PHP+MYSQL网站注入扫描[1]

简介：php+mysql网站注入扫描工具，针对类似夜猫文章下
载系统比较有效，界面是仿教程的hdsi中的php注入模块写
的，实现原理是参考angel的sql injection with mysql
写的，网上有很多，不再细说。

界面截图：http://www.wrsky.com/attachment/3_1891.jpg

源码下载：http://downloads.2ccc.com/general/internet_lan/phpinj.rar

author: hnxyy
qq: 19026695
date: 2005/5/25

firefox技术交流论坛
http://www.wrsky.com
it is all beginnings free
it is all ruin to be privately owned

使用d7编写，界面比较难看，和教主的工具对比了一下，感觉比他的工作扫描速度要快很多

主要单元代码：

unit unit1;

interface

uses
windows, messages, sysutils, variants, classes, graphics, controls, forms,
dialogs, spin, stdctrls, comctrls, buttons, extctrls, idhttp, unit2, unit3,
olectrls, shdocvw;

type
tform1 = class(tform)
  panel8: tpanel;
  label15: tlabel;
  label16: tlabel;
  label17: tlabel;
  edtinjurl: tedit;
  edtkey: tedit;
  edtfieldnum: tedit;
  rdbnum: tradiobutton;
  rdbchar: tradiobutton;
  panel1: tpanel;
  pcphpinj: tpagecontrol;
  tabsheet1: ttabsheet;
  sbscan1: tspeedbutton;
  sbstop1: tspeedbutton;
  sbscan2: tspeedbutton;
  sbstop2: tspeedbutton;
  panel15: tpanel;
  groupbox5: tgroupbox;
  lvtable: tlistview;
  groupbox6: tgroupbox;
  lvfield: tlistview;
  tabsheet2: ttabsheet;
  groupbox7: tgroupbox;
  label18: tlabel;
  label19: tlabel;
  label20: tlabel;
  label21: tlabel;
  spfield1: tspinedit;
  spfield2: tspinedit;
  edtfield1: tedit;
  edtfield2: tedit;
  edttable: tedit;
  edtid: tedit;
  groupbox8: tgroupbox;
  label22: tlabel;
  edtfilename: tedit;
  sbrecord: tspeedbutton;
  sbfile: tspeedbutton;
  mm: tmemo;
  sbscan: tspeedbutton;
  tabsheet3: ttabsheet;
  lsbdict: tlistbox;
  tabsheet4: ttabsheet;
  wb: twebbrowser;
  spnum: tspinedit;
  groupbox1: tgroupbox;
  sbscan3: tspeedbutton;
  sbstop3: tspeedbutton;
  listbox1: tlistbox;
  tabsheet5: ttabsheet;
  mmabout: tmemo;
  statusbar1: tstatusbar;
  procedure sbscanclick(sender: tobject);
  procedure sbstop1click(sender: tobject);
  procedure sbscan1click(sender: tobject);
  procedure sbscan2click(sender: tobject);
  procedure lvfieldclick(sender: tobject);
  procedure lvtableclick(sender: tobject);
  procedure sbrecordclick(sender: tobject);
  procedure sbfileclick(sender: tobject);
  procedure sbstop2click(sender: tobject);
  procedure sbscan3click(sender: tobject);
  procedure sbstop3click(sender: tobject);
  procedure listbox1click(sender: tobject);
  procedure formshow(sender: tobject);
private
  { private declarations }
  url,keyword:string;
  istr,injurl:string;
  //弹出信息框
  procedure msgbox(strmsg: string);
  procedure seturl;
  function get(url,key: string): boolean;
  procedure injtable;
  procedure fieldthreadexit(sender: tobject);
  procedure managerthreadexit(sender: tobject);
public
  { public declarations }
  pg1:tprogressbar;
end;

var
form1: tform1;
//scantable :array of scantablethread; // 定义线程数组
scanfield :array of scanfieldthread;
scanmanager :array of scanmanagerthread;
scantable: scantablethread; //扫描表段线程
isfinish:boolean=false;

n:integer=0;
m:integer=0;

implementation


{$r *.dfm}

{ tform1 }

procedure tform1.msgbox(strmsg: string);
begin
application.messagebox(pchar(strmsg), '提示信息', mb_iconinformation);
end;

procedure tform1.seturl;
begin
begin
if rdbnum.checked then
  url := trim(edtinjurl.text)
else
  url := trim(edtinjurl.text)+#39;
end;
end;

procedure tform1.sbscanclick(sender: tobject);
var
scan:scanthread;
begin
if (edtinjurl.text='') then
begin
  msgbox('请输入要注入的地址！'