
625 | // Order of parameters for better readability
626 | const paramOrder = Object.keys(this.paramMapping);
627 |
628 | // Add parameters in order
629 | paramOrder.forEach(param => {
630 | if (config.hasOwnProperty(param)) {
631 | if (config[param] === true) {
632 | command += ` ${param}`;
633 | } else {
634 | // Quote values that contain spaces or special characters
635 | const value = config[param].toString();
636 | if (value.includes(' ') || value.includes('&') || value.includes(';') || value.includes('=') || value.includes('\n')) {
637 | command += ` ${param} "${value}"`;
638 | }
639 | else if (value.includes('"')) {
640 | command += ` ${param} ` + value.replaceAll('"', '\\"');
641 | }
642 | else {
643 | command += ` ${param} ${value}`;
644 | }
645 | }
646 | }
647 | });
648 |
649 | return command;
650 | }
651 |
652 | handleHashtag() {
653 | // Check if we have hashtag with proper config and load it if so
654 | try {
655 | let hashtag = location.hash.substr(1);
656 | if (hashtag.length > 0 && hashtag !== "e30=") {
657 | let hashtagCmd = JSON.parse(atob(hashtag));
658 | this.applyConfiguration(hashtagCmd);
659 | this.showMessage("Configuration loaded from the URL", 'success');
660 | }
661 | } catch (ex) {
662 | this.showMessage("Cannot load a configuration", 'error');
663 | console.log(ex);
664 | }
665 | }
666 |
667 | updateCommand() {
668 | const command = this.generateCommand();
669 | const commandOutput = document.getElementById('commandOutput');
670 | commandOutput.textContent = command;
671 |
672 | // Add syntax highlighting
673 | this.applySyntaxHighlighting(commandOutput);
674 | }
675 |
676 | applySyntaxHighlighting(element) {
677 |
678 | let html = element.textContent;
679 |
680 | // Highlight options (starting with -)
681 | html = html.replace(/(--?[\w-]+)/g, "$1");
682 |
683 | // Highlight quoted values
684 | html = html.replace(/"([^"]+)"/g, "\"$1\"");
685 |
686 | // Highlight sqlmap command
687 | html = html.replace(/^sqlmap/, "sqlmap");
688 |
689 | element.innerHTML = html;
690 |
691 | }
692 |
693 | async copyCommand() {
694 | const command = this.generateCommand();
695 | const copyBtn = document.getElementById('copyBtn');
696 | const successMessage = "SQLMap command has been copied to your clipboard";
697 |
698 | try
699 | {
700 | copyBtn.classList.add('copying');
701 | await navigator.clipboard.writeText(command);
702 | this.showMessage(successMessage, "success");
703 | }
704 | catch (err)
705 | {
706 | // Fallback for older browsers
707 | const textArea = document.createElement('textarea');
708 | textArea.value = command;
709 | document.body.appendChild(textArea);
710 | textArea.select();
711 | document.execCommand('copy');
712 | document.body.removeChild(textArea);
713 | this.showMessage(successMessage, "success");
714 | }
715 | finally
716 | {
717 | setTimeout(() => {
718 | copyBtn.classList.remove('copying');
719 | }, 1000);
720 | }
721 | }
722 |
723 | async copyUrl() {
724 | const serializedCommand = btoa(JSON.stringify(this.getCurrentConfig()));
725 | const copyUrlBtn = document.getElementById('copyUrlBtn');
726 | const successMessage = "URL with configuration has been copied to your clipboard";
727 | if (serializedCommand == "e30=") {
728 | location.replace("#");
729 | }
730 | else {
731 | location.replace("#" + serializedCommand);
732 | }
733 |
734 | try
735 | {
736 | copyUrlBtn.classList.add('copying');
737 | await navigator.clipboard.writeText(location.href);
738 | this.showMessage(successMessage, "success");
739 | }
740 | catch (err) {
741 | // Fallback for older browsers
742 | const textArea = document.createElement('textarea');
743 | textArea.value = location.href;
744 | document.body.appendChild(textArea);
745 | textArea.select();
746 | document.execCommand('copy');
747 | document.body.removeChild(textArea);
748 | this.showMessage(successMessage, "success");
749 | }
750 | finally {
751 | setTimeout(() => {
752 | copyUrlBtn.classList.remove('copying');
753 | }, 1000);
754 | }
755 | }
756 |
757 | saveConfiguration() {
758 | const config = this.getCurrentConfig();
759 | const configStr = JSON.stringify(config, null, 2);
760 |
761 | // Create downloadable file
762 | const blob = new Blob([configStr], { type: 'application/json' });
763 | const url = URL.createObjectURL(blob);
764 | const a = document.createElement('a');
765 | a.href = url;
766 | a.download = 'sqlmap-config.json';
767 | document.body.appendChild(a);
768 | a.click();
769 | document.body.removeChild(a);
