w3af

Revision: 1492
          http://w3af.svn.sourceforge.net/w3af/?rev=1492&view=rev
Author:   andresriancho
Date:     2008-07-20 17:31:59 +0000 (Sun, 20 Jul 2008)

Log Message:
-----------
Trying to fix a problem reported by Fuzion "OperationalError: database is locked".

Modified Paths:
--------------
    trunk/core/data/db/persist.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1493
          http://w3af.svn.sourceforge.net/w3af/?rev=1493&view=rev
Author:   andresriancho
Date:     2008-07-20 19:10:20 +0000 (Sun, 20 Jul 2008)

Log Message:
-----------
Changing some simple things in the way that the persist database is handled. Maybe this fixes some bugs...

Modified Paths:
--------------
    trunk/core/controllers/targetSettings.py
    trunk/core/data/db/reqResDBHandler.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1500
          http://w3af.svn.sourceforge.net/w3af/?rev=1500&view=rev
Author:   andresriancho
Date:     2008-07-23 00:28:05 +0000 (Wed, 23 Jul 2008)

Log Message:
-----------
Fixing bug #2024767. Now HTML output is correctly written.

Modified Paths:
--------------
    trunk/plugins/output/htmlFile.py
    trunk/scripts/script-htmlOutput.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1501
          http://w3af.svn.sourceforge.net/w3af/?rev=1501&view=rev
Author:   andresriancho
Date:     2008-07-23 00:29:34 +0000 (Wed, 23 Jul 2008)

Log Message:
-----------
Fixing an old bug that now I can reproduce, this was bug #[ 2020211 ] Pykto, seemingly endless looping.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py
    trunk/plugins/discovery/pykto.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1512
          http://w3af.svn.sourceforge.net/w3af/?rev=1512&view=rev
Author:   andresriancho
Date:     2008-07-26 00:00:34 +0000 (Sat, 26 Jul 2008)

Log Message:
-----------
Adding a new dependency.

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py

Added Paths:
-----------
    trunk/extlib/xdot/
    trunk/extlib/xdot/README
    trunk/extlib/xdot/__init__.py
    trunk/extlib/xdot/dot_parser.py
    trunk/extlib/xdot/pydot.py
    trunk/extlib/xdot/xdot.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1587
          http://w3af.svn.sourceforge.net/w3af/?rev=1587&view=rev
Author:   andresriancho
Date:     2008-08-06 23:33:47 +0000 (Wed, 06 Aug 2008)

Log Message:
-----------
Fixing [ 2040540 ] Target box does not accept valid 'file URL' - win32.

Modified Paths:
--------------
    trunk/core/controllers/targetSettings.py
    trunk/scripts/script-targetsInFile.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1588
          http://w3af.svn.sourceforge.net/w3af/?rev=1588&view=rev
Author:   andresriancho
Date:     2008-08-07 00:55:36 +0000 (Thu, 07 Aug 2008)

Log Message:
-----------
Modified the way in which audit plugins report their findings. Now it's much more object oriented friendly =)

Modified Paths:
--------------
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantCookie.py
    trunk/core/data/fuzzer/mutantFileContent.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/fuzzer/mutantHeaders.py
    trunk/core/data/fuzzer/mutantPostData.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/generic.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xss.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1618
          http://w3af.svn.sourceforge.net/w3af/?rev=1618&view=rev
Author:   aberezh
Date:     2008-08-10 12:58:01 +0000 (Sun, 10 Aug 2008)

Log Message:
-----------
consoleUi:
- fixed small inusability: commands like exit and back are not suggested for submenus anymore.
- experimental 'kb' menu for kb manipulations (try 'kb list vulns' after scanning)

Modified Paths:
--------------
    trunk/core/controllers/daemons/proxy.py
    trunk/core/ui/consoleUi/help.xml
    trunk/core/ui/consoleUi/menu.py
    trunk/core/ui/consoleUi/plugins.py
    trunk/core/ui/consoleUi/rootMenu.py
    trunk/scripts/script-xssForms.w3af

Added Paths:
-----------
    trunk/core/ui/consoleUi/kbMenu.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Sasha,

    I like the kb feature! =)

    One question... was the proxy.py file supposed to be commited
also? Is this version fixing the bug Adam found in the proxy?

Cheers,

On Sun, Aug 10, 2008 at 9:58 AM,  <aberezh@...> wrote:
> Revision: 1618
>          http://w3af.svn.sourceforge.net/w3af/?rev=1618&view=rev
> Author:   aberezh
> Date:     2008-08-10 12:58:01 +0000 (Sun, 10 Aug 2008)
>
> Log Message:
> -----------
> consoleUi:
> - fixed small inusability: commands like exit and back are not suggested for submenus anymore.
> - experimental 'kb' menu for kb manipulations (try 'kb list vulns' after scanning)
>
> Modified Paths:
> --------------
>    trunk/core/controllers/daemons/proxy.py
>    trunk/core/ui/consoleUi/help.xml
>    trunk/core/ui/consoleUi/menu.py
>    trunk/core/ui/consoleUi/plugins.py
>    trunk/core/ui/consoleUi/rootMenu.py
>    trunk/scripts/script-xssForms.w3af
>
> Added Paths:
> -----------
>    trunk/core/ui/consoleUi/kbMenu.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> -------------------------------------------------------------------------
> This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
> Build the coolest Linux based applications with Moblin SDK & win great prizes
> Grand prize is a trip for two to an Open Source event anywhere in the world
> http://moblin-contest.org/redirect.php?banner_id=100&url=/
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andres Riancho
http://w3af.sourceforge.net/
Web Application Attack and Audit Framework

Revision: 1640
          http://w3af.svn.sourceforge.net/w3af/?rev=1640&view=rev
Author:   andresriancho
Date:     2008-08-15 15:04:25 +0000 (Fri, 15 Aug 2008)

Log Message:
-----------
Adding phpinfo plugin created by Viktor.

Added Paths:
-----------
    trunk/plugins/discovery/phpinfo.py
    trunk/scripts/script-phpinfo.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1645
          http://w3af.svn.sourceforge.net/w3af/?rev=1645&view=rev
Author:   andresriancho
Date:     2008-08-22 02:10:07 +0000 (Fri, 22 Aug 2008)

Log Message:
-----------
Replacing w3af "executable" with w3af_gui and w3af_console.

Added Paths:
-----------
    trunk/w3af_console
    trunk/w3af_gui

Removed Paths:
-------------
    trunk/w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1649
          http://w3af.svn.sourceforge.net/w3af/?rev=1649&view=rev
Author:   andresriancho
Date:     2008-08-23 03:03:11 +0000 (Sat, 23 Aug 2008)

Log Message:
-----------
Adding a new plugin to trigger asp.net errors.

Added Paths:
-----------
    trunk/plugins/discovery/dotNetErrors.py
    trunk/scripts/script-dotNetErrors.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1662
          http://w3af.svn.sourceforge.net/w3af/?rev=1662&view=rev
Author:   andresriancho
Date:     2008-08-25 22:21:33 +0000 (Mon, 25 Aug 2008)

Log Message:
-----------
Adding new features to the local file include plugin, and giving credit to Eduardo.

Modified Paths:
--------------
    trunk/plugins/audit/localFileInclude.py
    trunk/readme/CONTRIBUTORS


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1670
          http://w3af.svn.sourceforge.net/w3af/?rev=1670&view=rev
Author:   andresriancho
Date:     2008-08-27 16:06:49 +0000 (Wed, 27 Aug 2008)

Log Message:
-----------
Small performance improvement in the verification of the response mime type, which affects most of the grep plugins.

Modified Paths:
--------------
    trunk/core/data/url/httpResponse.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/spiderMan.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/domXss.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/error500.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/hashFind.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/motw.py
    trunk/plugins/grep/newline.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/svnUsers.py
    trunk/plugins/grep/wsdlGreper.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1681
          http://w3af.svn.sourceforge.net/w3af/?rev=1681&view=rev
Author:   andresriancho
Date:     2008-08-30 22:19:49 +0000 (Sat, 30 Aug 2008)

Log Message:
-----------
Adding the first test for i18n.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/main.py
    trunk/w3af_console
    trunk/w3af_gui

Added Paths:
-----------
    trunk/locales/
    trunk/locales/es/
    trunk/locales/es/LC_MESSAGES/
    trunk/locales/es/LC_MESSAGES/w3af.mo
    trunk/locales/es/LC_MESSAGES/w3af.po


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1683
          http://w3af.svn.sourceforge.net/w3af/?rev=1683&view=rev
Author:   andresriancho
Date:     2008-08-30 23:53:09 +0000 (Sat, 30 Aug 2008)

Log Message:
-----------
First translation of main.py.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/main.py
    trunk/locales/es/LC_MESSAGES/w3af.mo
    trunk/locales/es/LC_MESSAGES/w3af.po


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1684
          http://w3af.svn.sourceforge.net/w3af/?rev=1684&view=rev
Author:   andresriancho
Date:     2008-08-31 16:39:49 +0000 (Sun, 31 Aug 2008)

Log Message:
-----------
Fixing some language bugs reported by fuzion in [ 2085265 ] Correct misspellings in source code .

Modified Paths:
--------------
    trunk/core/controllers/w3afAgent/AESSocket.py
    trunk/core/data/kb/proxy.py
    trunk/core/data/kb/shell.py
    trunk/plugins/audit/generic.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/grep/metaTags.py
    trunk/scripts/script-errorPages.w3af
    trunk/scripts/script-evasion-all.w3af
    trunk/scripts/script-evasion-modsecurity.w3af
    trunk/scripts/script-evasionXss.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1696
          http://w3af.svn.sourceforge.net/w3af/?rev=1696&view=rev
Author:   andresriancho
Date:     2008-09-02 01:17:58 +0000 (Tue, 02 Sep 2008)

Log Message:
-----------
Grep plugins performance enhancement.

Modified Paths:
--------------
    trunk/core/data/url/httpResponse.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/lang.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/wsdlGreper.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1733
          http://w3af.svn.sourceforge.net/w3af/?rev=1733&view=rev
Author:   andresriancho
Date:     2008-09-14 17:58:28 +0000 (Sun, 14 Sep 2008)

Log Message:
-----------
Profiles now save/load the http and misc settings.

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/profile/profile.py
    trunk/core/ui/gtkUi/confpanel.py
    trunk/core/ui/gtkUi/entries.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/pluginconfig.py
    trunk/core/ui/gtkUi/profiles.py
    trunk/profiles/OWASP_TOP10.ini
    trunk/profiles/fast_scan.ini
    trunk/profiles/full_audit.ini
    trunk/profiles/full_audit_manual_disc.ini


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1820
          http://w3af.svn.sourceforge.net/w3af/?rev=1820&view=rev
Author:   facundobatista
Date:     2008-09-24 18:33:08 +0000 (Wed, 24 Sep 2008)

Log Message:
-----------

Exported the docs to HTML and integrated it to all Help buttons.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/compare.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/proxywin.py
    trunk/readme/gtkUiUsersGuide.odt

Added Paths:
-----------
    trunk/readme/gtkUiHTML/
    trunk/readme/gtkUiHTML/gtkUiUsersGuide.html
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_138eb8c6.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_19e0370.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_1bd5f7b1.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_33d39b79.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_3b3360d1.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_40c50a7e.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_434411c8.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_4809e930.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_490ccf4d.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_4efa8b8b.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_52654ed2.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_5df47c66.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_642cbc2.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_69079678.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_715eb766.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_7254acf5.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_744f5eda.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m14d55490.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m1578427e.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m1b308ac.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m2d93f383.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m2de7cfe6.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m3291ea61.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m368527fb.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m40b18f70.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m529b81c5.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m545886e1.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m5b06553e.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m60e54cd5.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m6817cbb9.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m786b396b.png
    trunk/readme/gtkUiHTML/gtkUiUsersGuide_html_m81acf4d.png


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1821
          http://w3af.svn.sourceforge.net/w3af/?rev=1821&view=rev
Author:   facundobatista
Date:     2008-09-24 20:06:29 +0000 (Wed, 24 Sep 2008)

Log Message:
-----------

The F1 is integrated now in the main window.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/helpers.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/scanrun.py

Added Paths:
-----------
    trunk/readme/gtkUiHTML/index.txt


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1834
          http://w3af.svn.sourceforge.net/w3af/?rev=1834&view=rev
Author:   andresriancho
Date:     2008-09-28 17:01:27 +0000 (Sun, 28 Sep 2008)

Log Message:
-----------
Removing old eric3 project files, adding new eric4 project files.

Added Paths:
-----------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t

Removed Paths:
-------------
    trunk/w3af.e3p
    trunk/w3af.e3t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1841
          http://w3af.svn.sourceforge.net/w3af/?rev=1841&view=rev
Author:   andresriancho
Date:     2008-10-09 02:39:34 +0000 (Thu, 09 Oct 2008)

Log Message:
-----------
Slight changes to the form bruteforcing.

Modified Paths:
--------------
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/scripts/script-formLoginBrute.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1847
          http://w3af.svn.sourceforge.net/w3af/?rev=1847&view=rev
Author:   andresriancho
Date:     2008-10-09 03:13:04 +0000 (Thu, 09 Oct 2008)

Log Message:
-----------
Updated project files.

Modified Paths:
--------------
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1866
          http://w3af.svn.sourceforge.net/w3af/?rev=1866&view=rev
Author:   andresriancho
Date:     2008-10-12 18:21:21 +0000 (Sun, 12 Oct 2008)

Log Message:
-----------
Starting to create the scripts to test for all types of javascript.

Modified Paths:
--------------
    trunk/w3af.e4q
    trunk/w3af.e4t

Added Paths:
-----------
    trunk/scripts/script-simple_xss.w3af

Removed Paths:
-------------
    trunk/scripts/script-xssWithLogging.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1869
          http://w3af.svn.sourceforge.net/w3af/?rev=1869&view=rev
Author:   andresriancho
Date:     2008-10-13 00:27:14 +0000 (Mon, 13 Oct 2008)

Log Message:
-----------
The XSS detection was rewritten. I still need to test the stored XSS detection, but it should have any problems.

Modified Paths:
--------------
    trunk/plugins/audit/xss.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/w3af.e4p


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1881
          http://w3af.svn.sourceforge.net/w3af/?rev=1881&view=rev
Author:   andresriancho
Date:     2008-10-17 03:36:33 +0000 (Fri, 17 Oct 2008)

Log Message:
-----------
Added a new technique to the OS commanding plugin. From now on, I'll work with the idea of using several techniques to discover one type of vulnerability. No more silver bullets for me... I rather use the bazooka.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/plugins/audit/osCommanding.py
    trunk/scripts/script-osCommanding.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1901
          http://w3af.svn.sourceforge.net/w3af/?rev=1901&view=rev
Author:   andresriancho
Date:     2008-10-26 12:15:54 +0000 (Sun, 26 Oct 2008)

Log Message:
-----------
Fixed bug reported by Santiago Lopez Galanes, and added a simple comment to the privateIP plugin.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/kbtree.py
    trunk/plugins/grep/privateIP.py
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1902
          http://w3af.svn.sourceforge.net/w3af/?rev=1902&view=rev
Author:   andresriancho
Date:     2008-10-26 16:11:29 +0000 (Sun, 26 Oct 2008)

Log Message:
-----------
Updated to the latest version of xdot, which works 10 times faster (Thanks Jose.R.Fonseca!).
Changed the dependency tree of w3af in the documentation.

Modified Paths:
--------------
    trunk/extlib/xdot/xdot.py
    trunk/readme/w3afUsersGuide.html
    trunk/readme/w3afUsersGuide.odt
    trunk/readme/w3afUsersGuide.pdf

Added Paths:
-----------
    trunk/readme/w3afUsersGuide_html_m51b850c5.png

Removed Paths:
-------------
    trunk/extlib/xdot/dot_parser.py
    trunk/extlib/xdot/pydot.py
    trunk/readme/w3afUsersGuide_html_440f522d.png


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1912
          http://w3af.svn.sourceforge.net/w3af/?rev=1912&view=rev
Author:   andresriancho
Date:     2008-10-29 02:29:28 +0000 (Wed, 29 Oct 2008)

Log Message:
-----------
Old files added to the project definition.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1913
          http://w3af.svn.sourceforge.net/w3af/?rev=1913&view=rev
Author:   andresriancho
Date:     2008-10-29 02:31:26 +0000 (Wed, 29 Oct 2008)

Log Message:
-----------
Added a new check at the core startup, in order to verify if the home directory is writable or not.
Modified the name of some functions, in order to comply with PEP8.

Modified Paths:
--------------
    trunk/core/controllers/misc/homeDir.py
    trunk/core/controllers/w3afCore.py
    trunk/core/data/url/handlers/localCache.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/gtkUi/clusterGraph.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/pluginconfig.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1924
          http://w3af.svn.sourceforge.net/w3af/?rev=1924&view=rev
Author:   andresriancho
Date:     2008-10-29 14:38:29 +0000 (Wed, 29 Oct 2008)

Log Message:
-----------
More test scripts, and fixing a couple of bugs.

Modified Paths:
--------------
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/domXss.py

Added Paths:
-----------
    trunk/scripts/script-directory_indexing.w3af

Removed Paths:
-------------
    trunk/scripts/script-directoryIndexing.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1940
          http://w3af.svn.sourceforge.net/w3af/?rev=1940&view=rev
Author:   andresriancho
Date:     2008-11-01 11:29:44 +0000 (Sat, 01 Nov 2008)

Log Message:
-----------
Modified the code in a way that now I can check for w3af_core variables.

