diff --git a/SuperSQLInjection/Main.Designer.cs b/SuperSQLInjection/Main.Designer.cs
index 6a65f75..ba3c32b 100644
--- a/SuperSQLInjection/Main.Designer.cs
+++ b/SuperSQLInjection/Main.Designer.cs
@@ -55,7 +55,6 @@
this.tsmi_openConfig = new System.Windows.Forms.ToolStripMenuItem();
this.tsmi_saveConfig = new System.Windows.Forms.ToolStripMenuItem();
this.tsmi_tools = new System.Windows.Forms.ToolStripMenuItem();
- this.脱裤助手ToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.toolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.tsmi_seting = new System.Windows.Forms.ToolStripMenuItem();
this.tsmi_help = new System.Windows.Forms.ToolStripMenuItem();
@@ -186,6 +185,7 @@
this.label12 = new System.Windows.Forms.Label();
this.btn_inject_randStr = new System.Windows.Forms.Button();
this.btn_inject_setTokenLocation = new System.Windows.Forms.Button();
+ this.chk_sencondInject = new System.Windows.Forms.CheckBox();
this.chk_inject_foward_302 = new System.Windows.Forms.CheckBox();
this.btn_inject_setInject = new System.Windows.Forms.Button();
this.mytab = new System.Windows.Forms.TabControl();
@@ -207,10 +207,12 @@
this.cob_keyRepalce = new System.Windows.Forms.ComboBox();
this.label10 = new System.Windows.Forms.Label();
this.bypass_cbox_randIPToHeader = new System.Windows.Forms.ComboBox();
+ this.label31 = new System.Windows.Forms.Label();
this.label18 = new System.Windows.Forms.Label();
this.label17 = new System.Windows.Forms.Label();
this.bypass_cbox_sendHTTPSleepTime = new System.Windows.Forms.ComboBox();
this.bypass_chk_usebetween = new System.Windows.Forms.CheckBox();
+ this.bypass_chk_use_unicode = new System.Windows.Forms.CheckBox();
this.bypass_hex = new System.Windows.Forms.CheckBox();
this.bypass_chk_inculdeStr = new System.Windows.Forms.CheckBox();
this.label16 = new System.Windows.Forms.Label();
@@ -293,7 +295,7 @@
this.lbl_packsCount = new System.Windows.Forms.ToolStripStatusLabel();
this.timer_status = new System.Windows.Forms.Timer(this.components);
this.timer_scanInjection = new System.Windows.Forms.Timer(this.components);
- this.chk_sencondInject = new System.Windows.Forms.CheckBox();
+ this.label32 = new System.Windows.Forms.Label();
this.gb_basic.SuspendLayout();
this.menuStrip_main.SuspendLayout();
this.gb_logo.SuspendLayout();
@@ -659,18 +661,10 @@
//
// tsmi_tools
//
- this.tsmi_tools.DropDownItems.AddRange(new System.Windows.Forms.ToolStripItem[] {
- this.脱裤助手ToolStripMenuItem});
this.tsmi_tools.Name = "tsmi_tools";
this.tsmi_tools.Size = new System.Drawing.Size(48, 21);
this.tsmi_tools.Text = "工 具";
//
- // 脱裤助手ToolStripMenuItem
- //
- this.脱裤助手ToolStripMenuItem.Name = "脱裤助手ToolStripMenuItem";
- this.脱裤助手ToolStripMenuItem.Size = new System.Drawing.Size(124, 22);
- this.脱裤助手ToolStripMenuItem.Text = "脱裤助手";
- //
// toolStripMenuItem1
//
this.toolStripMenuItem1.DropDownItems.AddRange(new System.Windows.Forms.ToolStripItem[] {
@@ -919,7 +913,7 @@
this.tabPage4.Location = new System.Drawing.Point(4, 22);
this.tabPage4.Name = "tabPage4";
this.tabPage4.Padding = new System.Windows.Forms.Padding(3);
- this.tabPage4.Size = new System.Drawing.Size(792, 169);
+ this.tabPage4.Size = new System.Drawing.Size(818, 169);
this.tabPage4.TabIndex = 1;
this.tabPage4.Text = "响 应";
this.tabPage4.UseVisualStyleBackColor = true;
@@ -931,7 +925,7 @@
this.log_txt_response.Multiline = true;
this.log_txt_response.Name = "log_txt_response";
this.log_txt_response.ScrollBars = System.Windows.Forms.ScrollBars.Both;
- this.log_txt_response.Size = new System.Drawing.Size(786, 163);
+ this.log_txt_response.Size = new System.Drawing.Size(812, 163);
this.log_txt_response.TabIndex = 1;
this.log_txt_response.KeyDown += new System.Windows.Forms.KeyEventHandler(this.log_txt_response_KeyDown);
//
@@ -940,7 +934,7 @@
this.tabPage1.Controls.Add(this.webBro_log);
this.tabPage1.Location = new System.Drawing.Point(4, 22);
this.tabPage1.Name = "tabPage1";
- this.tabPage1.Size = new System.Drawing.Size(792, 169);
+ this.tabPage1.Size = new System.Drawing.Size(818, 169);
this.tabPage1.TabIndex = 2;
this.tabPage1.Text = "在浏览器中显示";
this.tabPage1.UseVisualStyleBackColor = true;
@@ -951,7 +945,7 @@
this.webBro_log.Location = new System.Drawing.Point(0, 0);
this.webBro_log.MinimumSize = new System.Drawing.Size(20, 20);
this.webBro_log.Name = "webBro_log";
- this.webBro_log.Size = new System.Drawing.Size(792, 169);
+ this.webBro_log.Size = new System.Drawing.Size(818, 169);
this.webBro_log.TabIndex = 1;
//
// tab_file
@@ -1158,7 +1152,7 @@
this.tab_dbs.Location = new System.Drawing.Point(4, 23);
this.tab_dbs.Name = "tab_dbs";
this.tab_dbs.Padding = new System.Windows.Forms.Padding(3);
- this.tab_dbs.Size = new System.Drawing.Size(792, 407);
+ this.tab_dbs.Size = new System.Drawing.Size(818, 407);
this.tab_dbs.TabIndex = 1;
this.tab_dbs.Text = "数据库信息";
this.tab_dbs.UseVisualStyleBackColor = true;
@@ -1178,8 +1172,8 @@
//
this.spc_dbs.Panel2.Controls.Add(this.toolStrip1);
this.spc_dbs.Panel2.Controls.Add(this.groupBox4);
- this.spc_dbs.Size = new System.Drawing.Size(786, 401);
- this.spc_dbs.SplitterDistance = 226;
+ this.spc_dbs.Size = new System.Drawing.Size(812, 401);
+ this.spc_dbs.SplitterDistance = 233;
this.spc_dbs.TabIndex = 5;
//
// data_dbs_ts
@@ -1193,7 +1187,7 @@
this.data_dbs_ts.Name = "data_dbs_ts";
this.data_dbs_ts.Padding = new System.Windows.Forms.Padding(5, 0, 0, 0);
this.data_dbs_ts.RenderMode = System.Windows.Forms.ToolStripRenderMode.System;
- this.data_dbs_ts.Size = new System.Drawing.Size(226, 25);
+ this.data_dbs_ts.Size = new System.Drawing.Size(233, 25);
this.data_dbs_ts.TabIndex = 4;
