PHP+MYSQL网站注入扫描[12]

;
end;

function getbackspacecount(str:string):string;
var i,icount:integer;
begin
  icount :=50-length(str);
  for i:=0 to icount-1 do
  begin
  result :=result+' ';
  end;
end;

procedure scanmanagerthread.scanresult;
begin
tmplbx.items.add(str);
form1.groupbox1.caption :='检测结果：共找到'+inttostr(tmplbx.items.count)+'条路径';
end;

procedure scanmanagerthread.execute;
begin
str :=tmpurl + form1.lsbdict.items[tmpnum];
entercriticalsection(cs);       //进入临界区
tmpmemo.lines.add(str);
if checkurl(str) then
begin
  synchronize(scanresult); // 同步
end;
leavecriticalsection(cs);     //退出临界区
//sleep(20); // 线程挂起;
end;

end.

简介：php+mysql网站注入扫描工具，针对类似夜猫文章下
载系统比较有效，界面是仿教程的hdsi中的php注入模块写
的，实现原理是参考angel的sql injection with mysql
写的，网上有很多，不再细说。

界面截图：http://www.wrsky.com/attachment/3_1891.jpg

源码下载：http://downloads.2ccc.com/general/internet_lan/phpinj.rar

author: hnxyy
qq: 19026695
date: 2005/5/25

firefox技术交流论坛
http://www.wrsky.com
it is all beginnings free
it is all ruin to be privately owned

使用d7编写，界面比较难看，和教主的工具对比了一下，感觉比他的工作扫描速度要快很多

主要单元代码：

unit unit1;

interface

uses
windows, messages, sysutils, variants, classes, graphics, controls, forms,
dialogs, spin, stdctrls, comctrls, buttons, extctrls, idhttp, unit2, unit3,
olectrls, shdocvw;

type
tform1 = class(tform)
  panel8: tpanel;
  label15: tlabel;
  label16: tlabel;
  label17: tlabel;
  edtinjurl: tedit;
  edtkey: tedit;
  edtfieldnum: tedit;
  rdbnum: tradiobutton;
  rdbchar: tradiobutton;
  panel1: tpanel;
  pcphpinj: tpagecontrol;
  tabsheet1: ttabsheet;
  sbscan1: tspeedbutton;
  sbstop1: tspeedbutton;
  sbscan2: tspeedbutton;
  sbstop2: tspeedbutton;
  panel15: tpanel;
  groupbox5: tgroupbox;
  lvtable: tlistview;
  groupbox6: tgroupbox;
  lvfield: tlistview;
  tabsheet2: ttabsheet;
  groupbox7: tgroupbox;
  label18: tlabel;
  label19: tlabel;
  label20: tlabel;
  label21: tlabel;
  spfield1: tspinedit;
  spfield2: tspinedit;
  edtfield1: tedit;
  edtfield2: tedit;
  edttable: tedit;
  edtid: tedit;
  groupbox8: tgroupbox;
  label22: tlabel;
  edtfilename: tedit;
  sbrecord: tspeedbutton;
  sbfile: tspeedbutton;
  mm: tmemo;
  sbscan: tspeedbutton;
  tabsheet3: ttabsheet;
  lsbdict: tlistbox;
  tabsheet4: ttabsheet;
  wb: twebbrowser;
  spnum: tspinedit;
  groupbox1: tgroupbox;
  sbscan3: tspeedbutton;
  sbstop3: tspeedbutton;
  listbox1: tlistbox;
  tabsheet5: ttabsheet;
  mmabout: tmemo;
  statusbar1: tstatusbar;
  procedure sbscanclick(sender: tobject);
  procedure sbstop1click(sender: tobject);
  procedure sbscan1click(sender: tobject);
  procedure sbscan2click(sender: tobject);
  procedure lvfieldclick(sender: tobject);
  procedure lvtableclick(sender: tobject);
  procedure sbrecordclick(sender: tobject);
  procedure sbfileclick(sender: tobject);
  procedure sbstop2click(sender: tobject);
  procedure sbscan3click(sender: tobject);
  procedure sbstop3click(sender: tobject);
  procedure listbox1click(sender: tobject);
  procedure formshow(sender: tobject);
private
  { private declarations }
  url,keyword:string;
  istr,injurl:string;
  //弹出信息框
  procedure msgbox(strmsg: string);
  procedure seturl;
  function get(url,key: string): boolean;
  procedure injtable;
  procedure fieldthreadexit(sender: tobject);
  procedure managerthreadexit(sender: tobject);
public