Modified Paths:
--------------
    trunk/core/ui/consoleUi/menu.py
    trunk/scripts/script-html_textarea.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 1976
          http://w3af.svn.sourceforge.net/w3af/?rev=1976&view=rev
Author:   andresriancho
Date:     2008-11-08 17:44:36 +0000 (Sat, 08 Nov 2008)

Log Message:
-----------
Added test page for password profiling, fixed bug in html password profiling plugin, prettyfied the code.

Modified Paths:
--------------
    extras/testEnv/webroot/grep/password_profiling/index.html
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py
    trunk/plugins/grep/passwordProfilingPlugins/pdf.py

Added Paths:
-----------
    extras/testEnv/webroot/grep/password_profiling/
    trunk/scripts/script-password_profiling.w3af

Removed Paths:
-------------
    trunk/scripts/script-passwordProfiling.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2015
          http://w3af.svn.sourceforge.net/w3af/?rev=2015&view=rev
Author:   andresriancho
Date:     2008-11-15 01:02:34 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Modified the way in which blind SQL injection detection is done.
Now we also use time delays.

Modified Paths:
--------------
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/controllers/sql_tools/blind_sqli_time_delay.py
    trunk/plugins/attack/mysqlWebShell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/sqli.py
    trunk/scripts/script-bsqlDetection.w3af
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t

Added Paths:
-----------
    trunk/core/data/constants/dbms.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2024
          http://w3af.svn.sourceforge.net/w3af/?rev=2024&view=rev
Author:   andresriancho
Date:     2008-11-15 20:03:24 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Huge change to make the fileUpload plugin work again. I can't believe that this wasn't working!
It's my fault, I never use ./w3af_console -t ...
With all these changes I'm doing, the testing should be a lot faster and I could do it before commiting.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/dc/form.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/core/data/url/handlers/MultipartPostHandler.py
    trunk/plugins/audit/fileUpload.py

Added Paths:
-----------
    trunk/scripts/script-file_upload.w3af

Removed Paths:
-------------
    trunk/scripts/script-fileUpload.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2030
          http://w3af.svn.sourceforge.net/w3af/?rev=2030&view=rev
Author:   andresriancho
Date:     2008-11-15 22:02:04 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Pretty code.

Modified Paths:
--------------
    trunk/plugins/audit/frontpage.py
    trunk/scripts/script-dotNetErrors.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2031
          http://w3af.svn.sourceforge.net/w3af/?rev=2031&view=rev
Author:   andresriancho
Date:     2008-11-15 22:19:11 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Pretty code and tested scripts.

Modified Paths:
--------------
    trunk/plugins/audit/generic.py
    trunk/scripts/script-generic-noMatch.w3af
    trunk/scripts/script-generic.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2033
          http://w3af.svn.sourceforge.net/w3af/?rev=2033&view=rev
Author:   andresriancho
Date:     2008-11-15 22:38:19 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Pretty code, new test.

Modified Paths:
--------------
    trunk/plugins/audit/globalRedirect.py

Added Paths:
-----------
    trunk/scripts/script-global_redirect.w3af

Removed Paths:
-------------
    trunk/scripts/script-globalRedirect.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2034
          http://w3af.svn.sourceforge.net/w3af/?rev=2034&view=rev
Author:   andresriancho
Date:     2008-11-15 23:05:26 +0000 (Sat, 15 Nov 2008)

Log Message:
-----------
Made the htaccessMethods plugin more performant.
Pretty code.
Renamed and tested the script.

Modified Paths:
--------------
    trunk/plugins/audit/htaccessMethods.py

Added Paths:
-----------
    trunk/scripts/script-htaccess_methods.w3af

Removed Paths:
-------------
    trunk/scripts/script-htaccessMethods.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2043
          http://w3af.svn.sourceforge.net/w3af/?rev=2043&view=rev
Author:   andresriancho
Date:     2008-11-18 00:27:04 +0000 (Tue, 18 Nov 2008)

Log Message:
-----------
Preety plugin code.
New w3af script test with correct assert statements.
Renamed script to comply with new naming rules.

Modified Paths:
--------------
    trunk/plugins/audit/osCommanding.py

Added Paths:
-----------
    trunk/scripts/script-os_commanding.w3af

Removed Paths:
-------------
    trunk/scripts/script-osCommanding.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2045
          http://w3af.svn.sourceforge.net/w3af/?rev=2045&view=rev
Author:   andresriancho
Date:     2008-11-18 00:36:20 +0000 (Tue, 18 Nov 2008)

Log Message:
-----------
Pretty code, nice script.

Modified Paths:
--------------
    trunk/plugins/audit/phishingVector.py
    trunk/scripts/script-phishing_vector.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2046
          http://w3af.svn.sourceforge.net/w3af/?rev=2046&view=rev
Author:   andresriancho
Date:     2008-11-18 00:43:40 +0000 (Tue, 18 Nov 2008)

Log Message:
-----------
Almost without changes.

Modified Paths:
--------------
    trunk/plugins/audit/preg_replace.py
    trunk/scripts/script-preg_replace.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2047
          http://w3af.svn.sourceforge.net/w3af/?rev=2047&view=rev
Author:   andresriancho
Date:     2008-11-18 01:46:20 +0000 (Tue, 18 Nov 2008)

Log Message:
-----------
Complete rewrite of the plugin.
Adding test scripts for both techniques.

Modified Paths:
--------------
    trunk/plugins/audit/remoteFileInclude.py

Added Paths:
-----------
    trunk/scripts/script-remote_file_include_local_ws.w3af
    trunk/scripts/script-remote_file_include_w3af_site.w3af

Removed Paths:
-------------
    trunk/scripts/script-remoteFileInclude.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2051
          http://w3af.svn.sourceforge.net/w3af/?rev=2051&view=rev
Author:   andresriancho
Date:     2008-11-18 16:12:47 +0000 (Tue, 18 Nov 2008)

Log Message:
-----------
Pretty plugin code.
Modified w3af script to work with new test site.
The test site still needs some work to be complete.
Renamed sql+sqlmap to sqlmap. The idea is that we have one script to test one plugin.

Modified Paths:
--------------
    trunk/plugins/audit/sqli.py

Added Paths:
-----------
    trunk/scripts/script-sqli.w3af
    trunk/scripts/script-sqlmap.w3af

Removed Paths:
-------------
    trunk/scripts/script-sqli_+_sqlmap.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2053
          http://w3af.svn.sourceforge.net/w3af/?rev=2053&view=rev
Author:   andresriancho
Date:     2008-11-19 01:59:46 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Pretty code, updated w3af test script.

Modified Paths:
--------------
    trunk/plugins/audit/xst.py
    trunk/scripts/script-xst.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2058
          http://w3af.svn.sourceforge.net/w3af/?rev=2058&view=rev
Author:   andresriancho
Date:     2008-11-19 02:42:56 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Updating to reflect some files being added to the project.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2061
          http://w3af.svn.sourceforge.net/w3af/?rev=2061&view=rev
Author:   andresriancho
Date:     2008-11-19 13:06:17 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Starting with the discovery plugins.
This is going to be a hard task!
Pretty code, test script, removed some false positives in the plugin when the page is dynamic.

Modified Paths:
--------------
    trunk/plugins/discovery/afd.py
    trunk/scripts/script-afd.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2063
          http://w3af.svn.sourceforge.net/w3af/?rev=2063&view=rev
Author:   andresriancho
Date:     2008-11-19 13:55:57 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Pretty code, new test scripts.

Modified Paths:
--------------
    trunk/plugins/discovery/allowedMethods.py

Added Paths:
-----------
    trunk/scripts/script-allowed_methods.w3af
    trunk/scripts/script-allowed_methods_dav.w3af

Removed Paths:
-------------
    trunk/scripts/script-allowedMethods.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2064
          http://w3af.svn.sourceforge.net/w3af/?rev=2064&view=rev
Author:   andresriancho
Date:     2008-11-19 15:00:43 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Moved the isPrivate method from the search engine class, to a function. I needed this functionality in other places and using the searchEngine class was horrible.

Modified Paths:
--------------
    trunk/core/data/searchEngines/searchEngine.py
    trunk/plugins/discovery/MSNSpider.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/sharedHosting.py
    trunk/plugins/discovery/yahooSiteExplorer.py

Added Paths:
-----------
    trunk/core/controllers/misc/is_private_site.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2068
          http://w3af.svn.sourceforge.net/w3af/?rev=2068&view=rev
Author:   andresriancho
Date:     2008-11-19 17:41:44 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Now the plugin works as expected, and we have a way to verify if it still works.

Modified Paths:
--------------
    trunk/plugins/discovery/archiveDotOrg.py

Added Paths:
-----------
    trunk/scripts/script-archive_dot_org.w3af

Removed Paths:
-------------
    trunk/scripts/script-archiveDotOrg.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2074
          http://w3af.svn.sourceforge.net/w3af/?rev=2074&view=rev
Author:   andresriancho
Date:     2008-11-19 19:28:40 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Pretty code, new test script.

Modified Paths:
--------------
    trunk/plugins/discovery/crossDomain.py

Added Paths:
-----------
    trunk/scripts/script-cross_domain.w3af

Removed Paths:
-------------
    trunk/scripts/script-crossDomain.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2076
          http://w3af.svn.sourceforge.net/w3af/?rev=2076&view=rev
Author:   andresriancho
Date:     2008-11-19 19:54:31 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Two test scripts for detecting reverse proxies.
Fixed two bugs in the plugin.

Modified Paths:
--------------
    trunk/plugins/discovery/detectReverseProxy.py

Added Paths:
-----------
    trunk/scripts/script-detect_reverse_proxy.w3af
    trunk/scripts/script-detect_reverse_proxy_no.w3af

Removed Paths:
-------------
    trunk/scripts/script-detectReverseProxy.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2078
          http://w3af.svn.sourceforge.net/w3af/?rev=2078&view=rev
Author:   andresriancho
Date:     2008-11-19 20:08:44 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Pretty code.
Test script.

Modified Paths:
--------------
    trunk/plugins/discovery/detectTransparentProxy.py

Added Paths:
-----------
    trunk/scripts/script-detect_transparent_proxy.w3af

Removed Paths:
-------------
    trunk/scripts/script-detectTransparentProxy.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2079
          http://w3af.svn.sourceforge.net/w3af/?rev=2079&view=rev
Author:   andresriancho
Date:     2008-11-19 21:52:15 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Pretty code.
w3af test script that works as expected.

Modified Paths:
--------------
    trunk/plugins/discovery/digitSum.py

Added Paths:
-----------
    trunk/scripts/script-digit_sum.w3af

Removed Paths:
-------------
    trunk/scripts/script-digitSum.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2080
          http://w3af.svn.sourceforge.net/w3af/?rev=2080&view=rev
Author:   andresriancho
Date:     2008-11-19 22:24:43 +0000 (Wed, 19 Nov 2008)

Log Message:
-----------
Code review, pretty code, etc.

Modified Paths:
--------------
    trunk/plugins/discovery/dnsWildcard.py

Added Paths:
-----------
    trunk/scripts/script-dns_wildcard.w3af

Removed Paths:
-------------
    trunk/scripts/script-dnsWildcard.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2086
          http://w3af.svn.sourceforge.net/w3af/?rev=2086&view=rev
Author:   andresriancho
Date:     2008-11-20 16:00:08 +0000 (Thu, 20 Nov 2008)

Log Message:
-----------
More informative message to the user, pretty code, w3af test scripts.

Modified Paths:
--------------
    trunk/plugins/discovery/findvhost.py

Added Paths:
-----------
    trunk/scripts/script-find_vhost-2.w3af
    trunk/scripts/script-find_vhost.w3af

Removed Paths:
-------------
    trunk/scripts/script-findvhost-2.w3af
    trunk/scripts/script-findvhost.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2105
          http://w3af.svn.sourceforge.net/w3af/?rev=2105&view=rev
Author:   andresriancho
Date:     2008-11-24 21:53:25 +0000 (Mon, 24 Nov 2008)

Log Message:
-----------
Updated script (w0w, this script had more than 2 years without one eye reading it!!!)
Created test script to test.

Modified Paths:
--------------
    trunk/plugins/discovery/wsdlFinder.py

Added Paths:
-----------
    trunk/scripts/script-wsdl_finder.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2104
          http://w3af.svn.sourceforge.net/w3af/?rev=2104&view=rev
Author:   andresriancho
Date:     2008-11-24 21:40:25 +0000 (Mon, 24 Nov 2008)

Log Message:
-----------
Small bug fixing in the searchEngine class.
Fixing outdated yahooSiteExplorer URL.
Updated the w3af test script in order to be able to test this automagically ;)

Modified Paths:
--------------
    trunk/core/data/searchEngines/searchEngine.py
    trunk/core/data/searchEngines/yahooSiteExplorer.py
    trunk/scripts/script-yahooSiteExplorer.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2107
          http://w3af.svn.sourceforge.net/w3af/?rev=2107&view=rev
Author:   andresriancho
Date:     2008-11-24 22:35:07 +0000 (Mon, 24 Nov 2008)

Log Message:
-----------
Updated plugin, modified w3af test script.

Modified Paths:
--------------
    trunk/plugins/discovery/wordnet.py
    trunk/scripts/script-wordnet.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2115
          http://w3af.svn.sourceforge.net/w3af/?rev=2115&view=rev
Author:   andresriancho
Date:     2008-11-27 01:32:07 +0000 (Thu, 27 Nov 2008)

Log Message:
-----------
Pretty code and new test scripts.

Modified Paths:
--------------
    trunk/plugins/discovery/webDiff.py

Added Paths:
-----------
    trunk/scripts/script-web_diff.w3af

Removed Paths:
-------------
    trunk/scripts/script-webdiff.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2127
          http://w3af.svn.sourceforge.net/w3af/?rev=2127&view=rev
Author:   andresriancho
Date:     2008-12-01 02:39:34 +0000 (Mon, 01 Dec 2008)

Log Message:
-----------
Pretty code.
Test script, I still need to make this plugin work as expected!

Modified Paths:
--------------
    trunk/plugins/attack/remoteFileIncludeShell.py

Added Paths:
-----------
    trunk/scripts/script-remote_file_include_shell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2129
          http://w3af.svn.sourceforge.net/w3af/?rev=2129&view=rev
Author:   andresriancho
Date:     2008-12-01 13:58:18 +0000 (Mon, 01 Dec 2008)

Log Message:
-----------
Successful exploitation of remote file inclusion.

Modified Paths:
--------------
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/scripts/script-remote_file_include_shell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2131
          http://w3af.svn.sourceforge.net/w3af/?rev=2131&view=rev
Author:   andresriancho
Date:     2008-12-01 15:24:25 +0000 (Mon, 01 Dec 2008)

Log Message:
-----------
Changing the way w3af checks if the cmd shell was executed successfully.
Added remote file inclusion test for the exploitation using a XSS.

Modified Paths:
--------------
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/mysqlWebShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/webshells/cmd.asp
    trunk/plugins/attack/webshells/cmd.aspx
    trunk/plugins/attack/webshells/cmd.jsp
    trunk/plugins/attack/webshells/cmd.php
    trunk/plugins/attack/webshells/cmd.py
    trunk/plugins/attack/webshells/getShell.py

Added Paths:
-----------
    trunk/scripts/script-remote_file_include_shell-xss.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2138
          http://w3af.svn.sourceforge.net/w3af/?rev=2138&view=rev
Author:   andresriancho
Date:     2008-12-02 00:19:48 +0000 (Tue, 02 Dec 2008)

Log Message:
-----------
Pretty code and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/sharedHosting.py

Added Paths:
-----------
    trunk/scripts/script-shared_hosting.w3af

Removed Paths:
-------------
    trunk/scripts/script-sharedHosting.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2139
          http://w3af.svn.sourceforge.net/w3af/?rev=2139&view=rev
Author:   andresriancho
Date:     2008-12-02 00:39:29 +0000 (Tue, 02 Dec 2008)

Log Message:
-----------
Pretty code and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/serverStatus.py

Added Paths:
-----------
    trunk/scripts/script-server_status.w3af

Removed Paths:
-------------
    trunk/scripts/script-serverStatus.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2140
          http://w3af.svn.sourceforge.net/w3af/?rev=2140&view=rev
Author:   andresriancho
Date:     2008-12-02 00:56:31 +0000 (Tue, 02 Dec 2008)

Log Message:
-----------
Pretty code and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/serverHeader.py

Added Paths:
-----------
    trunk/scripts/script-server_header.w3af

Removed Paths:
-------------
    trunk/scripts/script-serverHeader.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2147
          http://w3af.svn.sourceforge.net/w3af/?rev=2147&view=rev
Author:   andresriancho
Date:     2008-12-03 18:32:29 +0000 (Wed, 03 Dec 2008)

Log Message:
-----------
Plugin needed a change in the core, in order to ignore errors in HTTP requests.