this.data_dbs_ts.Text = "toolStrip1";
//
@@ -1235,7 +1229,7 @@
this.groupBox2.Controls.Add(this.data_tvw_dbs);
this.groupBox2.Location = new System.Drawing.Point(5, 5);
this.groupBox2.Name = "groupBox2";
- this.groupBox2.Size = new System.Drawing.Size(221, 368);
+ this.groupBox2.Size = new System.Drawing.Size(228, 368);
this.groupBox2.TabIndex = 0;
this.groupBox2.TabStop = false;
this.groupBox2.Text = "数据库信息";
@@ -1252,7 +1246,7 @@
this.data_tvw_dbs.Location = new System.Drawing.Point(3, 17);
this.data_tvw_dbs.Name = "data_tvw_dbs";
this.data_tvw_dbs.SelectedImageIndex = 6;
- this.data_tvw_dbs.Size = new System.Drawing.Size(215, 348);
+ this.data_tvw_dbs.Size = new System.Drawing.Size(222, 348);
this.data_tvw_dbs.TabIndex = 0;
this.data_tvw_dbs.AfterCheck += new System.Windows.Forms.TreeViewEventHandler(this.data_tvw_dbs_AfterCheck);
this.data_tvw_dbs.AfterSelect += new System.Windows.Forms.TreeViewEventHandler(this.data_tvw_dbs_AfterSelect);
@@ -1354,7 +1348,7 @@
this.toolStrip1.Location = new System.Drawing.Point(0, 376);
this.toolStrip1.Name = "toolStrip1";
this.toolStrip1.RenderMode = System.Windows.Forms.ToolStripRenderMode.System;
- this.toolStrip1.Size = new System.Drawing.Size(556, 25);
+ this.toolStrip1.Size = new System.Drawing.Size(575, 25);
this.toolStrip1.TabIndex = 5;
this.toolStrip1.Text = "toolStrip1";
this.toolStrip1.TextChanged += new System.EventHandler(this.toolStrip1_TextChanged);
@@ -1432,7 +1426,7 @@
this.groupBox4.Controls.Add(this.data_dbs_lvw_data);
this.groupBox4.Location = new System.Drawing.Point(3, 5);
this.groupBox4.Name = "groupBox4";
- this.groupBox4.Size = new System.Drawing.Size(550, 368);
+ this.groupBox4.Size = new System.Drawing.Size(569, 368);
this.groupBox4.TabIndex = 1;
this.groupBox4.TabStop = false;
this.groupBox4.Text = "获取数据";
@@ -1446,7 +1440,7 @@
this.data_dbs_lvw_data.GridLines = true;
this.data_dbs_lvw_data.Location = new System.Drawing.Point(3, 17);
this.data_dbs_lvw_data.Name = "data_dbs_lvw_data";
- this.data_dbs_lvw_data.Size = new System.Drawing.Size(544, 348);
+ this.data_dbs_lvw_data.Size = new System.Drawing.Size(563, 348);
this.data_dbs_lvw_data.TabIndex = 1;
this.data_dbs_lvw_data.UseCompatibleStateImageBehavior = false;
this.data_dbs_lvw_data.View = System.Windows.Forms.View.Details;
@@ -1606,7 +1600,7 @@
this.tab_tokenset.Location = new System.Drawing.Point(4, 22);
this.tab_tokenset.Name = "tab_tokenset";
this.tab_tokenset.Padding = new System.Windows.Forms.Padding(3);
- this.tab_tokenset.Size = new System.Drawing.Size(556, 389);
+ this.tab_tokenset.Size = new System.Drawing.Size(557, 389);
this.tab_tokenset.TabIndex = 1;
this.tab_tokenset.Text = "Token/随机值/验证码处理";
this.tab_tokenset.UseVisualStyleBackColor = true;
@@ -1617,7 +1611,7 @@
this.groupBox17.Dock = System.Windows.Forms.DockStyle.Fill;
this.groupBox17.Location = new System.Drawing.Point(3, 3);
this.groupBox17.Name = "groupBox17";
- this.groupBox17.Size = new System.Drawing.Size(550, 250);
+ this.groupBox17.Size = new System.Drawing.Size(551, 250);
this.groupBox17.TabIndex = 25;
this.groupBox17.TabStop = false;
this.groupBox17.Text = "获取Token的HTTP请求包";
@@ -1631,7 +1625,7 @@
this.token_txt_http_request.Multiline = true;
this.token_txt_http_request.Name = "token_txt_http_request";
this.token_txt_http_request.ScrollBars = System.Windows.Forms.ScrollBars.Vertical;
- this.token_txt_http_request.Size = new System.Drawing.Size(544, 230);
+ this.token_txt_http_request.Size = new System.Drawing.Size(545, 230);
this.token_txt_http_request.TabIndex = 8;
this.token_txt_http_request.TextChanged += new System.EventHandler(this.token_txt_http_request_TextChanged);
this.token_txt_http_request.KeyDown += new System.Windows.Forms.KeyEventHandler(this.token_txt_http_request_KeyDown);
@@ -1646,7 +1640,7 @@
this.groupBox19.Dock = System.Windows.Forms.DockStyle.Bottom;
this.groupBox19.Location = new System.Drawing.Point(3, 253);
this.groupBox19.Name = "groupBox19";
- this.groupBox19.Size = new System.Drawing.Size(550, 133);
+ this.groupBox19.Size = new System.Drawing.Size(551, 133);
this.groupBox19.TabIndex = 25;
this.groupBox19.TabStop = false;
this.groupBox19.Text = "随机Token抓取规则";
@@ -1704,7 +1698,7 @@
this.tab_sencond_inject.Controls.Add(this.groupBox20);
this.tab_sencond_inject.Location = new System.Drawing.Point(4, 22);
this.tab_sencond_inject.Name = "tab_sencond_inject";
- this.tab_sencond_inject.Size = new System.Drawing.Size(556, 389);
+ this.tab_sencond_inject.Size = new System.Drawing.Size(557, 389);
this.tab_sencond_inject.TabIndex = 2;
this.tab_sencond_inject.Text = "二次注入";
this.tab_sencond_inject.UseVisualStyleBackColor = true;
@@ -1718,7 +1712,7 @@
this.groupBox20.Controls.Add(this.txt_sencond_request);
this.groupBox20.Location = new System.Drawing.Point(0, 3);
this.groupBox20.Name = "groupBox20";
- this.groupBox20.Size = new System.Drawing.Size(556, 386);
+ this.groupBox20.Size = new System.Drawing.Size(557, 386);
this.groupBox20.TabIndex = 26;
this.groupBox20.TabStop = false;
this.groupBox20.Text = "二次注入请求包";
@@ -1751,7 +1745,7 @@
this.txt_sencond_request.Multiline = true;
this.txt_sencond_request.Name = "txt_sencond_request";
this.txt_sencond_request.ScrollBars = System.Windows.Forms.ScrollBars.Vertical;
- this.txt_sencond_request.Size = new System.Drawing.Size(550, 283);
+ this.txt_sencond_request.Size = new System.Drawing.Size(551, 283);
this.txt_sencond_request.TabIndex = 8;
this.txt_sencond_request.TextChanged += new System.EventHandler(this.txt_sencond_request_TextChanged);
this.txt_sencond_request.KeyDown += new System.Windows.Forms.KeyEventHandler(this.txt_sencond_request_KeyDown);
