private void AttackPOST(string URL, string POST)
{
if (string.IsNullOrEmpty(POST))
return;
for (int i = 0; i < AttackedUrls.Count; i++)
{
if (AttackedUrls[i].OriginalURL == URL && AttackedUrls[i].OriginalPOST == POST)
return;
}
QueryModifier queryModifier = new QueryModifier(POST);
if (queryModifier.ParameterCount == 0)
return;
do
{
string NewPOST = queryModifier.GetModifiedQuery(textBoxModifier.Text);
DateTime Start = DateTime.Now;
CreateWebrequest Request = new CreateWebrequest();
string HTML = Request.StringGetWebPage(URL, POST, new List<string>(), false);
AttackedUrl attackedURL = new AttackedUrl();
attackedURL.HTML = HTML;
attackedURL.OriginalPOST = POST;
attackedURL.OriginalURL = URL;
attackedURL.ModifiedPOST = NewPOST;
AttackedUrls.Add(attackedURL);
ClearAttackBrowser();
ListViewItem Item = new ListViewItem();
Item.Text = URL;
Item.SubItems.Add(NewPOST);
listViewResult.Items.Add(Item);
}
while (queryModifier.NextParameter());
}
private void AttackURL(string URL)
{
if (!URL.Contains("?"))
return;
for (int i = 0; i < AttackedUrls.Count; i++)
{
if (AttackedUrls[i].OriginalURL == URL && string.IsNullOrEmpty(AttackedUrls[i].OriginalPOST))
return;
}
string Query = URL.Substring(URL.IndexOf('?') + 1);
string BeforeQuery = URL.Substring(0, URL.IndexOf('?') + 1);
QueryModifier queryModifier = new QueryModifier(Query);
if (queryModifier.ParameterCount != 0)
{
do
{
string NewURL = BeforeQuery + queryModifier.GetModifiedQuery(textBoxModifier.Text);
DateTime Start = DateTime.Now;
CreateWebrequest Request = new CreateWebrequest();
string HTML = Request.StringGetWebPage(NewURL, string.Empty, new List<string>(), false);
AttackedUrl attackedURL = new AttackedUrl();
attackedURL.HTML = HTML;
attackedURL.OriginalURL = URL;
attackedURL.ModifiedURL = NewURL;
AttackedUrls.Add(attackedURL);
ClearAttackBrowser();
ListViewItem Item = new ListViewItem();
Item.Text = NewURL;
Item.SubItems.Add(string.Empty);
listViewResult.Items.Add(Item);
}
while (queryModifier.NextParameter());
}
}