Modified Paths:
--------------
    trunk/core/data/url/xUrllib.py
    trunk/plugins/audit/unSSL.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2148
          http://w3af.svn.sourceforge.net/w3af/?rev=2148&view=rev
Author:   andresriancho
Date:     2008-12-03 19:06:38 +0000 (Wed, 03 Dec 2008)

Log Message:
-----------
Fixed cross plugin interference in discovery and bruteforce plugins.
Renamed the "main" method of the plugins.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAuditPlugin.py
    trunk/core/controllers/basePlugin/baseBruteforcePlugin.py
    trunk/core/controllers/basePlugin/baseDiscoveryPlugin.py
    trunk/core/controllers/w3afCore.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/generic.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/htaccessMethods.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/audit/unSSL.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xsrf.py
    trunk/plugins/audit/xss.py
    trunk/plugins/audit/xst.py
    trunk/plugins/bruteforce/basicAuthBrute.py
    trunk/plugins/bruteforce/formAuthBrute.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2153
          http://w3af.svn.sourceforge.net/w3af/?rev=2153&view=rev
Author:   andresriancho
Date:     2008-12-04 01:57:45 +0000 (Thu, 04 Dec 2008)

Log Message:
-----------
Test scripts for pykto.
Pretty code.
Better 404 detection.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py
    trunk/plugins/discovery/pykto.py

Added Paths:
-----------
    trunk/scripts/script-pykto.w3af
    trunk/scripts/script-pykto_mutate.w3af

Removed Paths:
-------------
    trunk/scripts/script-pyktoMutate.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2159
          http://w3af.svn.sourceforge.net/w3af/?rev=2159&view=rev
Author:   andresriancho
Date:     2008-12-05 23:49:47 +0000 (Fri, 05 Dec 2008)

Log Message:
-----------
Added the frontpage_version discovery plugin.

Added Paths:
-----------
    trunk/plugins/discovery/frontpage_version.py
    trunk/scripts/script-frontpage_version.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2162
          http://w3af.svn.sourceforge.net/w3af/?rev=2162&view=rev
Author:   andresriancho
Date:     2008-12-10 02:26:06 +0000 (Wed, 10 Dec 2008)

Log Message:
-----------
The last one of the grep plugins now has pretty code, also reviewed the code and simplified it.
Added nice path disclosure w3af test script with assert.
TODO: Test this with the attack plugin.

Modified Paths:
--------------
    trunk/plugins/grep/pathDisclosure.py

Added Paths:
-----------
    trunk/scripts/script-path_disclosure.w3af

Removed Paths:
-------------
    trunk/scripts/script-pathDisclosure.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2163
          http://w3af.svn.sourceforge.net/w3af/?rev=2163&view=rev
Author:   andresriancho
Date:     2008-12-10 02:31:34 +0000 (Wed, 10 Dec 2008)

Log Message:
-----------
Pretty code.
Added TODO comment.
Test script with assert statement.

Modified Paths:
--------------
    trunk/plugins/discovery/phpinfo.py
    trunk/scripts/script-phpinfo.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2170
          http://w3af.svn.sourceforge.net/w3af/?rev=2170&view=rev
Author:   andresriancho
Date:     2008-12-11 21:23:29 +0000 (Thu, 11 Dec 2008)

Log Message:
-----------
Commiting pretty code, db restructuring, test script.
All done in Guatemala =)

Modified Paths:
--------------
    trunk/plugins/discovery/phpEggs.py

Added Paths:
-----------
    trunk/scripts/script-php_eggs.w3af

Removed Paths:
-------------
    trunk/scripts/script-phpEggs.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2172
          http://w3af.svn.sourceforge.net/w3af/?rev=2172&view=rev
Author:   andresriancho
Date:     2008-12-12 00:41:44 +0000 (Fri, 12 Dec 2008)

Log Message:
-----------
Pretty code, new way of saving data.

Modified Paths:
--------------
    trunk/plugins/discovery/phishtank.py
    trunk/scripts/script-phishtank.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2173
          http://w3af.svn.sourceforge.net/w3af/?rev=2173&view=rev
Author:   facundobatista
Date:     2008-12-12 00:44:13 +0000 (Fri, 12 Dec 2008)

Log Message:
-----------

Fixed bug 2393362. Now to actually put a dollar sign in the fuzzy
generator, don't use a double dollar anymore, escape it with a
backslash.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/craftedRequests.py
    trunk/core/ui/gtkUi/fuzzygen.py
    trunk/readme/gtkUiHTML/gtkUiUsersGuide.html
    trunk/readme/gtkUiUsersGuide.odt


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2175
          http://w3af.svn.sourceforge.net/w3af/?rev=2175&view=rev
Author:   andresriancho
Date:     2008-12-12 01:24:26 +0000 (Fri, 12 Dec 2008)

Log Message:
-----------
Pretty code.
Test script with assert.

Modified Paths:
--------------
    trunk/plugins/discovery/MSNSpider.py

Added Paths:
-----------
    trunk/scripts/script-msn_spider.w3af

Removed Paths:
-------------
    trunk/scripts/script-msnSpider.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2178
          http://w3af.svn.sourceforge.net/w3af/?rev=2178&view=rev
Author:   andresriancho
Date:     2008-12-14 14:25:26 +0000 (Sun, 14 Dec 2008)

Log Message:
-----------
The webroot directory, inside the w3af directory isn't used anymore. It made no sense to use it, mostly in a multi-user system.
Now w3af uses the home directory to store its webroot.

Modified Paths:
--------------
    trunk/core/controllers/misc/homeDir.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/audit/remoteFileInclude.py

Added Paths:
-----------
    trunk/plugins/attack/rfiProxy/
    trunk/plugins/attack/rfiProxy/rfip.txt

Removed Paths:
-------------
    trunk/webroot/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2181
          http://w3af.svn.sourceforge.net/w3af/?rev=2181&view=rev
Author:   andresriancho
Date:     2008-12-14 14:35:31 +0000 (Sun, 14 Dec 2008)

Log Message:
-----------
Fixing bug, pretty code, test script.

Modified Paths:
--------------
    trunk/plugins/discovery/importResults.py

Added Paths:
-----------
    trunk/scripts/script-import_results.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2183
          http://w3af.svn.sourceforge.net/w3af/?rev=2183&view=rev
Author:   andresriancho
Date:     2008-12-14 14:37:18 +0000 (Sun, 14 Dec 2008)

Log Message:
-----------
Pretty code and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/halberd.py
    trunk/scripts/script-halberd.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2184
          http://w3af.svn.sourceforge.net/w3af/?rev=2184&view=rev
Author:   andresriancho
Date:     2008-12-14 14:38:50 +0000 (Sun, 14 Dec 2008)

Log Message:
-----------
Pretty code, test script.

Modified Paths:
--------------
    trunk/plugins/discovery/hmap.py

Added Paths:
-----------
    trunk/scripts/script-hmap.w3af

Removed Paths:
-------------
    trunk/scripts/script-genHmapFingerprint.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2188
          http://w3af.svn.sourceforge.net/w3af/?rev=2188&view=rev
Author:   kdenver
Date:     2008-12-18 13:55:26 +0000 (Thu, 18 Dec 2008)

Log Message:
-----------
* new xml output plugin
* added existing 'logEnabledPlugins' method to baseOutputPlugin and all output plugins
* w3afCore: the 'logEnabledPlugins' method get's called before the scan begins

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseOutputPlugin.py
    trunk/core/controllers/outputManager.py
    trunk/core/controllers/w3afCore.py
    trunk/plugins/output/console.py
    trunk/plugins/output/gtkOutput.py
    trunk/plugins/output/htmlFile.py
    trunk/plugins/output/textFile.py
    trunk/plugins/output/webOutput.py

Added Paths:
-----------
    trunk/plugins/output/xmlFile.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Kevin,

On Thu, Dec 18, 2008 at 11:55 AM,  <kdenver@...> wrote:
> Revision: 2188
>          http://w3af.svn.sourceforge.net/w3af/?rev=2188&view=rev
> Author:   kdenver
> Date:     2008-12-18 13:55:26 +0000 (Thu, 18 Dec 2008)
>
> Log Message:
> -----------
> * new xml output plugin
> * added existing 'logEnabledPlugins' method to baseOutputPlugin and all output plugins
> * w3afCore: the 'logEnabledPlugins' method get's called before the scan begins
>
> Modified Paths:
> --------------
>    trunk/core/controllers/basePlugin/baseOutputPlugin.py
>    trunk/core/controllers/outputManager.py
>    trunk/core/controllers/w3afCore.py
>    trunk/plugins/output/console.py
>    trunk/plugins/output/gtkOutput.py
>    trunk/plugins/output/htmlFile.py
>    trunk/plugins/output/textFile.py
>    trunk/plugins/output/webOutput.py
>
> Added Paths:
> -----------
>    trunk/plugins/output/xmlFile.py
>

IMPRESSIVE job. I failed to find one error in the commit!

One simple thing, but it's my fault because I didn't documented it
anywhere, is that whenever you commit a new plugin, you have to submit
a test script. I just created the test script and commited it to the
"scripts/" directory, to test it, you should run:

./w3af_console -s scripts/script-xml_output.w3af

If you have the w3af test environment properly configured (which I
also failed to document :S), the result of the script should be:

w3af>>> assert len(kb.kb.getData('urls','urlList')) == 16
Assert succeded.

And the corresponding XML file should be inside the w3af directory.

Once again, thanks for your contributions and I hope that they keep
coming at this rate =) What are you thinking about doing right now? Do
you need some guidance about tasks? (you haven't really needed that in
the past, and you've done some amazing work, but maybe now you are
running out of ideas, which I hope is not the case!)

Cheers,
-- 
Andres Riancho
http://w3af.sourceforge.net/
Web Application Attack and Audit Framework

Revision: 2193
          http://w3af.svn.sourceforge.net/w3af/?rev=2193&view=rev
Author:   andresriancho
Date:     2008-12-18 16:19:40 +0000 (Thu, 18 Dec 2008)

Log Message:
-----------
Fixing some bugs and making the test scripts work again.

Modified Paths:
--------------
    trunk/plugins/attack/sqlmap.py

Added Paths:
-----------
    trunk/scripts/script-sqlmap_exploit_int.w3af
    trunk/scripts/script-sqlmap_exploit_string.w3af

Removed Paths:
-------------
    trunk/scripts/script-bsqlExploit-int.w3af
    trunk/scripts/script-bsqlExploit-string.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2199
          http://w3af.svn.sourceforge.net/w3af/?rev=2199&view=rev
Author:   andresriancho
Date:     2008-12-18 22:08:32 +0000 (Thu, 18 Dec 2008)

Log Message:
-----------
New eric4 project files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2200
          http://w3af.svn.sourceforge.net/w3af/?rev=2200&view=rev
Author:   andresriancho
Date:     2008-12-18 23:26:42 +0000 (Thu, 18 Dec 2008)

Log Message:
-----------
Pretty code and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/googleSpider.py
    trunk/scripts/script-googleSpider.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2210
          http://w3af.svn.sourceforge.net/w3af/?rev=2210&view=rev
Author:   andresriancho
Date:     2008-12-21 18:14:07 +0000 (Sun, 21 Dec 2008)

Log Message:
-----------
Slightly modified the test script.
Modified the way the HTML file is written, added the enabled plugin information.

Modified Paths:
--------------
    trunk/plugins/output/htmlFile.py

Added Paths:
-----------
    trunk/scripts/script-html_output.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2215
          http://w3af.svn.sourceforge.net/w3af/?rev=2215&view=rev
Author:   andresriancho
Date:     2008-12-22 23:53:02 +0000 (Mon, 22 Dec 2008)

Log Message:
-----------
Pretty code, removed some unused variables, etc.
Test script.

Modified Paths:
--------------
    trunk/plugins/discovery/fingerMSN.py

Added Paths:
-----------
    trunk/scripts/script-finger_MSN.w3af

Removed Paths:
-------------
    trunk/scripts/script-fingerMSN.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2217
          http://w3af.svn.sourceforge.net/w3af/?rev=2217&view=rev
Author:   andresriancho
Date:     2008-12-23 00:02:18 +0000 (Tue, 23 Dec 2008)

Log Message:
-----------
Pretty code, test scripts.

Modified Paths:
--------------
    trunk/plugins/discovery/fingerPKS.py

Added Paths:
-----------
    trunk/scripts/script-finger_PKS.w3af

Removed Paths:
-------------
    trunk/scripts/script-fingerPKS.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2218
          http://w3af.svn.sourceforge.net/w3af/?rev=2218&view=rev
Author:   andresriancho
Date:     2008-12-23 00:18:23 +0000 (Tue, 23 Dec 2008)

Log Message:
-----------
Test script and pretty code.

Modified Paths:
--------------
    trunk/plugins/discovery/fingerprint_WAF.py
    trunk/scripts/script-fingerprint_waf.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2223
          http://w3af.svn.sourceforge.net/w3af/?rev=2223&view=rev
Author:   andresriancho
Date:     2008-12-23 02:10:05 +0000 (Tue, 23 Dec 2008)

Log Message:
-----------
New files in eric project.

Modified Paths:
--------------
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2224
          http://w3af.svn.sourceforge.net/w3af/?rev=2224&view=rev
Author:   andresriancho
Date:     2008-12-23 12:50:02 +0000 (Tue, 23 Dec 2008)

Log Message:
-----------
New version of the plugin that performs some more checks.
Updated test script.
All the set still needs work.

Modified Paths:
--------------
    trunk/plugins/audit/sslCertificate.py

Added Paths:
-----------
    trunk/scripts/script-ssl_certificate.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2228
          http://w3af.svn.sourceforge.net/w3af/?rev=2228&view=rev
Author:   andresriancho
Date:     2008-12-24 13:11:44 +0000 (Wed, 24 Dec 2008)

Log Message:
-----------
Pretty code.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseOutputPlugin.py
    trunk/plugins/output/htmlFile.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2233
          http://w3af.svn.sourceforge.net/w3af/?rev=2233&view=rev
Author:   andresriancho
Date:     2008-12-24 13:48:19 +0000 (Wed, 24 Dec 2008)

Log Message:
-----------
Pretty code and new test scripts.

Modified Paths:
--------------
    trunk/plugins/mangle/sed.py

Added Paths:
-----------
    trunk/scripts/script-mangle_request.w3af
    trunk/scripts/script-mangle_response.w3af

Removed Paths:
-------------
    trunk/scripts/script-mangleTest-request.w3af
    trunk/scripts/script-mangleTest-response.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2240
          http://w3af.svn.sourceforge.net/w3af/?rev=2240&view=rev
Author:   andresriancho
Date:     2008-12-24 22:19:44 +0000 (Wed, 24 Dec 2008)

Log Message:
-----------
Removed superfluous code, pretty code.
Changed test script.

Modified Paths:
--------------
    trunk/plugins/discovery/ghdb.py
    trunk/scripts/script-ghdb.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2244
          http://w3af.svn.sourceforge.net/w3af/?rev=2244&view=rev
Author:   andresriancho
Date:     2008-12-24 23:42:16 +0000 (Wed, 24 Dec 2008)

Log Message:
-----------
Pretty code, fixed some small bugs.
Test scripts.

Modified Paths:
--------------
    trunk/plugins/discovery/googleSets.py

Added Paths:
-----------
    trunk/scripts/script-google_sets.w3af

Removed Paths:
-------------
    trunk/scripts/script-googleSets.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2249
          http://w3af.svn.sourceforge.net/w3af/?rev=2249&view=rev
Author:   andresriancho
Date:     2008-12-25 14:02:37 +0000 (Thu, 25 Dec 2008)

Log Message:
-----------
Modified test script and added some signatures.

Modified Paths:
--------------
    trunk/scripts/script-hmap.w3af

Added Paths:
-----------
    trunk/plugins/discovery/oHmap/known.servers/apache-2.2.3
    trunk/plugins/discovery/oHmap/known.servers/iis-5.1-es
    trunk/plugins/discovery/oHmap/known.servers/iis-6.0_asp_2.0.50727
    trunk/plugins/discovery/oHmap/known.servers/iis-7.0_asp_2.0.50727
    trunk/plugins/discovery/oHmap/known.servers/oversee-1.3.18
    trunk/plugins/discovery/oHmap/known.servers/zeus-4.3_php-5.1.4

Removed Paths:
-------------
    trunk/plugins/discovery/oHmap/known.servers/iis-6.0


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2254
          http://w3af.svn.sourceforge.net/w3af/?rev=2254&view=rev
Author:   andresriancho
Date:     2008-12-25 18:09:45 +0000 (Thu, 25 Dec 2008)

Log Message:
-----------
Test script + fixing bug #2383856.

Modified Paths:
--------------
    trunk/plugins/audit/unSSL.py

Added Paths:
-----------
    trunk/scripts/script-un_ssl.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2278
          http://w3af.svn.sourceforge.net/w3af/?rev=2278&view=rev
Author:   andresriancho
Date:     2008-12-28 02:50:21 +0000 (Sun, 28 Dec 2008)

Log Message:
-----------
New list with recursion!