@@ -2008,6 +2002,17 @@
this.btn_inject_setTokenLocation.UseVisualStyleBackColor = true;
this.btn_inject_setTokenLocation.Click += new System.EventHandler(this.btn_inject_setTokenLocation_Click);
//
+ // chk_sencondInject
+ //
+ this.chk_sencondInject.AutoSize = true;
+ this.chk_sencondInject.Location = new System.Drawing.Point(166, 22);
+ this.chk_sencondInject.Name = "chk_sencondInject";
+ this.chk_sencondInject.Size = new System.Drawing.Size(72, 16);
+ this.chk_sencondInject.TabIndex = 16;
+ this.chk_sencondInject.Text = "二次注入";
+ this.chk_sencondInject.UseVisualStyleBackColor = true;
+ this.chk_sencondInject.CheckedChanged += new System.EventHandler(this.chk_sencondInject_CheckedChanged);
+ //
// chk_inject_foward_302
//
this.chk_inject_foward_302.AutoSize = true;
@@ -2148,10 +2153,13 @@
this.groupBox9.Controls.Add(this.cob_keyRepalce);
this.groupBox9.Controls.Add(this.label10);
this.groupBox9.Controls.Add(this.bypass_cbox_randIPToHeader);
+ this.groupBox9.Controls.Add(this.label32);
+ this.groupBox9.Controls.Add(this.label31);
this.groupBox9.Controls.Add(this.label18);
this.groupBox9.Controls.Add(this.label17);
this.groupBox9.Controls.Add(this.bypass_cbox_sendHTTPSleepTime);
this.groupBox9.Controls.Add(this.bypass_chk_usebetween);
+ this.groupBox9.Controls.Add(this.bypass_chk_use_unicode);
this.groupBox9.Controls.Add(this.bypass_hex);
this.groupBox9.Controls.Add(this.bypass_chk_inculdeStr);
this.groupBox9.Controls.Add(this.label16);
@@ -2172,7 +2180,7 @@
//
this.groupBox18.Controls.Add(this.bypass_btn_saveTemplate);
this.groupBox18.Controls.Add(this.bypass_cbox_loadTemplate);
- this.groupBox18.Location = new System.Drawing.Point(422, 128);
+ this.groupBox18.Location = new System.Drawing.Point(426, 177);
this.groupBox18.Name = "groupBox18";
this.groupBox18.Size = new System.Drawing.Size(371, 55);
this.groupBox18.TabIndex = 25;
@@ -2222,9 +2230,9 @@
"Base64编码一次",
"Base64编码二次",
"Base64编码三次"});
- this.cbox_base64Count.Location = new System.Drawing.Point(671, 23);
+ this.cbox_base64Count.Location = new System.Drawing.Point(593, 130);
this.cbox_base64Count.Name = "cbox_base64Count";
- this.cbox_base64Count.Size = new System.Drawing.Size(122, 20);
+ this.cbox_base64Count.Size = new System.Drawing.Size(216, 20);
this.cbox_base64Count.TabIndex = 22;
this.cbox_base64Count.SelectedIndexChanged += new System.EventHandler(this.cbox_base64Count_SelectedIndexChanged);
this.cbox_base64Count.TextChanged += new System.EventHandler(this.cbox_base64Count_TextChanged);
@@ -2234,9 +2242,9 @@
this.chk_reaplaceBeforURLEncode.AutoSize = true;
this.chk_reaplaceBeforURLEncode.Location = new System.Drawing.Point(20, 26);
this.chk_reaplaceBeforURLEncode.Name = "chk_reaplaceBeforURLEncode";
- this.chk_reaplaceBeforURLEncode.Size = new System.Drawing.Size(294, 16);
+ this.chk_reaplaceBeforURLEncode.Size = new System.Drawing.Size(216, 16);
this.chk_reaplaceBeforURLEncode.TabIndex = 18;
- this.chk_reaplaceBeforURLEncode.Text = "URL编码前处理绕过字符(不选则在编码后处理字符)";
+ this.chk_reaplaceBeforURLEncode.Text = "在URL或Unicode编码前处理绕过字符";
this.chk_reaplaceBeforURLEncode.UseVisualStyleBackColor = true;
this.chk_reaplaceBeforURLEncode.CheckedChanged += new System.EventHandler(this.chk_reaplaceBeforURLEncode_CheckedChanged);
//
@@ -2251,7 +2259,7 @@
"关键字小写"});
this.cob_keyRepalce.Location = new System.Drawing.Point(671, 58);
this.cob_keyRepalce.Name = "cob_keyRepalce";
- this.cob_keyRepalce.Size = new System.Drawing.Size(122, 20);
+ this.cob_keyRepalce.Size = new System.Drawing.Size(138, 20);
this.cob_keyRepalce.TabIndex = 17;
this.cob_keyRepalce.SelectedIndexChanged += new System.EventHandler(this.cob_keyRepalce_SelectedIndexChanged);
//
@@ -2274,10 +2282,19 @@
"Client_Ip"});
this.bypass_cbox_randIPToHeader.Location = new System.Drawing.Point(671, 93);
this.bypass_cbox_randIPToHeader.Name = "bypass_cbox_randIPToHeader";
- this.bypass_cbox_randIPToHeader.Size = new System.Drawing.Size(122, 20);
+ this.bypass_cbox_randIPToHeader.Size = new System.Drawing.Size(138, 20);
this.bypass_cbox_randIPToHeader.TabIndex = 14;
this.bypass_cbox_randIPToHeader.TextChanged += new System.EventHandler(this.bypass_cbox_randIPToHeader_TextChanged);
//
+ // label31
+ //
+ this.label31.AutoSize = true;
+ this.label31.Location = new System.Drawing.Point(427, 133);
+ this.label31.Name = "label31";
+ this.label31.Size = new System.Drawing.Size(125, 12);
+ this.label31.TabIndex = 13;
+ this.label31.Text = "进行Base64编码处理:";
+ //
// label18
//
this.label18.AutoSize = true;
@@ -2337,6 +2354,17 @@
this.bypass_chk_usebetween.UseVisualStyleBackColor = true;
this.bypass_chk_usebetween.CheckedChanged += new System.EventHandler(this.bypass_chk_usebetween_CheckedChanged);
//
+ // bypass_chk_use_unicode
+ //
+ this.bypass_chk_use_unicode.AutoSize = true;
+ this.bypass_chk_use_unicode.Location = new System.Drawing.Point(671, 27);
+ this.bypass_chk_use_unicode.Name = "bypass_chk_use_unicode";
+ this.bypass_chk_use_unicode.Size = new System.Drawing.Size(138, 16);
+ this.bypass_chk_use_unicode.TabIndex = 3;
+ this.bypass_chk_use_unicode.Text = "IIS Unicode编码绕过";
+ this.bypass_chk_use_unicode.UseVisualStyleBackColor = true;
+ this.bypass_chk_use_unicode.CheckedChanged += new System.EventHandler(this.bypass_chk_use_unicode_CheckedChanged);
+ //
// bypass_hex
//
this.bypass_hex.AutoSize = true;
@@ -3083,16 +3111,14 @@
this.timer_scanInjection.Interval = 1000;
this.timer_scanInjection.Tick += new System.EventHandler(this.timer_scanInjection_Tick);
//
- // chk_sencondInject
+ // label32
//
