Feature: Use wildcard to indicate injection points that aren't standard GET parameters.

[Macmod]

Similarly to sqlmap, a wildcard could be used to indicate injection points that aren't standard GET parameters.

[epinna]

Wildcard in POST request data and headers is already supported.

POST data

$ ./tplmap.py -u 'http://localhost:15001/post/mako' --data 'var=ok&inj=*&othervar=1'

Headers

$ ./tplmap.py -u 'http://localhost:15001/header/mako' --headers 'User-Agent: *' --headers 'X-Agent: *'

You can run it against the test python suite.

$ cd tests
$ ./run_python_tests.sh

[Macmod]

Thanks for clarifying, epinna, and the question should be elaborated: is there currently a way to do that in the URL, but outside GET parameters? That's the support I meant to ask for.

If my injection point is, for instance, http://www.example.com/HERE or http://www.example.com/dir/dir/dir/HERE, urlparse.parse_qs will return an empty dictionary and no injection will be tested. This may seem odd, but it's a real scenario considering mod_rewrite rules.

[epinna]

Got you. Injection points in the URL are not yet supported, but I'll work on that.