Modified Paths:
--------------
    trunk/plugins/attack/localFileReader.py

Added Paths:
-----------
    trunk/core/data/constants/common_directories.py
    trunk/scripts/script-local_file_include-list.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2292
          http://w3af.svn.sourceforge.net/w3af/?rev=2292&view=rev
Author:   andresriancho
Date:     2008-12-31 00:34:38 +0000 (Wed, 31 Dec 2008)

Log Message:
-----------
After some tests with wivet [0] and some modifications in the spider and the parser... w3af has a 100% code coverage =)

[0] http://code.google.com/p/wivet

Modified Paths:
--------------
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/parsers/documentParser.py
    trunk/core/data/parsers/pdfParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/grep/strangeParameters.py

Added Paths:
-----------
    trunk/scripts/script-web_spider-wivet.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2294
          http://w3af.svn.sourceforge.net/w3af/?rev=2294&view=rev
Author:   andresriancho
Date:     2008-12-31 02:23:27 +0000 (Wed, 31 Dec 2008)

Log Message:
-----------
Changing method name, and adding some documentation to the methods.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseGrepPlugin.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/domXss.py
    trunk/plugins/grep/error500.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/hashFind.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/lang.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/motw.py
    trunk/plugins/grep/newline.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/strangeHTTPCode.py
    trunk/plugins/grep/strangeHeaders.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/grep/svnUsers.py
    trunk/plugins/grep/wsdlGreper.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2323
          http://w3af.svn.sourceforge.net/w3af/?rev=2323&view=rev
Author:   andresriancho
Date:     2009-01-14 22:05:37 +0000 (Wed, 14 Jan 2009)

Log Message:
-----------
Die false positives dieeeeee!
=)

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py
    trunk/core/controllers/misc/levenshtein.py
    trunk/plugins/discovery/findBackdoor.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2331
          http://w3af.svn.sourceforge.net/w3af/?rev=2331&view=rev
Author:   andresriancho
Date:     2009-01-16 12:48:00 +0000 (Fri, 16 Jan 2009)

Log Message:
-----------
Project without extlib directory.
This change was mainly made to be able to count the lines of codes without any interference.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2337
          http://w3af.svn.sourceforge.net/w3af/?rev=2337&view=rev
Author:   andresriancho
Date:     2009-01-18 15:00:53 +0000 (Sun, 18 Jan 2009)

Log Message:
-----------
Better documentation.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAttackPlugin.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/mysqlWebShell.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xssBeef.py
    trunk/scripts/script-davShell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2338
          http://w3af.svn.sourceforge.net/w3af/?rev=2338&view=rev
Author:   andresriancho
Date:     2009-01-18 15:01:37 +0000 (Sun, 18 Jan 2009)

Log Message:
-----------
Pretty code, removed false positive in shell upload and execution detection.
Added test script.

Modified Paths:
--------------
    trunk/plugins/attack/fileUploadShell.py

Added Paths:
-----------
    trunk/scripts/script-file_upload_shell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2340
          http://w3af.svn.sourceforge.net/w3af/?rev=2340&view=rev
Author:   andresriancho
Date:     2009-01-18 15:21:12 +0000 (Sun, 18 Jan 2009)

Log Message:
-----------
Updated test script.
Added test in "list" method in order to make it work faster.

Modified Paths:
--------------
    trunk/plugins/attack/localFileReader.py
    trunk/scripts/script-local_file_include-list.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2341
          http://w3af.svn.sourceforge.net/w3af/?rev=2341&view=rev
Author:   andresriancho
Date:     2009-01-18 17:02:45 +0000 (Sun, 18 Jan 2009)

Log Message:
-----------
Pretty code, test script.

Modified Paths:
--------------
    trunk/plugins/attack/osCommandingShell.py

Added Paths:
-----------
    trunk/scripts/script-os_commanding_shell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2342
          http://w3af.svn.sourceforge.net/w3af/?rev=2342&view=rev
Author:   andresriancho
Date:     2009-01-18 18:24:29 +0000 (Sun, 18 Jan 2009)

Log Message:
-----------
Small changes to the sqlmap plugin, now the runCommand thread is handled much better.
Also added some test scripts.

Modified Paths:
--------------
    trunk/core/data/kb/shell.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/plugins/attack/sqlmap.py
    trunk/scripts/script-sqlmap_exploit_int.w3af
    trunk/scripts/script-sqlmap_exploit_string.w3af

Removed Paths:
-------------
    trunk/scripts/script-sqlmap.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2352
          http://w3af.svn.sourceforge.net/w3af/?rev=2352&view=rev
Author:   andresriancho
Date:     2009-01-20 17:08:37 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
Added "more than one request/response ID" support to info and vuln objects.
This involved changing some plugin code to consume this new feature of the core, and also modifying the user interface to deal with the change.

Modified Paths:
--------------
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/data/kb/info.py
    trunk/core/data/kb/vuln.py
    trunk/core/ui/gtkUi/exploittab.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/unSSL.py
    trunk/plugins/discovery/allowedMethods.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2353
          http://w3af.svn.sourceforge.net/w3af/?rev=2353&view=rev
Author:   andresriancho
Date:     2009-01-20 17:40:33 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
Pretty script, and better information message.

Modified Paths:
--------------
    trunk/plugins/audit/localFileInclude.py
    trunk/scripts/script-local_file_include.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2357
          http://w3af.svn.sourceforge.net/w3af/?rev=2357&view=rev
Author:   andresriancho
Date:     2009-01-20 18:24:22 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
Test scripts for xssBeef, minimal changes to be able to fully interact with audit.xss .

Modified Paths:
--------------
    trunk/plugins/attack/xssBeef.py
    trunk/plugins/audit/xss.py

Added Paths:
-----------
    trunk/scripts/script-xssBeEF_stored_xss.w3af

Removed Paths:
-------------
    trunk/scripts/script-xssBeEF_permanent_xss.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2361
          http://w3af.svn.sourceforge.net/w3af/?rev=2361&view=rev
Author:   andresriancho
Date:     2009-01-20 18:44:13 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
Project update.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2374
          http://w3af.svn.sourceforge.net/w3af/?rev=2374&view=rev
Author:   andresriancho
Date:     2009-01-20 20:59:29 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
New attack plugin.

Added Paths:
-----------
    trunk/plugins/attack/eval.py
    trunk/scripts/script-eval_shell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2375
          http://w3af.svn.sourceforge.net/w3af/?rev=2375&view=rev
Author:   andresriancho
Date:     2009-01-20 21:00:01 +0000 (Tue, 20 Jan 2009)

Log Message:
-----------
Fixed project files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2377
          http://w3af.svn.sourceforge.net/w3af/?rev=2377&view=rev
Author:   andresriancho
Date:     2009-01-21 01:37:12 +0000 (Wed, 21 Jan 2009)

Log Message:
-----------
Pretty code.
Test script that works.

Modified Paths:
--------------
    trunk/plugins/bruteforce/basicAuthBrute.py
    trunk/scripts/script-basicAuthBrute.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2381
          http://w3af.svn.sourceforge.net/w3af/?rev=2381&view=rev
Author:   andresriancho
Date:     2009-01-21 13:36:19 +0000 (Wed, 21 Jan 2009)

Log Message:
-----------
Small modifications; now w3af can fuzz cookies once again :S

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/plugins/audit/xss.py

Added Paths:
-----------
    trunk/scripts/script-cookie_fuzzing.w3af

Removed Paths:
-------------
    trunk/scripts/script-cookieFuzzing.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2383
          http://w3af.svn.sourceforge.net/w3af/?rev=2383&view=rev
Author:   andresriancho
Date:     2009-01-21 15:43:10 +0000 (Wed, 21 Jan 2009)

Log Message:
-----------
Pretty code and updated test script.

Modified Paths:
--------------
    trunk/core/data/request/frFactory.py
    trunk/plugins/discovery/digitSum.py
    trunk/scripts/script-digit_sum.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2384
          http://w3af.svn.sourceforge.net/w3af/?rev=2384&view=rev
Author:   andresriancho
Date:     2009-01-21 16:49:46 +0000 (Wed, 21 Jan 2009)

Log Message:
-----------
w3af now supports filename fuzzing again :S

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/plugins/audit/xss.py
    trunk/scripts/script-filenameXss.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2401
          http://w3af.svn.sourceforge.net/w3af/?rev=2401&view=rev
Author:   andresriancho
Date:     2009-01-22 01:18:37 +0000 (Thu, 22 Jan 2009)

Log Message:
-----------
Fixed bug #2122302, "Crash who asociate .pw3af at w3af_gui.bat".
https://sourceforge.net/tracker2/?func=detail&aid=2122302&group_id=170274&atid=853652

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/profile/profile.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/profiles.py
    trunk/w3af_gui


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2410
          http://w3af.svn.sourceforge.net/w3af/?rev=2410&view=rev
Author:   andresriancho
Date:     2009-01-23 21:34:14 +0000 (Fri, 23 Jan 2009)

Log Message:
-----------
Performed some more testing of the basicAuthBrute plugin.

Modified Paths:
--------------
    trunk/plugins/bruteforce/basicAuthBrute.py
    trunk/scripts/script-basicAuthBrute-threads.w3af
    trunk/scripts/script-basicAuthBrute.w3af

Added Paths:
-----------
    trunk/scripts/script-basicAuthBrute-impossible_guess.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2419
          http://w3af.svn.sourceforge.net/w3af/?rev=2419&view=rev
Author:   andresriancho
Date:     2009-01-24 17:19:13 +0000 (Sat, 24 Jan 2009)

Log Message:
-----------
Better reporting and regular expressions with less false positives.

Modified Paths:
--------------
    trunk/plugins/grep/httpInBody.py
    trunk/scripts/script-httpInBody.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2420
          http://w3af.svn.sourceforge.net/w3af/?rev=2420&view=rev
Author:   aberezh
Date:     2009-01-24 17:45:35 +0000 (Sat, 24 Jan 2009)

Log Message:
-----------
Probably, that will fix the webSpider onlyForwards bug.

Modified Paths:
--------------
    trunk/core/data/parsers/abstractParser.py
    trunk/plugins/discovery/webSpider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2434
          http://w3af.svn.sourceforge.net/w3af/?rev=2434&view=rev
Author:   andresriancho
Date:     2009-01-26 12:28:52 +0000 (Mon, 26 Jan 2009)

Log Message:
-----------
Added new plugin to test http://host.tld./
I found a vuln like that once... and I want w3af to find it also ;)

Added Paths:
-----------
    trunk/plugins/discovery/domain_dot.py
    trunk/scripts/script-domain_dot.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2433
          http://w3af.svn.sourceforge.net/w3af/?rev=2433&view=rev
Author:   andresriancho
Date:     2009-01-26 11:55:51 +0000 (Mon, 26 Jan 2009)

Log Message:
-----------
Avoiding dups in grep.pathDisclosure.

Modified Paths:
--------------
    trunk/plugins/grep/pathDisclosure.py
    trunk/scripts/script-path_disclosure.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2448
          http://w3af.svn.sourceforge.net/w3af/?rev=2448&view=rev
Author:   andresriancho
Date:     2009-01-27 00:45:56 +0000 (Tue, 27 Jan 2009)

Log Message:
-----------
Fixed bug in sqlmap. Please note that a_list.extend( a_vuln_object ) returns a list with strange items.

Modified Paths:
--------------
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/controllers/sql_tools/blind_sqli_time_delay.py
    trunk/plugins/attack/sqlmap.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2453
          http://w3af.svn.sourceforge.net/w3af/?rev=2453&view=rev
Author:   andresriancho
Date:     2009-01-28 02:49:47 +0000 (Wed, 28 Jan 2009)

Log Message:
-----------
Getting closer...

Modified Paths:
--------------
    trunk/scripts/script-sql_webshell.w3af

Added Paths:
-----------
    trunk/core/controllers/misc/webroot.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2459
          http://w3af.svn.sourceforge.net/w3af/?rev=2459&view=rev
Author:   andresriancho
Date:     2009-01-28 15:38:34 +0000 (Wed, 28 Jan 2009)

Log Message:
-----------
Complete sql_webshell plugin with test script.

Modified Paths:
--------------
    trunk/plugins/attack/sql_webshell.py
    trunk/scripts/script-sql_webshell.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2466
          http://w3af.svn.sourceforge.net/w3af/?rev=2466&view=rev
Author:   andresriancho
Date:     2009-01-28 17:03:24 +0000 (Wed, 28 Jan 2009)

Log Message:
-----------
Removing some stupid try/except clauses.

Modified Paths:
--------------
    trunk/core/controllers/targetSettings.py
    trunk/core/data/db/persist.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2470
          http://w3af.svn.sourceforge.net/w3af/?rev=2470&view=rev
Author:   andresriancho
Date:     2009-01-28 18:44:55 +0000 (Wed, 28 Jan 2009)

Log Message:
-----------
Making all things work as expected.

Modified Paths:
--------------
    trunk/core/ui/consoleUi/exploit.py
    trunk/scripts/script-exploitAll-stopOnFirst.w3af
    trunk/scripts/script-exploitAll.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2487
          http://w3af.svn.sourceforge.net/w3af/?rev=2487&view=rev
Author:   andresriancho
Date:     2009-01-29 21:11:08 +0000 (Thu, 29 Jan 2009)

Log Message:
-----------
Changed the way of handling decoding of URLs, and now it's much clearer.

Modified Paths:
--------------
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/wmlParser.py
    trunk/core/data/url/httpResponse.py
    trunk/scripts/script-encoding.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2488
          http://w3af.svn.sourceforge.net/w3af/?rev=2488&view=rev
Author:   andresriancho
Date:     2009-01-29 21:50:19 +0000 (Thu, 29 Jan 2009)

Log Message:
-----------
Updating project files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2498
          http://w3af.svn.sourceforge.net/w3af/?rev=2498&view=rev
Author:   andresriancho
Date:     2009-01-30 19:23:23 +0000 (Fri, 30 Jan 2009)

Log Message:
-----------
Updating project files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2499
          http://w3af.svn.sourceforge.net/w3af/?rev=2499&view=rev
Author:   andresriancho
Date:     2009-01-30 19:25:55 +0000 (Fri, 30 Jan 2009)

Log Message:
-----------
Ignoring py[co] files.

Property Changed:
----------------
    trunk/
    trunk/locales/
    trunk/locales/es/
    trunk/locales/es/LC_MESSAGES/
    trunk/locales/ru/
    trunk/locales/ru/LC_MESSAGES/
    trunk/mozilla-extension/
    trunk/mozilla-extension/xpi/
    trunk/mozilla-extension/xpi/content/
    trunk/plugins/attack/payloads/code/
    trunk/plugins/attack/payloads/webshell/
    trunk/plugins/attack/rfiProxy/
    trunk/plugins/discovery/oHmap/known.servers/
    trunk/readme/EN/
    trunk/readme/EN/gtkUiHTML/
    trunk/readme/EN/gtkui-graphs/
    trunk/readme/FR/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2522
          http://w3af.svn.sourceforge.net/w3af/?rev=2522&view=rev
Author:   andresriancho
Date:     2009-02-02 12:27:59 +0000 (Mon, 02 Feb 2009)

Log Message:
-----------
New script to test the features of strangeHTTPCode plugin.

Modified Paths:
--------------
    trunk/plugins/grep/strangeHTTPCode.py

Added Paths:
-----------
    trunk/scripts/script-strange_http_code.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2543
          http://w3af.svn.sourceforge.net/w3af/?rev=2543&view=rev
Author:   andresriancho
Date:     2009-02-03 17:40:15 +0000 (Tue, 03 Feb 2009)

Log Message:
-----------
Adding the wizard directory.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2558
          http://w3af.svn.sourceforge.net/w3af/?rev=2558&view=rev
Author:   andresriancho
Date:     2009-02-06 13:12:31 +0000 (Fri, 06 Feb 2009)

Log Message:
-----------
Updating the project files to add the Fast HTTP basic auth handler.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2581
          http://w3af.svn.sourceforge.net/w3af/?rev=2581&view=rev
Author:   andresriancho
Date:     2009-02-13 12:25:42 +0000 (Fri, 13 Feb 2009)

Log Message:
-----------
Adding new files used in the bug reporting.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2655
          http://w3af.svn.sourceforge.net/w3af/?rev=2655&view=rev
Author:   andresriancho
Date:     2009-02-23 00:08:14 +0000 (Mon, 23 Feb 2009)

Log Message:
-----------
Fixed a lot of memory issues by using in-disk "lists" with shelve.

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/ui/consoleUi/consoleUi.py
    trunk/core/ui/consoleUi/rootMenu.py
    trunk/core/ui/gtkUi/main.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/objects.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2676
          http://w3af.svn.sourceforge.net/w3af/?rev=2676&view=rev
Author:   andresriancho
Date:     2009-02-27 14:45:45 +0000 (Fri, 27 Feb 2009)

Log Message:
-----------
Updating eric4 project files.

Modified Paths:
--------------
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2681
          http://w3af.svn.sourceforge.net/w3af/?rev=2681&view=rev
Author:   andresriancho
Date:     2009-02-27 16:13:40 +0000 (Fri, 27 Feb 2009)

Log Message:
-----------
New wordnet plugin and dependencies.

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/plugins/discovery/wordnet.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2751
          http://w3af.svn.sourceforge.net/w3af/?rev=2751&view=rev
Author:   andresriancho
Date:     2009-03-09 21:40:09 +0000 (Mon, 09 Mar 2009)

Log Message:
-----------
Highlighting of vulnerable section of HTTP response.

