..cool, we will make a new module and not just some new module, nope let's make a fully automatic injection script! This tutorial is the first step into making this. Let's first..
xAnalyze is a module that can search through corrupt data and configuration files in order to find the exact position of errors
<?php
/* Function that parses responses
Used for parsing the response in order to see if the exploit was successful.
PARAMETERS:
$sReponse: response of the inject
$aExploit: exploit definitions to search for
RETURNS:
BOOLEAN: exploit successful or not
*/
function ParseResponse($sResponse,$aExploit){
for($x=0;$x<count($aExploit);$x++){
if(false!==(strstr($sResponse,$aExploit[$x]))){
return(true);
}
}
return(false);
}
?>