$sqlmap->task_id = $sqlmap->generateNewTaskID(); $scanID = trim($sqlmap->task_id); // Check to make sure the API communication is working, otherwise bail if (isset($scanID) && trim($scanID) != "") { if (isset($_POST['level']) && (int) $_POST['level'] > 0 && (int) $_POST['level'] < 6) { $sqlmap->setOptionValue($scanID, 'level', (int) $_POST['level'], true); } if (isset($_POST['risk']) && (int) $_POST['risk'] > 0 && (int) $_POST['risk'] < 4) { $sqlmap->setOptionValue($scanID, 'risk', (int) $_POST['risk'], true); } foreach ($options_to_enable as $key => $value) { $sqlmap->setOptionValue($scanID, $key, $value); } $sqlmap->startScan($scanID); // Launch Scan $status = $sqlmap->checkScanStatus($scanID); // Check Scan Status echo '<br /><br />'; echo '<div class="scan_info" id="scan_info" align="center" style="width">'; // Info div we can use to fill during scan waiting echo 'Running SQLMAP Scan on Target, hang tight....<br /><br /><br />'; // Message echo '<div class="loading"></div>'; // Our Spinner... echo '</div>'; echo str_repeat(' ', 1024 * 64); flush(); sleep(1); while ($status['status'] == "running") { $status = $sqlmap->checkScanStatus($scanID); // Continue Checking Scan Status Till Done or Killed
echo '</textarea><br />'; } else { ?> <table class="table table-hover" id="adminTasksDisplayTable"> <thead> <tr> <th>TaskID</th> <th>Target</th> <th>Status</th> <th colspan="5">Options</th> </tr> </thead> <tbody> <?php foreach ($taskList['tasks'] as $t) { $status = $sqlmap->checkScanStatus($t); $taskConfig = $sqlmap->listOptions($t); echo "<tr>"; echo "<td>"; echo htmlentities($t, ENT_QUOTES, 'UTF-8'); echo "</td>"; if (sizeof($taskConfig) > 0) { $targetHost = parse_url($taskConfig['options']['url'], PHP_URL_HOST); echo "<td>" . htmlentities($targetHost, ENT_QUOTES, 'UTF-8') . "</td>"; } else { echo "<td> - </td>"; } if (isset($status['status'])) { echo "<td>" . htmlentities($status['status'], ENT_QUOTES, 'UTF-8') . "</td>"; } else { echo "<td> - </td>";