Modified Paths:
--------------
    trunk/core/data/kb/info.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/audit/mxInjection.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2755
          http://w3af.svn.sourceforge.net/w3af/?rev=2755&view=rev
Author:   andresriancho
Date:     2009-03-11 13:03:22 +0000 (Wed, 11 Mar 2009)

Log Message:
-----------
Updated project files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2756
          http://w3af.svn.sourceforge.net/w3af/?rev=2756&view=rev
Author:   andresriancho
Date:     2009-03-11 13:43:46 +0000 (Wed, 11 Mar 2009)

Log Message:
-----------
Adding support for duplicated parameter names. Example:
http://host.tld/index.do?id=1&id=3&id=-2

Modified Paths:
--------------
    trunk/core/data/dc/cookie.py
    trunk/core/data/dc/dataContainer.py
    trunk/core/data/dc/form.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantCookie.py
    trunk/core/data/options/option.py
    trunk/core/data/parsers/encode_decode.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/url/handlers/MultipartPostHandler.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/xss.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/googleSets.py
    trunk/plugins/discovery/hmap.py
    trunk/plugins/discovery/spiderMan.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/strangeParameters.py
    trunk/scripts/script-urlWithPort.w3af
    trunk/scripts/script-web_spider.w3af

Added Paths:
-----------
    trunk/scripts/script-duplicated_parameter_names.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2767
          http://w3af.svn.sourceforge.net/w3af/?rev=2767&view=rev
Author:   nrotta
Date:     2009-03-16 03:54:41 +0000 (Mon, 16 Mar 2009)

Log Message:
-----------
***

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t

Added Paths:
-----------
    trunk/plugins/discovery/slash.py
    trunk/scripts/script-slash.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2770
          http://w3af.svn.sourceforge.net/w3af/?rev=2770&view=rev
Author:   andresriancho
Date:     2009-03-16 10:58:07 +0000 (Mon, 16 Mar 2009)

Log Message:
-----------
Some simple changes.

Modified Paths:
--------------
    trunk/plugins/discovery/webSpider.py
    trunk/scripts/script-xml_output.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2772
          http://w3af.svn.sourceforge.net/w3af/?rev=2772&view=rev
Author:   andresriancho
Date:     2009-03-19 00:00:32 +0000 (Thu, 19 Mar 2009)

Log Message:
-----------
Fixing bug reported by James Cole in the mailing list: "AttributeError: 'queryString' object has no attribute 'split'"

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseGrepPlugin.py
    trunk/plugins/grep/passwordProfiling.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2776
          http://w3af.svn.sourceforge.net/w3af/?rev=2776&view=rev
Author:   aberezh
Date:     2009-03-21 16:10:32 +0000 (Sat, 21 Mar 2009)

Log Message:
-----------
Modified vuln highligting (several colors, depending on the severity).
Changed the grep plugins to support it.

Modified Paths:
--------------
    trunk/core/data/kb/info.py
    trunk/core/ui/consoleUi/plugins.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/domXss.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/hashFind.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/strangeHTTPCode.py
    trunk/plugins/grep/strangeHeaders.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/grep/svnUsers.py

Property Changed:
----------------
    trunk/core/ui/gtkUi/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2879
          http://w3af.svn.sourceforge.net/w3af/?rev=2879&view=rev
Author:   kdenver
Date:     2009-06-02 18:21:41 +0000 (Tue, 02 Jun 2009)

Log Message:
-----------
Moved the urlParameter feature from the webSpider plugin to the http-settings, making it a core feature.

Modified Paths:
--------------
    trunk/core/data/url/urlOpenerSettings.py
    trunk/plugins/discovery/webSpider.py

Added Paths:
-----------
    trunk/core/data/url/handlers/urlParameterHandler.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2885
          http://w3af.svn.sourceforge.net/w3af/?rev=2885&view=rev
Author:   andresriancho
Date:     2009-06-04 12:49:36 +0000 (Thu, 04 Jun 2009)

Log Message:
-----------
Removed debugging print statement from plugin.
Adding test script.

Modified Paths:
--------------
    trunk/plugins/discovery/content_negotiation.py

Added Paths:
-----------
    trunk/scripts/script-content_negotiation.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2898
          http://w3af.svn.sourceforge.net/w3af/?rev=2898&view=rev
Author:   andresriancho
Date:     2009-06-06 14:24:42 +0000 (Sat, 06 Jun 2009)

Log Message:
-----------
Fixing "id > 222 matches id == 22 in HTTP log", bug #2742710.
https://sourceforge.net/tracker/index.php?func=detail&aid=2742710&group_id=170274&atid=853652

This bug was a serious design problem. I was using TEXT to store every little pirce of data. Now, I require the database creator to
send a list of column names and types. With this, I'm more efficient in disk space (a little bit), and faster.

Modified Paths:
--------------
    trunk/core/data/db/persist.py
    trunk/core/data/db/reqResDBHandler.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2908
          http://w3af.svn.sourceforge.net/w3af/?rev=2908&view=rev
Author:   andresriancho
Date:     2009-06-11 11:30:50 +0000 (Thu, 11 Jun 2009)

Log Message:
-----------
Added wordpress_fingerprint.py

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2917
          http://w3af.svn.sourceforge.net/w3af/?rev=2917&view=rev
Author:   andresriancho
Date:     2009-06-20 19:31:32 +0000 (Sat, 20 Jun 2009)

Log Message:
-----------
Removing discovery.crossDomain and adding a more complete plugin, discovery.ria_enumerator.
Thanks to jrose <jrose@...> for his amazing code.

Modified Paths:
--------------
    trunk/profiles/OWASP_TOP10.pw3af

Added Paths:
-----------
    trunk/plugins/discovery/ria_enumerator/
    trunk/plugins/discovery/ria_enumerator/common_filenames.db
    trunk/plugins/discovery/ria_enumerator.py

Removed Paths:
-------------
    trunk/plugins/discovery/crossDomain.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2923
          http://w3af.svn.sourceforge.net/w3af/?rev=2923&view=rev
Author:   andresriancho
Date:     2009-06-23 19:21:16 +0000 (Tue, 23 Jun 2009)

Log Message:
-----------
Moving the external library, to the correct place.

Modified Paths:
--------------
    trunk/core/data/url/handlers/HTTPNtlmAuthHandler.py
    trunk/core/data/url/urlOpenerSettings.py

Added Paths:
-----------
    trunk/extlib/ntlm/
    trunk/extlib/ntlm/U32.py
    trunk/extlib/ntlm/__init__.py
    trunk/extlib/ntlm/des.py
    trunk/extlib/ntlm/des_c.py
    trunk/extlib/ntlm/des_data.py
    trunk/extlib/ntlm/ntlm.py

Removed Paths:
-------------
    trunk/core/data/url/handlers/U32.py
    trunk/core/data/url/handlers/des.py
    trunk/core/data/url/handlers/des_c.py
    trunk/core/data/url/handlers/des_data.py
    trunk/core/data/url/handlers/ntlm.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2934
          http://w3af.svn.sourceforge.net/w3af/?rev=2934&view=rev
Author:   andresriancho
Date:     2009-06-30 13:35:39 +0000 (Tue, 30 Jun 2009)

Log Message:
-----------
Adding l337 password support to the bruteforcing plugins.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseBruteforcePlugin.py
    trunk/core/controllers/bruteforce/bruteforcer.py
    trunk/core/controllers/misc/make_leet.py
    trunk/plugins/bruteforce/basicAuthBrute.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2942
          http://w3af.svn.sourceforge.net/w3af/?rev=2942&view=rev
Author:   andresriancho
Date:     2009-07-10 13:24:18 +0000 (Fri, 10 Jul 2009)

Log Message:
-----------
Adding dir_bruter plugin by Jon Rose.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t

Added Paths:
-----------
    trunk/plugins/discovery/dir_bruter/
    trunk/plugins/discovery/dir_bruter.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2944
          http://w3af.svn.sourceforge.net/w3af/?rev=2944&view=rev
Author:   andresriancho
Date:     2009-07-12 18:00:09 +0000 (Sun, 12 Jul 2009)

Log Message:
-----------
Commiting some interesting changes which make the dir_bruter a lot faster.

Modified Paths:
--------------
    trunk/plugins/discovery/dir_bruter.py

Added Paths:
-----------
    trunk/plugins/discovery/dir_bruter/common_dirs_small.db
    trunk/scripts/script-dir_bruter.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2960
          http://w3af.svn.sourceforge.net/w3af/?rev=2960&view=rev
Author:   andresriancho
Date:     2009-07-18 16:55:17 +0000 (Sat, 18 Jul 2009)

Log Message:
-----------
Adding a new empty profile to the profile list.
The empty profile is in the first position in the profile list, so users can always go back to it in order to start a "clean profile".
Fixed a little user interface problem with the target url.

Modified Paths:
--------------
    trunk/core/ui/gtkUi/entries.py
    trunk/core/ui/gtkUi/pluginconfig.py
    trunk/core/ui/gtkUi/profiles.py

Added Paths:
-----------
    trunk/profiles/empty_profile.pw3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2965
          http://w3af.svn.sourceforge.net/w3af/?rev=2965&view=rev
Author:   andresriancho
Date:     2009-07-19 16:51:44 +0000 (Sun, 19 Jul 2009)

Log Message:
-----------
Adding files to the eric4 project.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2995
          http://w3af.svn.sourceforge.net/w3af/?rev=2995&view=rev
Author:   andresriancho
Date:     2009-08-09 14:39:30 +0000 (Sun, 09 Aug 2009)

Log Message:
-----------
New import results features, now with Burp and WebScarab!
Thanks to Jon Rose and Patrick Hof.

Modified Paths:
--------------
    trunk/plugins/discovery/importResults.py
    trunk/scripts/script-import_results.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 2999
          http://w3af.svn.sourceforge.net/w3af/?rev=2999&view=rev
Author:   andresriancho
Date:     2009-08-12 12:08:16 +0000 (Wed, 12 Aug 2009)

Log Message:
-----------
Fixing bugs in wordpress_fingerprint, and adding test script.

Modified Paths:
--------------
    trunk/plugins/discovery/wordpress_fingerprint.py

Added Paths:
-----------
    trunk/scripts/script-wordpress_fingerprint.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3057
          http://w3af.svn.sourceforge.net/w3af/?rev=3057&view=rev
Author:   andresriancho
Date:     2009-10-16 12:32:42 +0000 (Fri, 16 Oct 2009)

Log Message:
-----------
Commiting new w3af plugin that identifies web servers and applications using favicon.ico
Thanks go to Vlatko Kosturjak <kost@...> for developing and testing the plugin.

Added Paths:
-----------
    trunk/plugins/discovery/favicon/
    trunk/plugins/discovery/favicon/favicon-md5
    trunk/plugins/discovery/favicon_identification.py
    trunk/scripts/script-favicon_identification.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3062
          http://w3af.svn.sourceforge.net/w3af/?rev=3062&view=rev
Author:   andresriancho
Date:     2009-10-16 20:26:39 +0000 (Fri, 16 Oct 2009)

Log Message:
-----------
Changed the 404 detection method. Now it is something overly simplified that will (i hope) enhance the quality of the whole framework.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py
    trunk/core/data/url/urlOpenerSettings.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/audit_high_risk.pw3af
    trunk/profiles/bruteforce.pw3af
    trunk/profiles/empty_profile.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/profiles/sitemap.pw3af
    trunk/profiles/web_infrastructure.pw3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3074
          http://w3af.svn.sourceforge.net/w3af/?rev=3074&view=rev
Author:   andresriancho
Date:     2009-10-18 00:00:17 +0000 (Sun, 18 Oct 2009)

Log Message:
-----------
Updating project files, after adding a couple of new source code files.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3078
          http://w3af.svn.sourceforge.net/w3af/?rev=3078&view=rev
Author:   andresriancho
Date:     2009-10-18 00:10:48 +0000 (Sun, 18 Oct 2009)

Log Message:
-----------
Not really my style of commiting... but here it goes:

	- Removed the getSize parameter. Now the size is tested every time, and without having to 
	request it, or even care about having to perform an extra HEAD request to do it. This affects
	most of the discovery plugins that you see in this commit.

	- MAJOR speed up in the web_spider, that now performs the crawling process MUCH faster.

	- Changed the abstractParser a little bit, to remove common false positives that were making
	w3af perform extra (and unneccesary) requests.

Now that this seems to be working ok, I still need to see how to speed up things by working with threads.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseDiscoveryPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/discovery/MSNSpider.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/yahooSiteExplorer.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3080
          http://w3af.svn.sourceforge.net/w3af/?rev=3080&view=rev
Author:   andresriancho
Date:     2009-10-18 15:16:55 +0000 (Sun, 18 Oct 2009)

Log Message:
-----------
Fixed htmlOutput bugs reported by Raul. Thanks!

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/parsers/urlParser.py
    trunk/plugins/output/htmlFile.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3085
          http://w3af.svn.sourceforge.net/w3af/?rev=3085&view=rev
Author:   andresriancho
Date:     2009-10-18 18:37:49 +0000 (Sun, 18 Oct 2009)

Log Message:
-----------
A better way of handling 401 responses without ending up in a loop.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py
    trunk/plugins/discovery/webSpider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3096
          http://w3af.svn.sourceforge.net/w3af/?rev=3096&view=rev
Author:   andresriancho
Date:     2009-10-21 12:36:33 +0000 (Wed, 21 Oct 2009)

Log Message:
-----------
Added the script provided by shatter@... and reviewed by Raul Siles.
Minor modifications by me, in order to make it more "framework friendly" :)

Added Paths:
-----------
    trunk/plugins/discovery/xssedDotCom.py
    trunk/scripts/script-xssed_dot_com.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3109
          http://w3af.svn.sourceforge.net/w3af/?rev=3109&view=rev
Author:   andresriancho
Date:     2009-10-25 16:20:28 +0000 (Sun, 25 Oct 2009)

Log Message:
-----------
Adding new files to the project.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3127
          http://w3af.svn.sourceforge.net/w3af/?rev=3127&view=rev
Author:   andresriancho
Date:     2009-10-29 17:41:50 +0000 (Thu, 29 Oct 2009)

Log Message:
-----------
Changed the way the discovery plugin calls the library.
Changed the library a little bit in order to have better error handling.

Modified Paths:
--------------
    trunk/core/data/searchEngines/yahooSiteExplorer.py
    trunk/plugins/discovery/yahooSiteExplorer.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3132
          http://w3af.svn.sourceforge.net/w3af/?rev=3132&view=rev
Author:   andresriancho
Date:     2009-10-30 16:08:15 +0000 (Fri, 30 Oct 2009)

Log Message:
-----------
Adding some files to the eric project.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3144
          http://w3af.svn.sourceforge.net/w3af/?rev=3144&view=rev
Author:   andresriancho
Date:     2009-11-03 16:52:53 +0000 (Tue, 03 Nov 2009)

Log Message:
-----------
Changing the way in which the "is_404" function was propagated. The kb wasn't a good idea.
Also, I can now use it "outsite the framework".

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/favicon_identification.py
    trunk/plugins/discovery/findBackdoor.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/oracleDiscovery.py
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/ria_enumerator.py
    trunk/plugins/discovery/robotsReader.py
    trunk/plugins/discovery/serverStatus.py
    trunk/plugins/discovery/sitemapReader.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wordpress_fingerprint.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/lang.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/motw.py
    trunk/plugins/grep/newline.py
    trunk/plugins/grep/passwordProfiling.py

Added Paths:
-----------
    trunk/core/controllers/coreHelpers/fingerprint_404.py

Removed Paths:
-------------
    trunk/core/controllers/coreHelpers/fingerprint404Page.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3150
          http://w3af.svn.sourceforge.net/w3af/?rev=3150&view=rev
Author:   andresriancho
Date:     2009-11-04 12:50:03 +0000 (Wed, 04 Nov 2009)

Log Message:
-----------
Updating project.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3152
          http://w3af.svn.sourceforge.net/w3af/?rev=3152&view=rev
Author:   andresriancho
Date:     2009-11-04 18:38:20 +0000 (Wed, 04 Nov 2009)

Log Message:
-----------
Enhanced the detection of the local ip address, which is needed by some plugins when creating reverse connections.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/w3afCore.py
    trunk/plugins/attack/rfiProxy.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3163
          http://w3af.svn.sourceforge.net/w3af/?rev=3163&view=rev
Author:   andresriancho
Date:     2009-11-04 23:07:53 +0000 (Wed, 04 Nov 2009)

Log Message:
-----------
Merging back all the cool features that Taras has developed over the past months.

Modified Paths:
--------------
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/proxy.py
    trunk/core/controllers/w3afException.py
    trunk/core/data/request/httpQsRequest.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/ui/gtkUi/craftedRequests.py
    trunk/core/ui/gtkUi/httpLogTab.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/proxywin.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/output/gtkOutput.py

Added Paths:
-----------
    trunk/core/data/db/db.py
    trunk/core/data/db/history.py
    trunk/extlib/gtkcodebuffer/
    trunk/extlib/gtkcodebuffer/__init__.py
    trunk/extlib/gtkcodebuffer/gtkcodebuffer.py
    trunk/extlib/gtkcodebuffer/syntax/
    trunk/extlib/gtkcodebuffer/syntax/python.xml
    trunk/extlib/gtkcodebuffer/syntax/xml.xml

Removed Paths:
-------------
    trunk/core/data/db/persist.py
    trunk/core/data/db/reqResDBHandler.py
    trunk/extlib/gtkcodebuffer/__init__.py
    trunk/extlib/gtkcodebuffer/gtkcodebuffer.py
    trunk/extlib/gtkcodebuffer/syntax/
    trunk/extlib/gtkcodebuffer/syntax/python.xml
    trunk/extlib/gtkcodebuffer/syntax/xml.xml


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3196
          http://w3af.svn.sourceforge.net/w3af/?rev=3196&view=rev
Author:   andresriancho
Date:     2009-11-15 16:48:43 +0000 (Sun, 15 Nov 2009)

Log Message:
-----------
Completed JSON support.

Modified Paths:
--------------
    trunk/core/data/fuzzer/fuzzer.py
    trunk/plugins/audit/generic.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3206
          http://w3af.svn.sourceforge.net/w3af/?rev=3206&view=rev
Author:   andresriancho
Date:     2009-11-19 06:31:34 +0000 (Thu, 19 Nov 2009)

Log Message:
-----------
Using a different port for the exploitation process.