- this.chk_sencondInject.AutoSize = true;
- this.chk_sencondInject.Location = new System.Drawing.Point(166, 22);
- this.chk_sencondInject.Name = "chk_sencondInject";
- this.chk_sencondInject.Size = new System.Drawing.Size(72, 16);
- this.chk_sencondInject.TabIndex = 16;
- this.chk_sencondInject.Text = "二次注入";
- this.chk_sencondInject.UseVisualStyleBackColor = true;
- this.chk_sencondInject.CheckedChanged += new System.EventHandler(this.chk_sencondInject_CheckedChanged);
+ this.label32.AutoSize = true;
+ this.label32.Location = new System.Drawing.Point(259, 27);
+ this.label32.Name = "label32";
+ this.label32.Size = new System.Drawing.Size(59, 12);
+ this.label32.TabIndex = 13;
+ this.label32.Text = "URL编码:";
//
// Main
//
@@ -3219,7 +3245,6 @@
private System.Windows.Forms.ToolStripMenuItem tsmi_openConfig;
private System.Windows.Forms.ToolStripMenuItem tsmi_saveConfig;
private System.Windows.Forms.ToolStripMenuItem tsmi_tools;
- private System.Windows.Forms.ToolStripMenuItem 脱裤助手ToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem tsmi_help;
private System.Windows.Forms.ToolStripMenuItem tsmi_readme;
private System.Windows.Forms.ToolStripMenuItem tsmi_about;
@@ -3475,6 +3500,9 @@
private System.Windows.Forms.Label label28;
private System.Windows.Forms.GroupBox groupBox21;
private System.Windows.Forms.CheckBox chk_sencondInject;
+ private System.Windows.Forms.CheckBox bypass_chk_use_unicode;
+ private System.Windows.Forms.Label label31;
+ private System.Windows.Forms.Label label32;
}
}
diff --git a/SuperSQLInjection/Main.cs b/SuperSQLInjection/Main.cs
index eb749e0..218f620 100644
--- a/SuperSQLInjection/Main.cs
+++ b/SuperSQLInjection/Main.cs
@@ -184,7 +184,7 @@ namespace SuperSQLInjection
return "";
}
- public static int version = 20180917;
+ public static int version = 20180921;
public static string versionURL = "http://www.shack2.org/soft/getNewVersion?ENNAME=SSuperSQLInjection&NO=" + getSid() + "&VERSION=" + version;
//检查更新
public void checkUpdate()
@@ -5490,6 +5490,7 @@ namespace SuperSQLInjection
//cmd
this.cmd_chk_showCmdResult.Checked = config.showCmdResult;
+
//bypass
this.bypass_chk_inculdeStr.Checked = config.inculdeStr;
this.cob_keyRepalce.SelectedIndex = config.keyReplace;
@@ -5497,6 +5498,7 @@ namespace SuperSQLInjection
this.cbox_bypass_urlencode_count.SelectedIndex = config.urlencodeCount - 1;
this.bypass_chk_usebetween.Checked = config.useBetweenByPass;
this.bypass_hex.Checked = config.usehex;
+ this.bypass_chk_use_unicode.Checked = config.useUnicode;
//替换字符
this.chk_reaplaceBeforURLEncode.Checked = config.reaplaceBeforURLEncode;
@@ -7480,9 +7482,12 @@ namespace SuperSQLInjection
//bypass
this.bypass_chk_inculdeStr.Checked = template.inculdeStr;
this.bypass_hex.Checked = config.usehex;
+ this.cbox_bypass_urlencode_count.SelectedIndex = config.urlencodeCount - 1;
this.cob_keyRepalce.SelectedIndex = template.keyReplace;
this.cbox_base64Count.SelectedIndex = config.base64Count;
this.bypass_chk_usebetween.Checked = config.useBetweenByPass;
+ this.bypass_chk_use_unicode.Checked = config.useUnicode;
+
//替换字符
this.chk_reaplaceBeforURLEncode.Checked = template.reaplaceBeforURLEncode;
String[] replaceStrs = Regex.Split(template.replaceStrs, "\\n");
@@ -7505,6 +7510,11 @@ namespace SuperSQLInjection
}
}
}
+
+
+ this.bypass_cbox_sendHTTPSleepTime.Text = config.sendHTTPSleepTime + "";
+ this.bypass_cbox_randIPToHeader.Text = config.randIPToHeader;
+
MessageBox.Show("加载模板完成!");
}
@@ -7635,5 +7645,10 @@ namespace SuperSQLInjection
{
config.sencondInject = this.chk_sencondInject.Checked;
}
+
+ private void bypass_chk_use_unicode_CheckedChanged(object sender, EventArgs e)
+ {
+ config.useUnicode=this.bypass_chk_use_unicode.Checked;
+ }
}
}
\ No newline at end of file
diff --git a/SuperSQLInjection/Main.resx b/SuperSQLInjection/Main.resx
index 9a83ceb..80b6e34 100644
--- a/SuperSQLInjection/Main.resx
+++ b/SuperSQLInjection/Main.resx
@@ -126,6 +126,163 @@
279, 9
+
+ 1218, 14
+
+
+
+
+ iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
+ YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
+ YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
+ 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
+ bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
+ VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
+ c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
+ Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
+ mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
+ kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
+ TgDQASA1MVpwzwAAAABJRU5ErkJggg==
+
+
+
+
+ iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
+ YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
+ YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
+ 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
+ bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
+ VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
+ c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
+ Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
+ mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
+ kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
+ TgDQASA1MVpwzwAAAABJRU5ErkJggg==
+
+
+
+
+ iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
+ YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
+ YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
+ 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
+ bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
+ VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
+ c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
+ Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
+ mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
+ kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
+ TgDQASA1MVpwzwAAAABJRU5ErkJggg==
+
+
+
+ 404, 11
+
+
+ 267, 52
+
+
+
+ AAEAAAD/////AQAAAAAAAAAMAgAAAFdTeXN0ZW0uV2luZG93cy5Gb3JtcywgVmVyc2lvbj00LjAuMC4w
+ LCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODkFAQAAACZTeXN0
+ ZW0uV2luZG93cy5Gb3Jtcy5JbWFnZUxpc3RTdHJlYW1lcgEAAAAERGF0YQcCAgAAAAkDAAAADwMAAACq
+ DQAAAk1TRnQBSQFMAgEBBwEAAXgBBgF4AQYBEAEAARABAAT/AQkBAAj/AUIBTQE2AQQGAAE2AQQCAAEo
+ AwABQAMAASADAAEBAQABCAYAAQgYAAGAAgABgAMAAoABAAGAAwABgAEAAYABAAKAAgADwAEAAcAB3AHA
+ AQAB8AHKAaYBAAEzBQABMwEAATMBAAEzAQACMwIAAxYBAAMcAQADIgEAAykBAANVAQADTQEAA0IBAAM5
+ AQABgAF8Af8BAAJQAf8BAAGTAQAB1gEAAf8B7AHMAQABxgHWAe8BAAHWAucBAAGQAakBrQIAAf8BMwMA
+ AWYDAAGZAwABzAIAATMDAAIzAgABMwFmAgABMwGZAgABMwHMAgABMwH/AgABZgMAAWYBMwIAAmYCAAFm
+ AZkCAAFmAcwCAAFmAf8CAAGZAwABmQEzAgABmQFmAgACmQIAAZkBzAIAAZkB/wIAAcwDAAHMATMCAAHM
+ AWYCAAHMAZkCAALMAgABzAH/AgAB/wFmAgAB/wGZAgAB/wHMAQABMwH/AgAB/wEAATMBAAEzAQABZgEA
+ ATMBAAGZAQABMwEAAcwBAAEzAQAB/wEAAf8BMwIAAzMBAAIzAWYBAAIzAZkBAAIzAcwBAAIzAf8BAAEz
+ AWYCAAEzAWYBMwEAATMCZgEAATMBZgGZAQABMwFmAcwBAAEzAWYB/wEAATMBmQIAATMBmQEzAQABMwGZ
+ AWYBAAEzApkBAAEzAZkBzAEAATMBmQH/AQABMwHMAgABMwHMATMBAAEzAcwBZgEAATMBzAGZAQABMwLM
+ AQABMwHMAf8BAAEzAf8BMwEAATMB/wFmAQABMwH/AZkBAAEzAf8BzAEAATMC/wEAAWYDAAFmAQABMwEA
+ AWYBAAFmAQABZgEAAZkBAAFmAQABzAEAAWYBAAH/AQABZgEzAgABZgIzAQABZgEzAWYBAAFmATMBmQEA
+ AWYBMwHMAQABZgEzAf8BAAJmAgACZgEzAQADZgEAAmYBmQEAAmYBzAEAAWYBmQIAAWYBmQEzAQABZgGZ
+ AWYBAAFmApkBAAFmAZkBzAEAAWYBmQH/AQABZgHMAgABZgHMATMBAAFmAcwBmQEAAWYCzAEAAWYBzAH/
+ AQABZgH/AgABZgH/ATMBAAFmAf8BmQEAAWYB/wHMAQABzAEAAf8BAAH/AQABzAEAApkCAAGZATMBmQEA
+ AZkBAAGZAQABmQEAAcwBAAGZAwABmQIzAQABmQEAAWYBAAGZATMBzAEAAZkBAAH/AQABmQFmAgABmQFm
+ ATMBAAGZATMBZgEAAZkBZgGZAQABmQFmAcwBAAGZATMB/wEAApkBMwEAApkBZgEAA5kBAAKZAcwBAAKZ
+ Af8BAAGZAcwCAAGZAcwBMwEAAWYBzAFmAQABmQHMAZkBAAGZAswBAAGZAcwB/wEAAZkB/wIAAZkB/wEz
+ AQABmQHMAWYBAAGZAf8BmQEAAZkB/wHMAQABmQL/AQABzAMAAZkBAAEzAQABzAEAAWYBAAHMAQABmQEA
+ AcwBAAHMAQABmQEzAgABzAIzAQABzAEzAWYBAAHMATMBmQEAAcwBMwHMAQABzAEzAf8BAAHMAWYCAAHM
+ AWYBMwEAAZkCZgEAAcwBZgGZAQABzAFmAcwBAAGZAWYB/wEAAcwBmQIAAcwBmQEzAQABzAGZAWYBAAHM
+ ApkBAAHMAZkBzAEAAcwBmQH/AQACzAIAAswBMwEAAswBZgEAAswBmQEAA8wBAALMAf8BAAHMAf8CAAHM
+ Af8BMwEAAZkB/wFmAQABzAH/AZkBAAHMAf8BzAEAAcwC/wEAAcwBAAEzAQAB/wEAAWYBAAH/AQABmQEA
+ AcwBMwIAAf8CMwEAAf8BMwFmAQAB/wEzAZkBAAH/ATMBzAEAAf8BMwH/AQAB/wFmAgAB/wFmATMBAAHM
+ AmYBAAH/AWYBmQEAAf8BZgHMAQABzAFmAf8BAAH/AZkCAAH/AZkBMwEAAf8BmQFmAQAB/wKZAQAB/wGZ
+ AcwBAAH/AZkB/wEAAf8BzAIAAf8BzAEzAQAB/wHMAWYBAAH/AcwBmQEAAf8CzAEAAf8BzAH/AQAC/wEz
+ AQABzAH/AWYBAAL/AZkBAAL/AcwBAAJmAf8BAAFmAf8BZgEAAWYC/wEAAf8CZgEAAf8BZgH/AQAC/wFm
+ AQABIQEAAaUBAANfAQADdwEAA4YBAAOWAQADywEAA7IBAAPXAQAD3QEAA+MBAAPqAQAD8QEAA/gBAAHw
+ AfsB/wEAAaQCoAEAA4ADAAH/AgAB/wMAAv8BAAH/AwAB/wEAAf8BAAL/AgAD/wEAEP8wAA/vAf8PvAUA
+ AQcBcgFPA0kBcgEHFAAP7wH/D+8EAAGYAU8BUASYAU8BSQEcEwAB7w3/Ae8B/wHvDf8B7wMAAZgBTwF4
+ AQgBmAKXAZgBCAGXAUkBHBIAAe8B/wLcAv8C3AL/AtwC/wHvAf8B7wL/CdwC/wHvAgABBwFPAXgBCAaX
+ AQgBlwFJAQcRAAHvAf8C3AL/AtwC/wLcAv8B7wH/Ae8C/wncAv8B7wIAAXgBVgEIApcBeAEbAZgDlwEI
+ AU8BchEAAe8B/wLcAv8C3AL/AtwC/wHvAf8B7w3/Ae8CAAFQApgBlwF4A/8BmAKXApgBTxEAAe8B/wLc
+ Av8C3AL/AtwC/wHvAf8B7wL/CdwC/wHvAgABTwGYAZcBeAL/AfQC/wGYApcBmAFJEQAB7wH/AtwC/wLc
+ Av8C3AL/Ae8B/wHvAv8J3AL/Ae8CAAFVAQgBeAGXAQgB8QGXAQgC/wGYAZcBmAFPEQAB7w3/Ae8B/wHv
+ Df8B7wIAAVYCmAWXAQgB/wHzApgBTxEAAe8B9AvyAfQB7wH/Ae8B9AvyAfQB7wIAAZgBlwEIBpcBCAGX
+ AQgBUAGXEQABtA2zAbQB/wG0DbMBtAIAAQgBVgF4AQgGlwEIAXgBTwEHEQABswEJC9wBCQGzAf8BswEJ
+ C9wBCQGzAwABmAFWAXgBCAGYAngBmAEIAXgBTwGYEgABswHhC9sB4QGzAf8BswHhC9sB4QGzBAABmAFW
+ AZcEmAGXAVABmBMAAbMN4gGzAf8Bsw3iAbMFAAEIAZgEVgGYAQcUAA+zAf8Bug2zAbohABD/IAABEg5D
+ ARIB/w7UAf8gAAFtDv8BbQH/AdQC3AEZAvQBGQHcAdsB2gHTAdQB2wHUAf8BAA4HAgAIBwaXAQABbQH/
+ ARUEEQEQAxEBEAERARQB/wFtAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEAAQcC/wEHBP8BBwT/
+ AQcCAAEHAv8BBwT/AZcECAGXAQABbQH/AeoC/wG8A/8BvAP/AeoB/wFtAf8B1AIZAfQC/wH0ARkBCQPc
+ AQkB1AH/AQABBwL/AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAFtAf8B6gG8AQcBvAMHAbwCBwG8
+ AeoB/wFtAf8O1AH/AQAOBwIACAcGlwEAAesB/wFtAv8BvAP/AbwD/wFtAf8B6wH/AdQC3AEZAvQBGQHc
+ AdsB2gHTAdQB2wHUAf8BAAEHAv8BBwT/AQcE/wEHAgABBwL/AQcE/wGXBAgBlwEAAesB/wFtAfAIvAHw
+ AW0B/wHrAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEAAQcC/wEHBP8BBwT/AQcCAAEHAv8BBwT/
+ AZcECAGXAQAB6wH/AesC/wHwA/8B8AP/AesB/wHrAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEA
+ DgcCAAgHBpcBAAHrAf8B6wIZAfEG8gHzAesB/wHrAf8B1AIZAfQC/wH0ARkBCQPcAQkB1AH/AQABBwL/
+ AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAHsAf8BkQElASABGQcCAewB/wHsAf8O1AH/AQABBwL/
+ AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAHsAf8BkQImAfQBNAVVATQB7AH/AewB/wHUAtwBGQL0
+ ARkB3AHbAdoB0wHUAdsB1AH/AQAOMwIACDMGNAEAAewB/wHsARkI8wH0AewB/wHsAf8B1ALcARkC9AEZ
+ AdwB2wHaAdMB1AHbAdQB/wEAATMCNAEzATQCVQE0ATMBNAJVATQBMwIAATMCNAEzATQCVQc0AQAB7AH/
+ AewC/wHzA/8B8wP/AewB/wHsAf8B1AIZAfQC/wH0ARkBCQPcAQkB1AH/AQAOMwIACDMGNAEAAewB/wzs
+ Af8B7AH/DtQB/yAAAewO/wHsEP8gABDtAUIBTQE+BwABPgMAASgDAAFAAwABIAMAAQEBAAEBBgABARYA
+ A/8DAAT/BQABAQHwAQ8FAAEBAeABBwUAAQEBwAEDBQABAQGAAQEFAAEBAYABAQUAAQEBgAEBBQABAQGA
+ AQEFAAEBAYABAQUAAQEBgAEBBQABAQGAAQEFAAEBAYABAQUAAQEBwAEDBQABAQHgAQcFAAEBAfABDwUA
+ AQEC/wQABP8EAAT/BAABgAEBAYABAQQAAYABAQGAAQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGA
+ AQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGAAQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGA
+ AQEEAAGAAQEBgAEBBAAE/wQABP8CAAs=
+
+
+
+ 157, 52
+
+
+
+ iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
+ YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
+ YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
+ 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
+ bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
+ VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
+ c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
+ Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
+ mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
+ kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
+ TgDQASA1MVpwzwAAAABJRU5ErkJggg==
+
+
+
+
+ iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
+ YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
+ YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
+ 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
+ bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
+ VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
+ c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
+ Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
+ mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
+ kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
+ TgDQASA1MVpwzwAAAABJRU5ErkJggg==
+
+
+
+ 417, 52
+
531, 14
@@ -134,7 +291,7 @@
AAEAAAD/////AQAAAAAAAAAMAgAAAFdTeXN0ZW0uV2luZG93cy5Gb3JtcywgVmVyc2lvbj00LjAuMC4w
LCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODkFAQAAACZTeXN0
ZW0uV2luZG93cy5Gb3Jtcy5JbWFnZUxpc3RTdHJlYW1lcgEAAAAERGF0YQcCAgAAAAkDAAAADwMAAAAC
- EwAAAk1TRnQBSQFMAgEBCgEAAegBBgHoAQYBEAEAARABAAT/AQkBAAj/AUIBTQE2AQQGAAE2AQQCAAEo
+ EwAAAk1TRnQBSQFMAgEBCgEAAfgBBgH4AQYBEAEAARABAAT/AQkBAAj/AUIBTQE2AQQGAAE2AQQCAAEo
AwABQAMAATADAAEBAQABCAYAAQwYAAGAAgABgAMAAoABAAGAAwABgAEAAYABAAKAAgADwAEAAcAB3AHA
AQAB8AHKAaYBAAEzBQABMwEAATMBAAEzAQACMwIAAxYBAAMcAQADIgEAAykBAANVAQADTQEAA0IBAAM5
AQABgAF8Af8BAAJQAf8BAAGTAQAB1gEAAf8B7AHMAQABxgHWAe8BAAHWAucBAAGQAakBrQIAAf8BMwMA
@@ -218,163 +375,6 @@
BP8BwAEAAfwBPws=
-
- 1218, 14
-
-
- 157, 52
-
-
-
-
- iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
- YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
- YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
- 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
- bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
- VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
- c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
- Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
- mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
- kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
- TgDQASA1MVpwzwAAAABJRU5ErkJggg==
-
-
-
-
- iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
- YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
- YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
- 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
- bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
- VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
- c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
- Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
- mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
- kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
- TgDQASA1MVpwzwAAAABJRU5ErkJggg==
-
-
-
-
- iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
- YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
- YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
- 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
- bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
- VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
- c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
- Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
- mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
- kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
- TgDQASA1MVpwzwAAAABJRU5ErkJggg==
-
-
-
- 404, 11
-
-
- 267, 52
-
-
-
- AAEAAAD/////AQAAAAAAAAAMAgAAAFdTeXN0ZW0uV2luZG93cy5Gb3JtcywgVmVyc2lvbj00LjAuMC4w
- LCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODkFAQAAACZTeXN0
- ZW0uV2luZG93cy5Gb3Jtcy5JbWFnZUxpc3RTdHJlYW1lcgEAAAAERGF0YQcCAgAAAAkDAAAADwMAAACq
- DQAAAk1TRnQBSQFMAgEBBwEAAWgBBgFoAQYBEAEAARABAAT/AQkBAAj/AUIBTQE2AQQGAAE2AQQCAAEo
- AwABQAMAASADAAEBAQABCAYAAQgYAAGAAgABgAMAAoABAAGAAwABgAEAAYABAAKAAgADwAEAAcAB3AHA
- AQAB8AHKAaYBAAEzBQABMwEAATMBAAEzAQACMwIAAxYBAAMcAQADIgEAAykBAANVAQADTQEAA0IBAAM5
- AQABgAF8Af8BAAJQAf8BAAGTAQAB1gEAAf8B7AHMAQABxgHWAe8BAAHWAucBAAGQAakBrQIAAf8BMwMA
- AWYDAAGZAwABzAIAATMDAAIzAgABMwFmAgABMwGZAgABMwHMAgABMwH/AgABZgMAAWYBMwIAAmYCAAFm
- AZkCAAFmAcwCAAFmAf8CAAGZAwABmQEzAgABmQFmAgACmQIAAZkBzAIAAZkB/wIAAcwDAAHMATMCAAHM
- AWYCAAHMAZkCAALMAgABzAH/AgAB/wFmAgAB/wGZAgAB/wHMAQABMwH/AgAB/wEAATMBAAEzAQABZgEA
- ATMBAAGZAQABMwEAAcwBAAEzAQAB/wEAAf8BMwIAAzMBAAIzAWYBAAIzAZkBAAIzAcwBAAIzAf8BAAEz
- AWYCAAEzAWYBMwEAATMCZgEAATMBZgGZAQABMwFmAcwBAAEzAWYB/wEAATMBmQIAATMBmQEzAQABMwGZ
- AWYBAAEzApkBAAEzAZkBzAEAATMBmQH/AQABMwHMAgABMwHMATMBAAEzAcwBZgEAATMBzAGZAQABMwLM
- AQABMwHMAf8BAAEzAf8BMwEAATMB/wFmAQABMwH/AZkBAAEzAf8BzAEAATMC/wEAAWYDAAFmAQABMwEA
- AWYBAAFmAQABZgEAAZkBAAFmAQABzAEAAWYBAAH/AQABZgEzAgABZgIzAQABZgEzAWYBAAFmATMBmQEA
- AWYBMwHMAQABZgEzAf8BAAJmAgACZgEzAQADZgEAAmYBmQEAAmYBzAEAAWYBmQIAAWYBmQEzAQABZgGZ
- AWYBAAFmApkBAAFmAZkBzAEAAWYBmQH/AQABZgHMAgABZgHMATMBAAFmAcwBmQEAAWYCzAEAAWYBzAH/
- AQABZgH/AgABZgH/ATMBAAFmAf8BmQEAAWYB/wHMAQABzAEAAf8BAAH/AQABzAEAApkCAAGZATMBmQEA
- AZkBAAGZAQABmQEAAcwBAAGZAwABmQIzAQABmQEAAWYBAAGZATMBzAEAAZkBAAH/AQABmQFmAgABmQFm
- ATMBAAGZATMBZgEAAZkBZgGZAQABmQFmAcwBAAGZATMB/wEAApkBMwEAApkBZgEAA5kBAAKZAcwBAAKZ
- Af8BAAGZAcwCAAGZAcwBMwEAAWYBzAFmAQABmQHMAZkBAAGZAswBAAGZAcwB/wEAAZkB/wIAAZkB/wEz
- AQABmQHMAWYBAAGZAf8BmQEAAZkB/wHMAQABmQL/AQABzAMAAZkBAAEzAQABzAEAAWYBAAHMAQABmQEA