770 | URL.revokeObjectURL(url);
771 |
772 | this.showMessage('Configuration saved', 'success');
773 | }
774 |
775 | loadConfiguration() {
776 | const input = document.createElement('input');
777 | input.type = 'file';
778 | input.accept = '.json';
779 |
780 | input.onchange = (e) => {
781 | const file = e.target.files[0];
782 | if (!file) return;
783 |
784 | const reader = new FileReader();
785 | reader.onload = (e) => {
786 | try {
787 | const config = JSON.parse(e.target.result);
788 | this.applyConfiguration(config);
789 | this.showMessage('Configuration loaded', 'success');
790 | } catch (err) {
791 | this.showMessage('Error during loading the config', 'error');
792 | }
793 | };
794 | reader.readAsText(file);
795 | };
796 |
797 | input.click();
798 | }
799 |
800 | applyConfiguration(config) {
801 | // Reset form first
802 | this.resetConfiguration(true);
803 |
804 | // Apply configuration
805 | Object.entries(config).forEach(([param, value]) => {
806 |
807 | const elementId = this.paramMapping[param];
808 | if (elementId) {
809 | const element = document.getElementById(elementId);
810 | if (element) {
811 | if (element.type === 'checkbox') {
812 | element.checked = value === true;
813 | }
814 | else if (param === '--technique') {
815 | // Handle technique checkboxes
816 | ['B', 'E', 'U', 'S', 'T'].forEach(tech => {
817 | const techElement = document.getElementById('tech' + tech);
818 | if (techElement) {
819 | techElement.checked = value.includes(tech);
820 | }
821 | });
822 | }
823 | else if (param === '--tamper') {
824 | // Handle tamperscripts checkboxes
825 | this.tamperScriptList.forEach(s => {
826 | const sElement = document.getElementById('tamperscript-' + s);
827 | if (sElement) {
828 | sElement.checked = value.includes(s);
829 | }
830 | });
831 | }
832 | else {
833 | element.value = value;
834 |
835 | // Update slider displays
836 | if (element.type === 'range') {
837 | const displayElement = document.getElementById(elementId + 'Value');
838 | if (displayElement) {
839 | displayElement.textContent = value;
840 | }
841 | }
842 | }
843 | }
844 | }
845 | });
846 |
847 | this.updateCommand();
848 | }
849 |
850 | resetConfiguration(skipResetAlert = false) {
851 | // Reset all form fields
852 | document.querySelectorAll('input, select, textarea').forEach(element => {
853 | if (element.type === 'checkbox') {
854 | element.checked = false;
855 | } else if (element.type === 'range') {
856 | element.value = element.min || 1;
857 | // Update slider displays
858 | const displayElement = document.getElementById(element.id + 'Value');
859 | if (displayElement) {
860 | displayElement.textContent = element.value;
861 | }
862 | } else {
863 | element.value = '';
864 | }
865 | });
866 |
867 | // Reset verbose to default
868 | document.getElementById('verbose').value = 1;
869 | document.getElementById('verboseValue').textContent = "1";
870 | document.getElementById('verbose-help').textContent = "1: Show also information and warning messages (default).";
871 | // Hide custom user agent field
872 | document.getElementById('customHttpMethodGroup').style.display = 'none';
873 | document.getElementById('customUserAgentGroup').style.display = 'none';
874 | document.getElementById('customCsrfMethodGroup').style.display = 'none';
875 |
876 | this.updateCommand();
877 | if (!skipResetAlert) {
878 | this.showMessage('The configuration has been cleared', 'success');
879 | }
880 | }
881 |
882 | showMessage(message, type = 'info') {
883 | // Create message element
884 | const messageEl = document.createElement('div');
885 | messageEl.className = `status status--${type}`;
886 | messageEl.textContent = message;
887 |
888 | document.getElementById("status-container").appendChild(messageEl);
889 |
890 | // Remove after 6 seconds
891 | setTimeout(() => {
892 | if (messageEl.parentNode) {
893 | messageEl.parentNode.removeChild(messageEl);
894 | }
895 | }, 6000);
896 | }
897 | }
898 |
899 | // Initialize the application when DOM is loaded
900 | let sqlgen = null;
901 | document.addEventListener('DOMContentLoaded', () => {
902 | sqlgen = new SQLMapGenerator();
903 | document.querySelectorAll('input[type=text], textarea').forEach(field => field.spellcheck = false);
904 |
905 | // document.querySelectorAll('em.tooltip').forEach(el => {
906 | // const text = el.textContent;
907 | // el.textContent = '';
908 | // el.dataset.tooltip = text;
909 | // });
910 | });
911 |
--------------------------------------------------------------------------------
11 |