Modified Paths:
--------------
    trunk/core/data/constants/w3afPorts.py
    trunk/plugins/attack/remoteFileIncludeShell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3212
          http://w3af.svn.sourceforge.net/w3af/?rev=3212&view=rev
Author:   andresriancho
Date:     2009-11-22 15:43:47 +0000 (Sun, 22 Nov 2009)

Log Message:
-----------
Adding new plugin.

Added Paths:
-----------
    trunk/plugins/grep/strangeReason.py
    trunk/scripts/script-strange_reason_message.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3229
          http://w3af.svn.sourceforge.net/w3af/?rev=3229&view=rev
Author:   andresriancho
Date:     2009-12-12 13:58:52 +0000 (Sat, 12 Dec 2009)

Log Message:
-----------
Updating the project. I included urllist_txt plugin among other things.

Modified Paths:
--------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3240
          http://w3af.svn.sourceforge.net/w3af/?rev=3240&view=rev
Author:   andresriancho
Date:     2009-12-20 21:46:14 +0000 (Sun, 20 Dec 2009)

Log Message:
-----------
Making a greater effort to guess the correct parameters to perform form bruteforce.

Modified Paths:
--------------
    trunk/core/data/dc/form.py
    trunk/plugins/bruteforce/formAuthBrute.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3244
          http://w3af.svn.sourceforge.net/w3af/?rev=3244&view=rev
Author:   andresriancho
Date:     2009-12-21 02:20:00 +0000 (Mon, 21 Dec 2009)

Log Message:
-----------
I feel comfortable enough to enable threads by default.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/audit_high_risk.pw3af
    trunk/profiles/bruteforce.pw3af
    trunk/profiles/empty_profile.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/profiles/sitemap.pw3af
    trunk/profiles/web_infrastructure.pw3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3257
          http://w3af.svn.sourceforge.net/w3af/?rev=3257&view=rev
Author:   andresriancho
Date:     2009-12-25 20:36:43 +0000 (Fri, 25 Dec 2009)

Log Message:
-----------
Adding more thread controls to avoid duplicate vulnerability reports.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/redos.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xss.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3370
          http://w3af.svn.sourceforge.net/w3af/?rev=3370&view=rev
Author:   andresriancho
Date:     2010-02-12 16:02:01 +0000 (Fri, 12 Feb 2010)

Log Message:
-----------
Password only forms are now supported.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/bruteforce/bruteforcer.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/scripts/script-discoveryBruteforceFormLoop.w3af
    trunk/scripts/script-formLoginBrute-threads.w3af
    trunk/scripts/script-formLoginBrute.w3af

Added Paths:
-----------
    trunk/scripts/script-form_login_password_only.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3388
          http://w3af.svn.sourceforge.net/w3af/?rev=3388&view=rev
Author:   andresriancho
Date:     2010-02-17 02:09:54 +0000 (Wed, 17 Feb 2010)

Log Message:
-----------
Adding the variant concept. I still need to add it to the core.

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/discovery/webSpider.py
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t

Added Paths:
-----------
    trunk/core/data/request/variant_identification.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3394
          http://w3af.svn.sourceforge.net/w3af/?rev=3394&view=rev
Author:   andresriancho
Date:     2010-02-17 19:32:39 +0000 (Wed, 17 Feb 2010)

Log Message:
-----------
Moving an interesting function to the core.

Modified Paths:
--------------
    trunk/plugins/grep/codeDisclosure.py

Added Paths:
-----------
    trunk/core/controllers/misc/is_source_file.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3404
          http://w3af.svn.sourceforge.net/w3af/?rev=3404&view=rev
Author:   andresriancho
Date:     2010-02-21 00:37:04 +0000 (Sun, 21 Feb 2010)

Log Message:
-----------
Removing a useless plugin.

Modified Paths:
--------------
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af

Removed Paths:
-------------
    trunk/plugins/grep/newline.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3407
          http://w3af.svn.sourceforge.net/w3af/?rev=3407&view=rev
Author:   andresriancho
Date:     2010-02-21 16:21:36 +0000 (Sun, 21 Feb 2010)

Log Message:
-----------
Fixing bug #2954706, "exception trying to write output file".
https://sourceforge.net/tracker/index.php?func=detail&aid=2954706&group_id=170274&atid=853652

Now the framework reports that specific error in a nicer way, and handles output plugins errors
in such a way that the "broken" plugin is removed from the list of plugins to be run during
om.out.XYZ().

Modified Paths:
--------------
    trunk/core/controllers/outputManager.py
    trunk/core/data/request/wsPostDataRequest.py
    trunk/plugins/output/htmlFile.py
    trunk/plugins/output/textFile.py
    trunk/plugins/output/xmlFile.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3436
          http://w3af.svn.sourceforge.net/w3af/?rev=3436&view=rev
Author:   oxdef
Date:     2010-03-27 13:14:47 +0000 (Sat, 27 Mar 2010)

Log Message:
-----------
Migrate from MSN search engine to Bing

Added Paths:
-----------
    trunk/core/data/searchEngines/bing.py
    trunk/plugins/discovery/BingSpider.py
    trunk/plugins/discovery/fingerBing.py
    trunk/scripts/script-bing_spider.w3af
    trunk/scripts/script-finger_Bing.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3437
          http://w3af.svn.sourceforge.net/w3af/?rev=3437&view=rev
Author:   oxdef
Date:     2010-03-27 13:16:21 +0000 (Sat, 27 Mar 2010)

Log Message:
-----------
Migrate from MSN search engine to Bing

Removed Paths:
-------------
    trunk/core/data/searchEngines/msn.py
    trunk/plugins/discovery/MSNSpider.py
    trunk/plugins/discovery/fingerMSN.py
    trunk/scripts/script-finger_MSN.w3af
    trunk/scripts/script-msn_spider.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3439
          http://w3af.svn.sourceforge.net/w3af/?rev=3439&view=rev
Author:   andresriancho
Date:     2010-03-28 17:27:24 +0000 (Sun, 28 Mar 2010)

Log Message:
-----------
Changing the name of the plugin a little bit. Two reasons:
	- BingSpider started with a capital letter, this "breaks" the A-Z order in pyGTK and shows it at the top
	- I'm trying to start naming all variables and plugins with lowercase and underscore.

Modified Paths:
--------------
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/scripts/script-bing_spider.w3af

Added Paths:
-----------
    trunk/bing_spider.py

Removed Paths:
-------------
    trunk/plugins/discovery/BingSpider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3440
          http://w3af.svn.sourceforge.net/w3af/?rev=3440&view=rev
Author:   andresriancho
Date:     2010-03-28 17:28:14 +0000 (Sun, 28 Mar 2010)

Log Message:
-----------
Bleh.

Added Paths:
-----------
    trunk/plugins/discovery/bing_spider.py

Removed Paths:
-------------
    trunk/bing_spider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3444
          http://w3af.svn.sourceforge.net/w3af/?rev=3444&view=rev
Author:   andresriancho
Date:     2010-03-28 18:57:42 +0000 (Sun, 28 Mar 2010)

Log Message:
-----------
Code clean up. Removing all references to the old maxDepth and maxIterations limits.
Ticket #159993.

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/scripts/script-web_spider-GET_directory.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3448
          http://w3af.svn.sourceforge.net/w3af/?rev=3448&view=rev
Author:   andresriancho
Date:     2010-03-28 22:10:41 +0000 (Sun, 28 Mar 2010)

Log Message:
-----------
Ticket #159993. Final changes.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/w3afCore.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/audit_high_risk.pw3af
    trunk/profiles/bruteforce.pw3af
    trunk/profiles/empty_profile.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/profiles/sitemap.pw3af
    trunk/profiles/web_infrastructure.pw3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3450
          http://w3af.svn.sourceforge.net/w3af/?rev=3450&view=rev
Author:   andresriancho
Date:     2010-03-30 22:14:01 +0000 (Tue, 30 Mar 2010)

Log Message:
-----------
Fixing Ticket #139462 : "spiderman incorrect URL parsing"
https://sourceforge.net/apps/trac/w3af/ticket/160006

Modified Paths:
--------------
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/proxy.py
    trunk/plugins/discovery/spiderMan.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3508
          http://w3af.svn.sourceforge.net/w3af/?rev=3508&view=rev
Author:   andresriancho
Date:     2010-08-16 20:14:44 +0000 (Mon, 16 Aug 2010)

Log Message:
-----------
Performance enhancements + "DOM" usage.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/data/parsers/documentParser.py
    trunk/core/data/parsers/dpCache.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/parsers/wmlParser.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py
    trunk/plugins/grep/wsdlGreper.py
    trunk/w3af.e4p

Added Paths:
-----------
    trunk/core/controllers/misc/is_ip_address.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3509
          http://w3af.svn.sourceforge.net/w3af/?rev=3509&view=rev
Author:   andresriancho
Date:     2010-08-16 21:21:19 +0000 (Mon, 16 Aug 2010)

Log Message:
-----------
Second try for a performance enhancement.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3529
          http://w3af.svn.sourceforge.net/w3af/?rev=3529&view=rev
Author:   andresriancho
Date:     2010-09-06 15:07:32 +0000 (Mon, 06 Sep 2010)

Log Message:
-----------
First commit of the web application payloads.
Merging Lucas' work from the web-payloads branch.
This code still needs some review, but it's a good start.

Modified Paths:
--------------
    trunk/core/data/kb/shell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/payloads/payloads.py
    trunk/plugins/audit/localFileInclude.py
    trunk/scripts/script-local_file_include-payload-debug.w3af
    trunk/scripts/script-local_file_include-payload.w3af

Added Paths:
-----------
    trunk/plugins/attack/payloads/base_payload.py
    trunk/plugins/attack/payloads/decorators/
    trunk/plugins/attack/payloads/decorators/__init__.py
    trunk/plugins/attack/payloads/decorators/read_decorator.py
    trunk/plugins/attack/payloads/misc/
    trunk/plugins/attack/payloads/misc/__init__.py
    trunk/plugins/attack/payloads/misc/file_crawler.py
    trunk/plugins/attack/payloads/misc/get_files.py
    trunk/plugins/attack/payloads/payload_handler.py
    trunk/plugins/attack/payloads/payloads/
    trunk/plugins/attack/payloads/payloads/__init__.py
    trunk/plugins/attack/payloads/payloads/apache_config_directory.py
    trunk/plugins/attack/payloads/payloads/apache_config_files.py
    trunk/plugins/attack/payloads/payloads/apache_htaccess.py
    trunk/plugins/attack/payloads/payloads/apache_modsecurity.py
    trunk/plugins/attack/payloads/payloads/apache_root_directory.py
    trunk/plugins/attack/payloads/payloads/apache_run_group.py
    trunk/plugins/attack/payloads/payloads/apache_run_user.py
    trunk/plugins/attack/payloads/payloads/apache_ssl.py
    trunk/plugins/attack/payloads/payloads/apache_version.py
    trunk/plugins/attack/payloads/payloads/arp_cache.py
    trunk/plugins/attack/payloads/payloads/config_files.py
    trunk/plugins/attack/payloads/payloads/cpu_info.py
    trunk/plugins/attack/payloads/payloads/current_user.py
    trunk/plugins/attack/payloads/payloads/dhcp_config_files.py
    trunk/plugins/attack/payloads/payloads/dns_config_files.py
    trunk/plugins/attack/payloads/payloads/domainname.py
    trunk/plugins/attack/payloads/payloads/filesystem.py
    trunk/plugins/attack/payloads/payloads/firefox_stealer.py
    trunk/plugins/attack/payloads/payloads/ftp_config_files.py
    trunk/plugins/attack/payloads/payloads/gcc_version.py
    trunk/plugins/attack/payloads/payloads/hostname.py
    trunk/plugins/attack/payloads/payloads/hosts.py
    trunk/plugins/attack/payloads/payloads/kerberos_config_files.py
    trunk/plugins/attack/payloads/payloads/kernel_version.py
    trunk/plugins/attack/payloads/payloads/ldap_config_files.py
    trunk/plugins/attack/payloads/payloads/list_kernel_modules.py
    trunk/plugins/attack/payloads/payloads/list_processes.py
    trunk/plugins/attack/payloads/payloads/log_reader.py
    trunk/plugins/attack/payloads/payloads/mail_config_files.py
    trunk/plugins/attack/payloads/payloads/mysql_config.py
    trunk/plugins/attack/payloads/payloads/mysql_config_directory.py
    trunk/plugins/attack/payloads/payloads/netcat_installed.py
    trunk/plugins/attack/payloads/payloads/os_fingerprint.py
    trunk/plugins/attack/payloads/payloads/read_mail.py
    trunk/plugins/attack/payloads/payloads/root_login_allowed.py
    trunk/plugins/attack/payloads/payloads/rootkit_hunter.py
    trunk/plugins/attack/payloads/payloads/route.py
    trunk/plugins/attack/payloads/payloads/running_honeypot.py
    trunk/plugins/attack/payloads/payloads/running_vm.py
    trunk/plugins/attack/payloads/payloads/smb_config_files.py
    trunk/plugins/attack/payloads/payloads/ssh_config_files.py
    trunk/plugins/attack/payloads/payloads/ssh_version.py
    trunk/plugins/attack/payloads/payloads/svn_config_files.py
    trunk/plugins/attack/payloads/payloads/tcp.py
    trunk/plugins/attack/payloads/payloads/udp.py
    trunk/plugins/attack/payloads/payloads/uptime.py
    trunk/plugins/attack/payloads/payloads/users_name.py

Removed Paths:
-------------
    trunk/plugins/attack/payloads/decorators/__init__.py
    trunk/plugins/attack/payloads/decorators/read_decorator.py
    trunk/plugins/attack/payloads/misc/__init__.py
    trunk/plugins/attack/payloads/misc/file_crawler.py
    trunk/plugins/attack/payloads/misc/get_files.py
    trunk/plugins/attack/payloads/payloads/__init__.py
    trunk/plugins/attack/payloads/payloads/apache_config_directory.py
    trunk/plugins/attack/payloads/payloads/apache_config_files.py
    trunk/plugins/attack/payloads/payloads/apache_htaccess.py
    trunk/plugins/attack/payloads/payloads/apache_modsecurity.py
    trunk/plugins/attack/payloads/payloads/apache_root_directory.py
    trunk/plugins/attack/payloads/payloads/apache_run_group.py
    trunk/plugins/attack/payloads/payloads/apache_run_user.py
    trunk/plugins/attack/payloads/payloads/apache_ssl.py
    trunk/plugins/attack/payloads/payloads/apache_version.py
    trunk/plugins/attack/payloads/payloads/arp_cache.py
    trunk/plugins/attack/payloads/payloads/config_files.py
    trunk/plugins/attack/payloads/payloads/cpu_info.py
    trunk/plugins/attack/payloads/payloads/current_user.py
    trunk/plugins/attack/payloads/payloads/dhcp_config_files.py
    trunk/plugins/attack/payloads/payloads/dns_config_files.py
    trunk/plugins/attack/payloads/payloads/domainname.py
    trunk/plugins/attack/payloads/payloads/filesystem.py
    trunk/plugins/attack/payloads/payloads/firefox_stealer.py
    trunk/plugins/attack/payloads/payloads/ftp_config_files.py
    trunk/plugins/attack/payloads/payloads/gcc_version.py
    trunk/plugins/attack/payloads/payloads/hostname.py
    trunk/plugins/attack/payloads/payloads/hosts.py
    trunk/plugins/attack/payloads/payloads/kerberos_config_files.py
    trunk/plugins/attack/payloads/payloads/kernel_version.py
    trunk/plugins/attack/payloads/payloads/ldap_config_files.py
    trunk/plugins/attack/payloads/payloads/list_kernel_modules.py
    trunk/plugins/attack/payloads/payloads/list_processes.py
    trunk/plugins/attack/payloads/payloads/log_reader.py
    trunk/plugins/attack/payloads/payloads/mail_config_files.py
    trunk/plugins/attack/payloads/payloads/mysql_config.py
    trunk/plugins/attack/payloads/payloads/mysql_config_directory.py
    trunk/plugins/attack/payloads/payloads/netcat_installed.py
    trunk/plugins/attack/payloads/payloads/os_fingerprint.py
    trunk/plugins/attack/payloads/payloads/read_mail.py
    trunk/plugins/attack/payloads/payloads/root_login_allowed.py
    trunk/plugins/attack/payloads/payloads/rootkit_hunter.py
    trunk/plugins/attack/payloads/payloads/route.py
    trunk/plugins/attack/payloads/payloads/running_honeypot.py
    trunk/plugins/attack/payloads/payloads/running_vm.py
    trunk/plugins/attack/payloads/payloads/smb_config_files.py
    trunk/plugins/attack/payloads/payloads/ssh_config_files.py
    trunk/plugins/attack/payloads/payloads/ssh_version.py
    trunk/plugins/attack/payloads/payloads/svn_config_files.py
    trunk/plugins/attack/payloads/payloads/tcp.py
    trunk/plugins/attack/payloads/payloads/udp.py
    trunk/plugins/attack/payloads/payloads/uptime.py
    trunk/plugins/attack/payloads/payloads/users_name.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3532
          http://w3af.svn.sourceforge.net/w3af/?rev=3532&view=rev
Author:   andresriancho
Date:     2010-09-08 18:20:27 +0000 (Wed, 08 Sep 2010)

Log Message:
-----------
Removing eric files, as we now use Eclipse.