- AcwBAAHMAQABmQEzAgABzAIzAQABzAEzAWYBAAHMATMBmQEAAcwBMwHMAQABzAEzAf8BAAHMAWYCAAHM
- AWYBMwEAAZkCZgEAAcwBZgGZAQABzAFmAcwBAAGZAWYB/wEAAcwBmQIAAcwBmQEzAQABzAGZAWYBAAHM
- ApkBAAHMAZkBzAEAAcwBmQH/AQACzAIAAswBMwEAAswBZgEAAswBmQEAA8wBAALMAf8BAAHMAf8CAAHM
- Af8BMwEAAZkB/wFmAQABzAH/AZkBAAHMAf8BzAEAAcwC/wEAAcwBAAEzAQAB/wEAAWYBAAH/AQABmQEA
- AcwBMwIAAf8CMwEAAf8BMwFmAQAB/wEzAZkBAAH/ATMBzAEAAf8BMwH/AQAB/wFmAgAB/wFmATMBAAHM
- AmYBAAH/AWYBmQEAAf8BZgHMAQABzAFmAf8BAAH/AZkCAAH/AZkBMwEAAf8BmQFmAQAB/wKZAQAB/wGZ
- AcwBAAH/AZkB/wEAAf8BzAIAAf8BzAEzAQAB/wHMAWYBAAH/AcwBmQEAAf8CzAEAAf8BzAH/AQAC/wEz
- AQABzAH/AWYBAAL/AZkBAAL/AcwBAAJmAf8BAAFmAf8BZgEAAWYC/wEAAf8CZgEAAf8BZgH/AQAC/wFm
- AQABIQEAAaUBAANfAQADdwEAA4YBAAOWAQADywEAA7IBAAPXAQAD3QEAA+MBAAPqAQAD8QEAA/gBAAHw
- AfsB/wEAAaQCoAEAA4ADAAH/AgAB/wMAAv8BAAH/AwAB/wEAAf8BAAL/AgAD/wEAEP8wAA/vAf8PvAUA
- AQcBcgFPA0kBcgEHFAAP7wH/D+8EAAGYAU8BUASYAU8BSQEcEwAB7w3/Ae8B/wHvDf8B7wMAAZgBTwF4
- AQgBmAKXAZgBCAGXAUkBHBIAAe8B/wLcAv8C3AL/AtwC/wHvAf8B7wL/CdwC/wHvAgABBwFPAXgBCAaX
- AQgBlwFJAQcRAAHvAf8C3AL/AtwC/wLcAv8B7wH/Ae8C/wncAv8B7wIAAXgBVgEIApcBeAEbAZgDlwEI
- AU8BchEAAe8B/wLcAv8C3AL/AtwC/wHvAf8B7w3/Ae8CAAFQApgBlwF4A/8BmAKXApgBTxEAAe8B/wLc
- Av8C3AL/AtwC/wHvAf8B7wL/CdwC/wHvAgABTwGYAZcBeAL/AfQC/wGYApcBmAFJEQAB7wH/AtwC/wLc
- Av8C3AL/Ae8B/wHvAv8J3AL/Ae8CAAFVAQgBeAGXAQgB8QGXAQgC/wGYAZcBmAFPEQAB7w3/Ae8B/wHv
- Df8B7wIAAVYCmAWXAQgB/wHzApgBTxEAAe8B9AvyAfQB7wH/Ae8B9AvyAfQB7wIAAZgBlwEIBpcBCAGX
- AQgBUAGXEQABtA2zAbQB/wG0DbMBtAIAAQgBVgF4AQgGlwEIAXgBTwEHEQABswEJC9wBCQGzAf8BswEJ
- C9wBCQGzAwABmAFWAXgBCAGYAngBmAEIAXgBTwGYEgABswHhC9sB4QGzAf8BswHhC9sB4QGzBAABmAFW
- AZcEmAGXAVABmBMAAbMN4gGzAf8Bsw3iAbMFAAEIAZgEVgGYAQcUAA+zAf8Bug2zAbohABD/IAABEg5D
- ARIB/w7UAf8gAAFtDv8BbQH/AdQC3AEZAvQBGQHcAdsB2gHTAdQB2wHUAf8BAA4HAgAIBwaXAQABbQH/
- ARUEEQEQAxEBEAERARQB/wFtAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEAAQcC/wEHBP8BBwT/
- AQcCAAEHAv8BBwT/AZcECAGXAQABbQH/AeoC/wG8A/8BvAP/AeoB/wFtAf8B1AIZAfQC/wH0ARkBCQPc
- AQkB1AH/AQABBwL/AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAFtAf8B6gG8AQcBvAMHAbwCBwG8
- AeoB/wFtAf8O1AH/AQAOBwIACAcGlwEAAesB/wFtAv8BvAP/AbwD/wFtAf8B6wH/AdQC3AEZAvQBGQHc
- AdsB2gHTAdQB2wHUAf8BAAEHAv8BBwT/AQcE/wEHAgABBwL/AQcE/wGXBAgBlwEAAesB/wFtAfAIvAHw
- AW0B/wHrAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEAAQcC/wEHBP8BBwT/AQcCAAEHAv8BBwT/
- AZcECAGXAQAB6wH/AesC/wHwA/8B8AP/AesB/wHrAf8B1ALcARkC9AEZAdwB2wHaAdMB1AHbAdQB/wEA
- DgcCAAgHBpcBAAHrAf8B6wIZAfEG8gHzAesB/wHrAf8B1AIZAfQC/wH0ARkBCQPcAQkB1AH/AQABBwL/
- AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAHsAf8BkQElASABGQcCAewB/wHsAf8O1AH/AQABBwL/
- AQcE/wEHBP8BBwIAAQcC/wEHBP8BlwQIAZcBAAHsAf8BkQImAfQBNAVVATQB7AH/AewB/wHUAtwBGQL0
- ARkB3AHbAdoB0wHUAdsB1AH/AQAOMwIACDMGNAEAAewB/wHsARkI8wH0AewB/wHsAf8B1ALcARkC9AEZ
- AdwB2wHaAdMB1AHbAdQB/wEAATMCNAEzATQCVQE0ATMBNAJVATQBMwIAATMCNAEzATQCVQc0AQAB7AH/
- AewC/wHzA/8B8wP/AewB/wHsAf8B1AIZAfQC/wH0ARkBCQPcAQkB1AH/AQAOMwIACDMGNAEAAewB/wzs
- Af8B7AH/DtQB/yAAAewO/wHsEP8gABDtAUIBTQE+BwABPgMAASgDAAFAAwABIAMAAQEBAAEBBgABARYA
- A/8DAAT/BQABAQHwAQ8FAAEBAeABBwUAAQEBwAEDBQABAQGAAQEFAAEBAYABAQUAAQEBgAEBBQABAQGA
- AQEFAAEBAYABAQUAAQEBgAEBBQABAQGAAQEFAAEBAYABAQUAAQEBwAEDBQABAQHgAQcFAAEBAfABDwUA
- AQEC/wQABP8EAAT/BAABgAEBAYABAQQAAYABAQGAAQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGA
- AQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGAAQEEAAGAAQEBgAEBBAABgAEBAYABAQQAAYABAQGA
- AQEEAAGAAQEBgAEBBAAE/wQABP8CAAs=
-
-
-
-
- iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
- YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
- YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
- 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
- bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
- VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
- c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
- Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
- mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
- kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
- TgDQASA1MVpwzwAAAABJRU5ErkJggg==
-
-
-
-
- iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8
- YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAIDSURBVDhPpZLrS5NhGMb3j4SWh0oRQVExD4gonkDpg4hG
- YKxG6WBogkMZKgPNCEVJFBGdGETEvgwyO9DJE5syZw3PIlPEE9pgBCLZ5XvdMB8Ew8gXbl54nuf63dd9
- 0OGSnwCahxbPRNPAPMw9Xpg6ZmF46kZZ0xSKzJPIrhpDWsVnpBhGkKx3nAX8Pv7z1zg8OoY/cITdn4fw
- bf/C0kYAN3Ma/w3gWfZL5kzTKBxjWyK2DftwI9tyMYCZKXbNHaD91bLYJrDXsYbrWfUKwJrPE9M2M1Oc
- VzOOpHI7Jr376Hi9ogHqFIANO0/MmmmbmSmm9a8ze+I4MrNWAdjtoJgWcx+PSzg166yZZ8xM8XvXDix9
- c4jIqFYAjoriBV9AhEPv1mH/sonogha0afbZMMZz+yreTGyhpusHwtNNCsA5U1zS4BLxzJIfg299qO32
- Ir7UJtZfftyATqeT+8o2D8JSjQrAJblrncYL7ZJ2+bfaFnC/1S1NjL3diRat7qrO7wLRP3HjWsojBeCo
- mDEo5mNjuweFGvjWg2EBhCbpkW78htSHHwRyNdmgAFzPEee2iFkzayy2OLXzT4gr6UdUnlXrullsxxQ+
- kx0g8BTA3aZlButjSTyjODq/WcQcW/B/Je4OQhLvKQDnzN1mp0nnkvAhR8VuMzNrpm1mpjgkoVwB/v8D
- TgDQASA1MVpwzwAAAABJRU5ErkJggg==
-
-
-
- 417, 52
-
17, 52
diff --git a/SuperSQLInjection/bypass/StringReplace.cs b/SuperSQLInjection/bypass/StringReplace.cs
index f22296a..4a664e4 100644
--- a/SuperSQLInjection/bypass/StringReplace.cs
+++ b/SuperSQLInjection/bypass/StringReplace.cs
@@ -36,11 +36,20 @@ namespace SuperSQLInjection.bypass
}
str = IncludeString(str);
}
- if (config.isOpenURLEncoding)
+ if (config.useUnicode)
{
- //URL编码
- str = urlEncoding(str, config.urlencodeCount);
+ //unicode
+ str = Tools.String2Unicode(str);
}
+ else
+ {
+ if (config.isOpenURLEncoding)
+ {
+ //URL编码
+ str = urlEncoding(str, config.urlencodeCount);
+ }
+ }
+
}
else {
@@ -49,12 +58,21 @@ namespace SuperSQLInjection.bypass
///*!包含*/
str = IncludeString(str);
