Skip to content

Commit 75279ea

Browse files
stamparmstamparm
committed
Fix for DNS exfiltration of boolean checks
1 parent ac43051 commit 75279ea

1 file changed

Lines changed: 7 additions & 1 deletion

File tree

lib/request/inject.py

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -71,7 +71,7 @@ def _goInference(payload, expression, charsetType=None, firstChar=None, lastChar
7171

7272
value = _goDns(payload, expression)
7373

74-
if value:
74+
if value is not None:
7575
return value
7676

7777
timeBasedCompare = (kb.technique in (PAYLOAD.TECHNIQUE.TIME, PAYLOAD.TECHNIQUE.STACKED))
@@ -291,6 +291,12 @@ def _goBooleanProxy(expression):
291291
query = agent.prefixQuery(vector)
292292
query = agent.suffixQuery(query)
293293
payload = agent.payload(newValue=query)
294+
295+
output = _goDns(payload, expression)
296+
297+
if output is not None:
298+
return output
299+
294300
timeBasedCompare = kb.technique in (PAYLOAD.TECHNIQUE.TIME, PAYLOAD.TECHNIQUE.STACKED)
295301

296302
output = hashDBRetrieve(expression, checkConf=True)

0 commit comments

Comments
 (0)