Removed Paths:
-------------
    trunk/w3af.e4p
    trunk/w3af.e4q
    trunk/w3af.e4t


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3536
          http://w3af.svn.sourceforge.net/w3af/?rev=3536&view=rev
Author:   javierandalia
Date:     2010-09-08 23:15:51 +0000 (Wed, 08 Sep 2010)

Log Message:
-----------
Fixed error introduced in last commit. Added test script.

Modified Paths:
--------------
    trunk/plugins/grep/ajax.py

Added Paths:
-----------
    trunk/scripts/script-ajax.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3545
          http://w3af.svn.sourceforge.net/w3af/?rev=3545&view=rev
Author:   andresriancho
Date:     2010-09-11 15:28:35 +0000 (Sat, 11 Sep 2010)

Log Message:
-----------
Tested and rewrote some sections of the apache payloads. Will keep working on this for the rest of the day, until all payloads are tested.

Modified Paths:
--------------
    trunk/core/data/kb/shell.py
    trunk/plugins/attack/payloads/decorators/read_decorator.py
    trunk/plugins/attack/payloads/payloads/apache_config_directory.py
    trunk/plugins/attack/payloads/payloads/apache_config_files.py
    trunk/plugins/attack/payloads/payloads/apache_htaccess.py
    trunk/plugins/attack/payloads/payloads/apache_modsecurity.py
    trunk/plugins/attack/payloads/payloads/apache_root_directory.py
    trunk/plugins/attack/payloads/payloads/apache_run_group.py
    trunk/plugins/attack/payloads/payloads/apache_run_user.py
    trunk/plugins/attack/payloads/payloads/users_name.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3561
          http://w3af.svn.sourceforge.net/w3af/?rev=3561&view=rev
Author:   andresriancho
Date:     2010-09-12 20:38:11 +0000 (Sun, 12 Sep 2010)

Log Message:
-----------
Refactoring of shell objects in order to get the power of the payloads in all exploits :)

Modified Paths:
--------------
    trunk/core/controllers/intrusionTools/execMethodHelpers.py
    trunk/core/data/kb/shell.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/core/ui/gtkUi/exploittab.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/payloads/base_payload.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xssBeef.py

Added Paths:
-----------
    trunk/core/controllers/intrusionTools/readMethodHelpers.py
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/read_shell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3565
          http://w3af.svn.sourceforge.net/w3af/?rev=3565&view=rev
Author:   andresriancho
Date:     2010-09-12 23:29:28 +0000 (Sun, 12 Sep 2010)

Log Message:
-----------
Refactoring attack plugins to use payloads.

Modified Paths:
--------------
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/read_shell.py
    trunk/core/data/kb/shell.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/sql_webshell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3568
          http://w3af.svn.sourceforge.net/w3af/?rev=3568&view=rev
Author:   andresriancho
Date:     2010-09-13 01:47:55 +0000 (Mon, 13 Sep 2010)

Log Message:
-----------
Adding the first plugin that uses the "execute" syscall.

Modified Paths:
--------------
    trunk/core/controllers/payloadTransfer/echoLnx.py
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/shell.py
    trunk/plugins/attack/payloads/base_payload.py
    trunk/plugins/attack/payloads/payload_handler.py
    trunk/plugins/attack/payloads/payloads/netcat_installed.py

Added Paths:
-----------
    trunk/plugins/attack/payloads/code/netcat
    trunk/plugins/attack/payloads/payloads/netcat_interactive_shell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3571
          http://w3af.svn.sourceforge.net/w3af/?rev=3571&view=rev
Author:   andresriancho
Date:     2010-09-14 19:44:46 +0000 (Tue, 14 Sep 2010)

Log Message:
-----------
Adding support for parameters in payloads.

Modified Paths:
--------------
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/read_shell.py
    trunk/core/data/kb/shell.py
    trunk/plugins/attack/payloads/base_payload.py
    trunk/plugins/attack/payloads/payload_handler.py
    trunk/plugins/attack/payloads/payloads/apache_config_directory.py
    trunk/plugins/attack/payloads/payloads/apache_config_files.py
    trunk/plugins/attack/payloads/payloads/apache_htaccess.py
    trunk/plugins/attack/payloads/payloads/apache_modsecurity.py
    trunk/plugins/attack/payloads/payloads/apache_root_directory.py
    trunk/plugins/attack/payloads/payloads/apache_run_group.py
    trunk/plugins/attack/payloads/payloads/apache_run_user.py
    trunk/plugins/attack/payloads/payloads/apache_ssl.py
    trunk/plugins/attack/payloads/payloads/apache_version.py
    trunk/plugins/attack/payloads/payloads/arp_cache.py
    trunk/plugins/attack/payloads/payloads/cpu_info.py
    trunk/plugins/attack/payloads/payloads/current_user.py
    trunk/plugins/attack/payloads/payloads/dhcp_config_files.py
    trunk/plugins/attack/payloads/payloads/dns_config_files.py
    trunk/plugins/attack/payloads/payloads/domainname.py
    trunk/plugins/attack/payloads/payloads/filesystem.py
    trunk/plugins/attack/payloads/payloads/firefox_stealer.py
    trunk/plugins/attack/payloads/payloads/ftp_config_files.py
    trunk/plugins/attack/payloads/payloads/gcc_version.py
    trunk/plugins/attack/payloads/payloads/get_hashes.py
    trunk/plugins/attack/payloads/payloads/hostname.py
    trunk/plugins/attack/payloads/payloads/hosts.py
    trunk/plugins/attack/payloads/payloads/iis_root_directory.py
    trunk/plugins/attack/payloads/payloads/interesting_files.py
    trunk/plugins/attack/payloads/payloads/kerberos_config_files.py
    trunk/plugins/attack/payloads/payloads/kernel_version.py
    trunk/plugins/attack/payloads/payloads/ldap_config_files.py
    trunk/plugins/attack/payloads/payloads/list_kernel_modules.py
    trunk/plugins/attack/payloads/payloads/list_processes.py
    trunk/plugins/attack/payloads/payloads/log_reader.py
    trunk/plugins/attack/payloads/payloads/mail_config_files.py
    trunk/plugins/attack/payloads/payloads/mysql_config.py
    trunk/plugins/attack/payloads/payloads/mysql_config_directory.py
    trunk/plugins/attack/payloads/payloads/netcat_installed.py
    trunk/plugins/attack/payloads/payloads/netcat_interactive_shell.py
    trunk/plugins/attack/payloads/payloads/os_fingerprint.py
    trunk/plugins/attack/payloads/payloads/read_mail.py
    trunk/plugins/attack/payloads/payloads/root_login_allowed.py
    trunk/plugins/attack/payloads/payloads/rootkit_hunter.py
    trunk/plugins/attack/payloads/payloads/route.py
    trunk/plugins/attack/payloads/payloads/running_honeypot.py
    trunk/plugins/attack/payloads/payloads/running_vm.py
    trunk/plugins/attack/payloads/payloads/smb_config_files.py
    trunk/plugins/attack/payloads/payloads/spider.py
    trunk/plugins/attack/payloads/payloads/ssh_config_files.py
    trunk/plugins/attack/payloads/payloads/ssh_version.py
    trunk/plugins/attack/payloads/payloads/svn_config_files.py
    trunk/plugins/attack/payloads/payloads/tcp.py
    trunk/plugins/attack/payloads/payloads/udp.py
    trunk/plugins/attack/payloads/payloads/uptime.py
    trunk/plugins/attack/payloads/payloads/users.py
    trunk/plugins/attack/payloads/payloads/users_config_files.py

Added Paths:
-----------
    trunk/plugins/attack/payloads/payloads/get_source_code.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3582
          http://w3af.svn.sourceforge.net/w3af/?rev=3582&view=rev
Author:   javierandalia
Date:     2010-09-22 20:32:25 +0000 (Wed, 22 Sep 2010)

Log Message:
-----------
Removing jsonpy dependency.
Adding simplejson dependency, which in the future won't be needed as Python2.6 inludes it by default.
Adding Google AJAX API support for searches.

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/jsonPostDataRequest.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py

Added Paths:
-----------
    trunk/extlib/simplejson/
    trunk/extlib/simplejson/__init__.py
    trunk/extlib/simplejson/decoder.py
    trunk/extlib/simplejson/encoder.py
    trunk/extlib/simplejson/ordered_dict.py
    trunk/extlib/simplejson/scanner.py
    trunk/extlib/simplejson/tool.py

Removed Paths:
-------------
    trunk/extlib/jsonpy/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3584
          http://w3af.svn.sourceforge.net/w3af/?rev=3584&view=rev
Author:   javierandalia
Date:     2010-09-24 20:24:26 +0000 (Fri, 24 Sep 2010)

Log Message:
-----------
Ticket #160064 - Included proposed enhancement. Also changed along the code calls to the 'relative_distance' function

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/controllers/misc/levenshtein.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/afd.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/domain_dot.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/fingerprint_os.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webSpider.py

Added Paths:
-----------
    trunk/core/controllers/misc/upper_bounds.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3585
          http://w3af.svn.sourceforge.net/w3af/?rev=3585&view=rev
Author:   javierandalia
Date:     2010-09-28 14:31:35 +0000 (Tue, 28 Sep 2010)

Log Message:
-----------
Ticket #160052 - Improved urlParser.normalizeURL. Improved re for URL matching.

Modified Paths:
--------------
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/grep/httpAuthDetect.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Javier,

    Excellent work! I'll add a couple of other things to your plate:

1- Please write a w3af wiki article (all text, no screenshots
required) about how to test the code that has doc-strings
2- Send an email with a small comment to the w3af-develop mailing list
letting them know about the doc-strings wiki page, and our intentions
of using doc-strings inside w3af.

Thanks,

On Tue, Sep 28, 2010 at 11:31 AM,  <javierandalia@...> wrote:
> Revision: 3585
>          http://w3af.svn.sourceforge.net/w3af/?rev=3585&view=rev
> Author:   javierandalia
> Date:     2010-09-28 14:31:35 +0000 (Tue, 28 Sep 2010)
>
> Log Message:
> -----------
> Ticket #160052 - Improved urlParser.normalizeURL. Improved re for URL matching.
>
> Modified Paths:
> --------------
>    trunk/core/data/parsers/abstractParser.py
>    trunk/core/data/parsers/sgmlParser.py
>    trunk/core/data/parsers/urlParser.py
>    trunk/core/data/url/httpResponse.py
>    trunk/plugins/grep/httpAuthDetect.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> Start uncovering the many advantages of virtual appliances
> and start using them to simplify application deployment and
> accelerate your shift to cloud computing.
> http://p.sf.net/sfu/novell-sfdev2dev
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Founder, Bonsai - Information Security
http://www.bonsai-sec.com/
http://w3af.sf.net/

Revision: 3586
          http://w3af.svn.sourceforge.net/w3af/?rev=3586&view=rev
Author:   javierandalia
Date:     2010-09-28 22:56:00 +0000 (Tue, 28 Sep 2010)

Log Message:
-----------
Ticket #160081 - html.getWords(...) changed, fixed the bug. Also improved the words retrieval algorithm.

Modified Paths:
--------------
    trunk/core/controllers/misc/timeout_function.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3600
          http://w3af.svn.sourceforge.net/w3af/?rev=3600&view=rev
Author:   andresriancho
Date:     2010-10-02 17:15:54 +0000 (Sat, 02 Oct 2010)

Log Message:
-----------
Moved _wasSent to fuzzableRequest, which is both a performance enhancement and a better OOP coding practice.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseGrepPlugin.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/strangeParameters.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3601
          http://w3af.svn.sourceforge.net/w3af/?rev=3601&view=rev
Author:   andresriancho
Date:     2010-10-02 23:56:08 +0000 (Sat, 02 Oct 2010)

Log Message:
-----------
Performance enhancement, replaced the regular expressions that removed the tags with a faster way with the DOM.

Modified Paths:
--------------
    trunk/core/data/url/httpResponse.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/passwordProfilingPlugins/html.py
    trunk/plugins/grep/ssn.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3628
          http://w3af.svn.sourceforge.net/w3af/?rev=3628&view=rev
Author:   andresriancho
Date:     2010-10-21 20:08:16 +0000 (Thu, 21 Oct 2010)

Log Message:
-----------
Refactored defineCut() into guess_cut() and define_exact_cut().
Now the code is much clearer and works better also.
TODO: We still need to test what happens when we don't have a header, a footer, or neither of them.

Modified Paths:
--------------
    trunk/core/controllers/misc/commonAttackMethods.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/audit/localFileInclude.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3630
          http://w3af.svn.sourceforge.net/w3af/?rev=3630&view=rev
Author:   andresriancho
Date:     2010-10-21 22:49:25 +0000 (Thu, 21 Oct 2010)

Log Message:
-----------
First stab at the vdaemon refactoring. I'm doing this in the trunk, because I know that not many users will notice that this changed :P
The objective of the refactoring is to use msfpayload and msfcli instead of msfweb where the user had to click around.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/vdaemon/lnxVd.py
    trunk/core/controllers/vdaemon/vdFactory.py
    trunk/core/controllers/vdaemon/vdaemon.py
    trunk/core/controllers/vdaemon/winVd.py
    trunk/core/data/kb/exec_shell.py
    trunk/w3af_console
    trunk/w3af_gui

Removed Paths:
-------------
    trunk/core/controllers/vdaemon/install.py
    trunk/core/controllers/vdaemon/w3af_vdaemon.rb


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3632
          http://w3af.svn.sourceforge.net/w3af/?rev=3632&view=rev
Author:   andresriancho
Date:     2010-10-22 23:53:36 +0000 (Fri, 22 Oct 2010)

Log Message:
-----------
Nice! Now we have a working version of "start vdaemon" that uses msfpayload and msfcli.
The next step is to refactor it as a web application security payload, and we're done :)

Modified Paths:
--------------
    trunk/core/controllers/intrusionTools/crontabHandler.py
    trunk/core/controllers/intrusionTools/execMethodHelpers.py
    trunk/core/controllers/payloadTransfer/echoLnx.py
    trunk/core/controllers/vdaemon/lnxVd.py
    trunk/core/controllers/vdaemon/vdFactory.py
    trunk/core/controllers/vdaemon/vdaemon.py
    trunk/core/data/kb/exec_shell.py
    trunk/plugins/attack/osCommandingShell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

List,

    I'm so happy about this change that I'm also sending it to this list.
Its basically somethin I had on my list for more than 8 months, and now
thanks to the preassure of having my talk at SecTor next week I'm finally
doing it.

    Before this patch, w3af-metasploit interaction was a messy thing that
required manual interaction and some "hidden" steps. Now it got much more
simple for the user and for us developers too. The code looks cleaner and
the feature is easier to understand for our users.

     In the next patch I'm going to refactor this as a web application
security payload and add more code documentation.

     The next step will be to write a wiki page explaining web application
security payloads and record a demo video (this migth take some time)

Regards,
--
Andres Riancho

El oct 22, 2010 8:53 p.m., <andresriancho@...> escribió:

Revision: 3632
         http://w3af.svn.sourceforge.net/w3af/?rev=3632&view=rev
Author:   andresriancho
Date:     2010-10-22 23:53:36 +0000 (Fri, 22 Oct 2010)

Log Message:
-----------
Nice! Now we have a working version of "start vdaemon" that uses msfpayload
and msfcli.
The next step is to refactor it as a web application security payload, and
we're done :)

Modified Paths:
--------------
   trunk/core/controllers/intrusionTools/crontabHandler.py
   trunk/core/controllers/intrusionTools/execMethodHelpers.py
   trunk/core/controllers/payloadTransfer/echoLnx.py
   trunk/core/controllers/vdaemon/lnxVd.py
   trunk/core/controllers/vdaemon/vdFactory.py
   trunk/core/controllers/vdaemon/vdaemon.py
   trunk/core/data/kb/exec_shell.py
   trunk/plugins/attack/osCommandingShell.py


This was sent by the SourceForge.net collaborative development platform, the
world's largest Open Source development site.

------------------------------------------------------------------------------
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in  U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store
http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________
W3af-svn-notify mailing list
W3af-svn-notify@...
https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify

Revision: 3633
          http://w3af.svn.sourceforge.net/w3af/?rev=3633&view=rev
Author:   andresriancho
Date:     2010-10-23 14:27:45 +0000 (Sat, 23 Oct 2010)

Log Message:
-----------
Finished refactoring vdaemon, it's now officially a web application security payload (named "metasploit") and has also three different wrappers (see msf_*) that act as shortcuts to get what you really want.