}
- if (config.isOpenURLEncoding)
- {
- //URL编码
- str = urlEncoding(str,config.urlencodeCount);
-
+
+ if (config.useUnicode)
+ {
+ str = Tools.String2Unicode(str);
}
+ else
+ {
+ //unicode
+ if (config.isOpenURLEncoding)
+ {
+ //URL编码
+ str = urlEncoding(str, config.urlencodeCount);
+ }
+ }
+
//替换字符
str = ReplaceString(replaceList, str);
}
diff --git a/SuperSQLInjection/model/Config.cs b/SuperSQLInjection/model/Config.cs
index 238b79f..8399914 100644
--- a/SuperSQLInjection/model/Config.cs
+++ b/SuperSQLInjection/model/Config.cs
@@ -66,6 +66,8 @@ namespace SuperSQLInjection.model
public int base64Count = 0;
public Boolean useBetweenByPass = false;//between绕过
public Boolean usehex = false;//hex绕过
+ public Boolean useUnicode = false;//uniocde绕过
+
//scan
public int level = 0;
diff --git a/SuperSQLInjection/tools/Tools.cs b/SuperSQLInjection/tools/Tools.cs
index f2055de..12ace56 100644
--- a/SuperSQLInjection/tools/Tools.cs
+++ b/SuperSQLInjection/tools/Tools.cs
@@ -558,7 +558,19 @@ namespace tools
}
return "";
}
-
+ /**
+ 字符转unicode
+ */
+ public static string String2Unicode(string source)
+ {
+ var bytes = Encoding.Unicode.GetBytes(source);
+ var stringBuilder = new StringBuilder();
+ for (var i = 0; i < bytes.Length; i += 2)
+ {
+ stringBuilder.AppendFormat("%u{0}{1}", bytes[i + 1].ToString("x").PadLeft(2, '0'), bytes[i].ToString("x").PadLeft(2, '0'));
+ }
+ return stringBuilder.ToString();
+ }
public static decimal getLike(String body1, String body2)
{
diff --git a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.application b/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.application
deleted file mode 100644
index dc7e66f..0000000
--- a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.application
+++ /dev/null
@@ -1,21 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- gAs/TyknF/4dNgKirgeCy0VQSBk=
-
-
-
-oaT56oKuR3alD/PZ79QRFQqsr/4=qMuGCX/i2pzV4msE+YGr7UxOYPngnpJZR2tYM6X2g0xMFU1afxsbf+XYJm2dZQYMQGx1jrnJqvssyWSkLYMNojXyDq6k/3TvcM/t/s2ZvJCz/GWXQckrvMejD2OHukR7ETyctizeIuWXgvQGyYZXG1jY+nB2hYI/h8tYxtv8W78=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=AQABCN=DESKTOP-T009CQE\shack2m6wWY1yfDMQPe+z3uaqSAkxql5U=gYBpuAu5h+mOxWNHvJ/yAPmde9Z0iKr4f2TTQqrWb8IZHqt8zJYfxi0Kh7PLFaf+lNrnbCyM/nQLKK7HBHifVRKIjCNJ9Po9utzrhylLj32I+2dnLd6+tjrH8v19U2rGdJ/aHeppWuSqwzUVnJ3oqbpjnNbmYaogdNCE9SVx/Jw=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=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
\ No newline at end of file
diff --git a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.config.deploy b/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.config.deploy
deleted file mode 100644
index e365603..0000000
--- a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.config.deploy
+++ /dev/null
@@ -1,3 +0,0 @@
-
-
-
diff --git a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.deploy b/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.deploy
deleted file mode 100644
index 853ecdb..0000000
Binary files a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.deploy and /dev/null differ
diff --git a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.manifest b/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.manifest
deleted file mode 100644
index a5963b5..0000000
--- a/SuperSQLInjection/发布/Application Files/SuperSQLInjection_2016_01_05_0/SuperSQLInjection.exe.manifest
+++ /dev/null
@@ -1,81 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- MzoAOL5R6lPkke3HWwU+tccy9LI=
-
-
-
-
-
-
-
-
-
- cpzNzlRjZspwKGLNlX6RAlU3880=
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-DggssPaMqM6CqgARrCO/pDw3Jfg=CTJF8DGXtEUhTfOmyO6oSrA40dGK9leO1ikDrxcwkL5xNZJyt73X/hfNiOfbK+Q0cQ4sQzALzgOgKb3LFneBb4MusIuwffTGkKbD6apSydOT1zT7pVkQiqyIXJfvKIF0j7PKcipmsrXnWJ+Ry6r8k0GPW9rsKiFI3WZTysJJHK8=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=AQABCN=DESKTOP-T009CQE\shack2ELRpYqKy1OdgqVm1x1O5nixOwFA=EBm3PkvOqz/o/WnwEbAYz0rh3d7sTDvoJ/3LcCNOGIebqrMO2d1b+mUaMzMeHDmmKx93K2XqjebOqFhtrwLwg+0z6WMtvXGTBJjb+he5H/evWw3K+OYLGXsEogyGtNiVO8QyyUGn+C3vZSIJ2g2cAj45UBB/wVhLxT3Wr6F+OF8=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=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
\ No newline at end of file
diff --git a/SuperSQLInjection/发布/SuperSQLInjection.application b/SuperSQLInjection/发布/SuperSQLInjection.application
deleted file mode 100644
index dc7e66f..0000000
--- a/SuperSQLInjection/发布/SuperSQLInjection.application
+++ /dev/null
@@ -1,21 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- gAs/TyknF/4dNgKirgeCy0VQSBk=
-
-
-
-oaT56oKuR3alD/PZ79QRFQqsr/4=qMuGCX/i2pzV4msE+YGr7UxOYPngnpJZR2tYM6X2g0xMFU1afxsbf+XYJm2dZQYMQGx1jrnJqvssyWSkLYMNojXyDq6k/3TvcM/t/s2ZvJCz/GWXQckrvMejD2OHukR7ETyctizeIuWXgvQGyYZXG1jY+nB2hYI/h8tYxtv8W78=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=AQABCN=DESKTOP-T009CQE\shack2m6wWY1yfDMQPe+z3uaqSAkxql5U=gYBpuAu5h+mOxWNHvJ/yAPmde9Z0iKr4f2TTQqrWb8IZHqt8zJYfxi0Kh7PLFaf+lNrnbCyM/nQLKK7HBHifVRKIjCNJ9Po9utzrhylLj32I+2dnLd6+tjrH8v19U2rGdJ/aHeppWuSqwzUVnJ3oqbpjnNbmYaogdNCE9SVx/Jw=vGo4QUWgfGN7E/fzFqyNdgcG6irznr1s0c0KT79VQxyZAJrcA1OP9XlTNM1nVqN4xy6LK7LBx39zxQ6ah5veevxWkweCTPqeDwQw83MQHVevUtPGzHMZTAVwMrA4w+7FOhqkxWmMnaWHOjjubp9mn6SU+nub/mNibX5wnSe3jJ0=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
\ No newline at end of file
diff --git a/update.txt b/update.txt
index a195be9..a6d42e2 100644
--- a/update.txt
+++ b/update.txt
@@ -1,4 +1,7 @@
-20180917 V1.0 正式版---
+20180921 V1.0 正式版---
+新增IIS Unicode编码绕过,在一些特殊IIS环境下,可以使用Unicode编码来绕过注入防护。
+
+20180917 V1.0 正式版---
修复盲注关键字判断方式无效的问题,上个版本增加功能,判断方式反了。
更新检查更新接口,程序会搜集系统安装id和当前使用版本号,用于统计分析。