added the technique specification options

Author: Marshall Lee Whittaker

background.js

@@ -27,6 +27,13 @@ var threadsOption = "2";
 var unstableconnOption = false;
 var nocastOption = false;
 var noescapeOption = false;
+var techOption = '';
+var techbOption = true;
+var techeOption = true;
+var techuOption = true;
+var techsOption = true;
+var techtOption = true;
+var techqOption = true;
 var trigger;
 
 
@@ -95,6 +102,16 @@ function assembleCmd(url, referUrl) {
  if (unstableconnOption) {sqlmapText += " --unstable"; };
  if (nocastOption) {sqlmapText += " --no-cast"; };
  if (noescapeOption) {sqlmapText += " --no-escape"; };
+
+ techOption = ''
+ if (techbOption) {techOption += "B"; };
+ if (techeOption) {techOption += "E"; };
+ if (techuOption) {techOption += "U"; };
+ if (techsOption) {techOption += "S"; };
+ if (techtOption) {techOption += "T"; };
+ if (techqOption) {techOption += "Q"; };
+ sqlmapText += " --technique " + techOption;
+
  sqlmapText += " --threads " + threadsOption;
 
  sqlmapText += sqlmapheaders;
@@ -169,7 +186,7 @@ browser.contextMenus.onClicked.addListener((info, tab) => {
 
  // check the saved options each click in case they changed
  let gettingOptions = browser.storage.sync.get(
- ['quotes','prog','verbose','rua','dumpall','osshell','sqlmapUser', 'keepalive', 'nullconn', 'textonly', 'titleonly', 'batchp', 'hex', 'mobile', 'chunked', 'dropcook', 'threads', 'unstableconn', 'nocast', 'noescape', 'snackbar'])
+ ['quotes','prog','verbose','rua','dumpall','osshell','sqlmapUser', 'keepalive', 'nullconn', 'textonly', 'titleonly', 'batchp', 'hex', 'mobile', 'chunked', 'dropcook', 'threads', 'unstableconn', 'nocast', 'noescape', 'techb', 'teche', 'techu', 'techs', 'techt', 'techq', 'snackbar'])
  .then((res) => {
  quotesOption = res.quotes;
  programOption = res.prog;
@@ -191,6 +208,12 @@ browser.contextMenus.onClicked.addListener((info, tab) => {
  unstableconnOption = res.unstableconn;
  nocastOption = res.nocast;
  noescapeOption = res.noescape;
+ techbOption = res.techb;
+ techeOption = res.teche;
+ techuOption = res.techu;
+ techsOption = res.techs;
+ techtOption = res.techt;
+ techqOption = res.techq;
  snackbarOption = res.snackbar;
  });
  let promiseCancel = new Promise(function(resolve,reject) {

options.html

@@ -65,6 +65,18 @@
  "dumpall" /><br />
  </div>
  <div id="tech" class="tab-content">
+ Stacked queries: <input type="checkbox" name="techs" id=
+ "techs" /><br />
+ Union based queries: <input type="checkbox" name="techu" id=
+ "techu" /><br />
+ Error based queries: <input type="checkbox" name="teche" id=
+ "teche" /><br />
+ Inline queries: <input type="checkbox" name="techq" id=
+ "techq" /><br />
+ Boolean based blind queries: <input type="checkbox" name="techb" id=
+ "techb" /><br />
+ Time based blind queries: <input type="checkbox" name="techt" id=
+ "techt" /><br />
  </div>
  <div id="detect" class="tab-content">
  Page text only comparison: <input type="checkbox" name=

options.js

@@ -20,6 +20,12 @@ function saveOptions(e) {
  unstableconn: document.querySelector('input[name=unstableconn]').checked,
  nocast: document.querySelector('input[name=nocast]').checked,
  noescape: document.querySelector('input[name=noescape]').checked,
+ techb: document.querySelector('input[name=techb]').checked,
+ teche: document.querySelector('input[name=teche]').checked,
+ techu: document.querySelector('input[name=techu]').checked,
+ techs: document.querySelector('input[name=techs]').checked,
+ techt: document.querySelector('input[name=techt]').checked,
+ techq: document.querySelector('input[name=techq]').checked,
  snackbar: document.querySelector('input[name=snackbar]').checked, 
 
  });
@@ -31,7 +37,7 @@ function saveOptions(e) {
 
 function restoreOptions() {
  var gettingItem = browser.storage.sync.get(
- ['quotes', 'prog', 'verbose', 'rua', 'dumpall', 'osshell', 'sqlmapUser', 'keepalive', 'nullconn', 'textonly', 'titleonly', 'batchp', 'hex', 'mobile', 'chunked', 'dropcook', 'threads', 'unstableconn', 'nocast', 'noescape', 'snackbar']);
+ ['quotes', 'prog', 'verbose', 'rua', 'dumpall', 'osshell', 'sqlmapUser', 'keepalive', 'nullconn', 'textonly', 'titleonly', 'batchp', 'hex', 'mobile', 'chunked', 'dropcook', 'threads', 'unstableconn', 'nocast', 'noescape', 'techb', 'teche', 'techu', 'techs', 'techt', 'techq', 'snackbar']);
  gettingItem.then((res) => {
 
  if (Object.keys(res).length > 0 && res.constructor === Object) {
@@ -55,6 +61,12 @@ function restoreOptions() {
  document.querySelector('input[name=unstableconn]').checked = res.unstableconn ? res.unstableconn : false;
  document.querySelector('input[name=nocast]').checked = res.nocast ? res.nocast : false;
  document.querySelector('input[name=noescape]').checked = res.noescape ? res.noescape : false;
+ document.querySelector('input[name=techb]').checked = res.techb ? res.techb : true;
+ document.querySelector('input[name=teche]').checked = res.teche ? res.teche : true;
+ document.querySelector('input[name=techu]').checked = res.techu ? res.techu : true;
+ document.querySelector('input[name=techs]').checked = res.techs ? res.techs : true;
+ document.querySelector('input[name=techt]').checked = res.techt ? res.techt : true;
+ document.querySelector('input[name=techq]').checked = res.techq ? res.techq : true;
  document.querySelector('input[name=snackbar]').checked = res.snackbar ? res.snackbar : false;
  }
  // if no saved info save the defaults to initialize