Modified Paths:
--------------
    trunk/core/controllers/intrusionTools/crontabHandler.py
    trunk/core/controllers/vdaemon/vdaemon.py
    trunk/core/data/kb/exec_shell.py

Added Paths:
-----------
    trunk/plugins/attack/payloads/payloads/metasploit.py
    trunk/plugins/attack/payloads/payloads/msf_linux_x86_meterpreter_reverse.py
    trunk/plugins/attack/payloads/payloads/msf_windows_meterpreter_reverse_tcp.py
    trunk/plugins/attack/payloads/payloads/msf_windows_vncinject_reverse.py

Removed Paths:
-------------
    trunk/plugins/attack/payloads/payloads/netcat_interactive_shell.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3634
          http://w3af.svn.sourceforge.net/w3af/?rev=3634&view=rev
Author:   andresriancho
Date:     2010-10-23 18:17:35 +0000 (Sat, 23 Oct 2010)

Log Message:
-----------
Many changes!
 * Refactored w3afAgent into a web application security payload.
 * Renamed "endInteraction" to "exit"
 * Added an integrity check to the transfer handlers
 * Made sure the w3afAgent worked as expected

Modified Paths:
--------------
    trunk/core/controllers/payloadTransfer/basePayloadTransfer.py
    trunk/core/controllers/payloadTransfer/clientlessReverseHTTP.py
    trunk/core/controllers/payloadTransfer/echoLnx.py
    trunk/core/controllers/payloadTransfer/echoWin.py
    trunk/core/controllers/payloadTransfer/payloadTransferFactory.py
    trunk/core/controllers/payloadTransfer/reverseFTP.py
    trunk/core/controllers/vdaemon/vdaemon.py
    trunk/core/controllers/w3afAgent/server/w3afAgentServer.py
    trunk/core/controllers/w3afAgent/w3afAgentManager.py
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/read_shell.py
    trunk/core/data/kb/shell.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/payloads/payloads/msf_windows_meterpreter_reverse_tcp.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xssBeef.py
    trunk/scripts/script-davShell.w3af
    trunk/scripts/script-eval_shell.w3af
    trunk/scripts/script-exploitAll-stopOnFirst.w3af
    trunk/scripts/script-exploitAll.w3af
    trunk/scripts/script-file_upload_shell.w3af
    trunk/scripts/script-localFileInclude_path-disclosure.w3af
    trunk/scripts/script-local_file_include-list.w3af
    trunk/scripts/script-os_commanding_shell.w3af
    trunk/scripts/script-remote_file_include_shell-xss.w3af
    trunk/scripts/script-remote_file_include_shell.w3af
    trunk/scripts/script-sql_webshell-no_path_disclosure.w3af
    trunk/scripts/script-sql_webshell.w3af

Added Paths:
-----------
    trunk/plugins/attack/payloads/payloads/w3af_agent.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3643
          http://w3af.svn.sourceforge.net/w3af/?rev=3643&view=rev
Author:   andresriancho
Date:     2010-10-26 12:20:16 +0000 (Tue, 26 Oct 2010)

Log Message:
-----------
After reading Floyd's commit about removing the pygoogle dependency check I noticed that we didn't removed the BeautifulSoup one!
Now I removed the dependency from the dependencyCheck and deleted the extlib file.

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/ui/gtkUi/reqResViewer.py

Removed Paths:
-------------
    trunk/extlib/BeautifulSoup.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3653
          http://w3af.svn.sourceforge.net/w3af/?rev=3653&view=rev
Author:   floydfuh
Date:     2010-10-28 17:30:30 +0000 (Thu, 28 Oct 2010)

Log Message:
-----------
Changed all '== None' to 'is None' and all '!= None' to 'is not None'. See https://sourceforge.net/apps/trac/w3af/ticket/160171 

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAttackPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/proxy.py
    trunk/core/controllers/daemons/webserver.py
    trunk/core/controllers/extrusionScanning/server/extrusionServer.py
    trunk/core/controllers/misc/lru.py
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/targetSettings.py
    trunk/core/controllers/w3afAgent/client/w3afAgentClient.py
    trunk/core/controllers/w3afCore.py
    trunk/core/controllers/wizard/wizard.py
    trunk/core/data/constants/common_directories.py
    trunk/core/data/export/python_export.py
    trunk/core/data/export/ruby_export.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/kb/info.py
    trunk/core/data/kb/knowledgeBase.py
    trunk/core/data/kb/vuln.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/profile/profile.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/url/handlers/keepalive.py
    trunk/core/data/url/handlers/mangleHandler.py
    trunk/core/data/url/httpResponse.py
    trunk/core/data/url/urlOpenerSettings.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/core/ui/consoleUi/history.py
    trunk/core/ui/gtkUi/clusterTable.py
    trunk/core/ui/gtkUi/comparator/diffutil.py
    trunk/core/ui/gtkUi/compare.py
    trunk/core/ui/gtkUi/exploittab.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/pluginconfig.py
    trunk/core/ui/gtkUi/profiles.py
    trunk/core/ui/gtkUi/prompt.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/attack/db/dbDriverBuilder.py
    trunk/plugins/attack/db/mysqlmap.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/oHalberd/Halberd/clues/Clue.py
    trunk/plugins/discovery/oHalberd/tests/test_clientlib.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/output/htmlFile.py
    trunk/plugins/output/textFile.py
    trunk/tools/base64decode
    trunk/tools/base64encode
    trunk/tools/gencc
    trunk/tools/md5hash
    trunk/tools/sha1hash
    trunk/tools/urldecode
    trunk/tools/urlencode


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3658
          http://w3af.svn.sourceforge.net/w3af/?rev=3658&view=rev
Author:   javierandalia
Date:     2010-10-30 00:20:48 +0000 (Sat, 30 Oct 2010)

Log Message:
-----------
Ticket #160023 - webserver in audit.remoteFileInclude fails to start

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAuditPlugin.py
    trunk/core/controllers/daemons/webserver.py
    trunk/core/controllers/outputManager.py
    trunk/core/controllers/payloadTransfer/clientlessReverseHTTP.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/discovery/spiderMan.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3665
          http://w3af.svn.sourceforge.net/w3af/?rev=3665&view=rev
Author:   javierandalia
Date:     2010-11-01 22:31:20 +0000 (Mon, 01 Nov 2010)

Log Message:
-----------
Ticket 160189

Modified Paths:
--------------
    trunk/core/ui/gtkUi/helpers.py
    trunk/plugins/discovery/findBackdoor.py

Added Paths:
-----------
    trunk/core/ui/gtkUi/data/missing-image.png


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Oops! Se te escapó el findBackdoor tambien.
No problem, pero para la proxima hace dos commits :)

On Mon, Nov 1, 2010 at 7:31 PM,  <javierandalia@...> wrote:
> Revision: 3665
>          http://w3af.svn.sourceforge.net/w3af/?rev=3665&view=rev
> Author:   javierandalia
> Date:     2010-11-01 22:31:20 +0000 (Mon, 01 Nov 2010)
>
> Log Message:
> -----------
> Ticket 160189
>
> Modified Paths:
> --------------
>    trunk/core/ui/gtkUi/helpers.py
>    trunk/plugins/discovery/findBackdoor.py
>
> Added Paths:
> -----------
>    trunk/core/ui/gtkUi/data/missing-image.png
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> Nokia and AT&T present the 2010 Calling All Innovators-North America contest
> Create new apps & games for the Nokia N8 for consumers in  U.S. and Canada
> $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
> Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store
> http://p.sf.net/sfu/nokia-dev2dev
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Founder, Bonsai - Information Security
http://www.bonsai-sec.com/
http://w3af.sf.net/

Revision: 3711
          http://w3af.svn.sourceforge.net/w3af/?rev=3711&view=rev
Author:   javierandalia
Date:     2010-11-12 14:05:14 +0000 (Fri, 12 Nov 2010)

Log Message:
-----------
Ticket #160035 - bruteforce false positive

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/url/urlOpenerSettings.py
    trunk/plugins/bruteforce/formAuthBrute.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3787
          http://w3af.svn.sourceforge.net/w3af/?rev=3787&view=rev
Author:   andresriancho
Date:     2010-11-26 19:11:09 +0000 (Fri, 26 Nov 2010)

Log Message:
-----------
Welcome bloom filter! :)

Modified Paths:
--------------
    trunk/core/data/db/temp_persist.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wsdlFinder.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/formAutocomplete.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/strangeParameters.py

Added Paths:
-----------
    trunk/core/data/bloomfilter/
    trunk/core/data/bloomfilter/__init__.py
    trunk/core/data/bloomfilter/bitvector.py
    trunk/core/data/bloomfilter/pybloom.py
    trunk/core/data/bloomfilter/test_pybloom.py
    trunk/core/data/db/tests/
    trunk/core/data/db/tests/test_temp_persist.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3788
          http://w3af.svn.sourceforge.net/w3af/?rev=3788&view=rev
Author:   andresriancho
Date:     2010-11-26 19:13:10 +0000 (Fri, 26 Nov 2010)

Log Message:
-----------
Moving the bitvector module to extlib directory.

Modified Paths:
--------------
    trunk/core/data/bloomfilter/pybloom.py

Added Paths:
-----------
    trunk/extlib/bitvector.py

Removed Paths:
-------------
    trunk/core/data/bloomfilter/bitvector.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3809
          http://w3af.svn.sourceforge.net/w3af/?rev=3809&view=rev
Author:   andresriancho
Date:     2010-11-30 18:02:53 +0000 (Tue, 30 Nov 2010)

Log Message:
-----------
Ignoring pyc files on these directories.

Property Changed:
----------------
    trunk/core/data/bloomfilter/
    trunk/core/data/db/tests/
    trunk/core/data/dc/tests/
    trunk/core/data/searchEngines/tests/
    trunk/core/data/url/handlers/tests/
    trunk/core/ui/gtkUi/
    trunk/core/ui/gtkUi/common/
    trunk/core/ui/gtkUi/rrviews/
    trunk/core/ui/gtkUi/speed/
    trunk/plugins/discovery/content_negotiation/
    trunk/plugins/discovery/dir_bruter/
    trunk/plugins/discovery/favicon/
    trunk/plugins/discovery/ria_enumerator/
    trunk/plugins/grep/ssndata/
    trunk/plugins/grep/user_defined_regex/
    trunk/readme/RU/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3820
          http://w3af.svn.sourceforge.net/w3af/?rev=3820&view=rev
Author:   javierandalia
Date:     2010-12-01 17:15:33 +0000 (Wed, 01 Dec 2010)

Log Message:
-----------
Ticket #160333 - Changes to make doctests pass

Modified Paths:
--------------
    trunk/core/ui/__init__.py
    trunk/core/ui/gtkUi/encdec.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/ssn.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3834
          http://w3af.svn.sourceforge.net/w3af/?rev=3834&view=rev
Author:   javierandalia
Date:     2010-12-07 22:48:43 +0000 (Tue, 07 Dec 2010)

Log Message:
-----------
Ticket #160377 - Changes according to bugs detected in failing tests

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/w3afCore.py
    trunk/core/data/parsers/htmlParser.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/xss.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/phishtank/index.xml
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/wsdlFinder.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/svnUsers.py
    trunk/plugins/grep/wsdlGreper.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Javier,

    A couple of comments inline:

On Tue, Dec 7, 2010 at 7:48 PM,  <javierandalia@...> wrote:
> Revision: 3834
>          http://w3af.svn.sourceforge.net/w3af/?rev=3834&view=rev
> Author:   javierandalia
> Date:     2010-12-07 22:48:43 +0000 (Tue, 07 Dec 2010)
>
> Log Message:
> -----------
> Ticket #160377 - Changes according to bugs detected in failing tests
>
> Modified Paths:
> --------------
>    trunk/core/controllers/basePlugin/basePlugin.py
>    trunk/core/controllers/w3afCore.py
>    trunk/core/data/parsers/htmlParser.py
>    trunk/plugins/audit/fileUpload.py
>    trunk/plugins/audit/phishingVector.py
>    trunk/plugins/audit/xss.py
>    trunk/plugins/discovery/allowedMethods.py
>    trunk/plugins/discovery/phishtank/index.xml
>    trunk/plugins/discovery/phpinfo.py
>    trunk/plugins/discovery/webDiff.py
>    trunk/plugins/discovery/wsdlFinder.py
>    trunk/plugins/grep/creditCards.py
>    trunk/plugins/grep/feeds.py
>    trunk/plugins/grep/getMails.py

    See below comment. It applies to getMails and feeds.

>    trunk/plugins/grep/httpInBody.py
>    trunk/plugins/grep/metaTags.py

    See below comment. It applies to metaTags.

>    trunk/plugins/grep/objects.py
>    trunk/plugins/grep/oracle.py

    The next comment applies for both ssn and svnUsers:

>    trunk/plugins/grep/ssn.py
>    trunk/plugins/grep/svnUsers.py

    I'm not sure if we should use the URL to store in the bloomfilter.
Its not that common... I know, but what if we have one svn user in
index.php?id=1 and another in index.php?action=edit ? If we use the
URL, we're not going to even analyze the second URI.

>    trunk/plugins/grep/wsdlGreper.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> What happens now with your Lotus Notes apps - do you make another costly
> upgrade, or settle for being marooned without product support? Time to move
> off Lotus Notes and onto the cloud with Force.com, apps are easier to build,
> use, and manage than apps on traditional platforms. Sign up for the Lotus
> Notes Migration Kit to learn more. http://p.sf.net/sfu/salesforce-d2d
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Andres Riancho wrote:
> Javier,
>
>     A couple of comments inline:
>
> On Tue, Dec 7, 2010 at 7:48 PM,  <javierandalia@...> wrote:
>   
>
>     See below comment. It applies to getMails and feeds.
>
>   
>>    trunk/plugins/grep/httpInBody.py
>>    trunk/plugins/grep/metaTags.py
>>     
>
>     See below comment. It applies to metaTags.
>
>   
>>    trunk/plugins/grep/objects.py
>>    trunk/plugins/grep/oracle.py
>>     
>
>     The next comment applies for both ssn and svnUsers:
>
>   
>>    trunk/plugins/grep/ssn.py
>>    trunk/plugins/grep/svnUsers.py
>>     
>
>     I'm not sure if we should use the URL to store in the bloomfilter.
> Its not that common... I know, but what if we have one svn user in
> index.php?id=1 and another in index.php?action=edit ? If we use the
> URL, we're not going to even analyze the second URI.
>   

Makes pretty much sense. The suggested changes were included in revision 
3842.
Thanks!

>   
>>    trunk/plugins/grep/wsdlGreper.py
>>
>>
>> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>>
>> ------------------------------------------------------------------------------
>> What happens now with your Lotus Notes apps - do you make another costly
>> upgrade, or settle for being marooned without product support? Time to move
>> off Lotus Notes and onto the cloud with Force.com, apps are easier to build,
>> use, and manage than apps on traditional platforms. Sign up for the Lotus
>> Notes Migration Kit to learn more. http://p.sf.net/sfu/salesforce-d2d
>> _______________________________________________
>> W3af-svn-notify mailing list
>> W3af-svn-notify@...
>> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>>
>>     
>
>
>
>   


-- 
Javier Andalia - Python Developer

Gorostiaga 2355 - Office 203
Buenos Aires. Argentina

Rapid7 Recipient of Highest Ranking in Vulnerability Management from Gartner and Forrester:
http://www.rapid7.com/resources/gartner_marketscope.jsp
http://www.rapid7.com/resources/forrester-wave.jsp

Revision: 3857
          http://w3af.svn.sourceforge.net/w3af/?rev=3857&view=rev
Author:   javierandalia
Date:     2010-12-14 15:33:38 +0000 (Tue, 14 Dec 2010)

Log Message:
-----------
Ticket #160163 - Fixed the "'NoneType' object is unsubscriptable" exception

Modified Paths:
--------------
    trunk/core/controllers/misc/number_generator.py
    trunk/core/controllers/w3afCore.py
    trunk/core/data/kb/knowledgeBase.py
    trunk/plugins/discovery/sharedHosting.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3862
          http://w3af.svn.sourceforge.net/w3af/?rev=3862&view=rev
Author:   javierandalia
Date:     2010-12-20 18:32:21 +0000 (Mon, 20 Dec 2010)

Log Message:
-----------
Ticket #160679 - Adding a new fix to this bug

Modified Paths:
--------------
    trunk/core/data/url/xUrllib.py
    trunk/plugins/discovery/serverHeader.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3864
          http://w3af.svn.sourceforge.net/w3af/?rev=3864&view=rev
Author:   javierandalia
Date:     2010-12-21 17:53:57 +0000 (Tue, 21 Dec 2010)

Log Message:
-----------
Ticket 160781 - Added validation when saving plugin settings

Modified Paths:
--------------
    trunk/core/controllers/daemons/webserver.py
    trunk/plugins/audit/remoteFileInclude.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3874
          http://w3af.svn.sourceforge.net/w3af/?rev=3874&view=rev
Author:   javierandalia
Date:     2011-01-05 19:32:48 +0000 (Wed, 05 Jan 2011)

Log Message:
-----------
Ticket #150305 - Included new discovery plugin

Modified Paths:
--------------
    trunk/core/data/options/option.py

Added Paths:
-----------
    trunk/core/controllers/misc/decorators.py
    trunk/plugins/discovery/http_vs_https_dist.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Some comments on the code:

    - Are we actually using the changes you introduced to "option.py" ?
    - I'm not sure if we actually need lines 30 to 39 of
"http_vs_https_dist.py". Those messages should be handled in
"dependencyCheck.py"
    - In line 58 of "http_vs_https_dist", please remember that the
documentation of the class is used! You need to put something there.
    - In line 68 of "http_vs_https_dist", more detail !
    - In line 85 of "http_vs_https_dist", I thought we agreed on
something else, where the target protocol and target port was going to
be used during the analysis
    - httpVsHttpsDist shouldn't be used anywhere in the plugin
    - In "getOptions", please set the help parameter for both options
    - 165 to 169 is not true
    - Add the comment about using "root" to the description
    - I recommended removing the "the" in "hosts in the transit to"

On Wed, Jan 5, 2011 at 4:32 PM,  <javierandalia@...> wrote:
> Revision: 3874
>          http://w3af.svn.sourceforge.net/w3af/?rev=3874&view=rev
> Author:   javierandalia
> Date:     2011-01-05 19:32:48 +0000 (Wed, 05 Jan 2011)
>
> Log Message:
> -----------
> Ticket #150305 - Included new discovery plugin
>
> Modified Paths:
> --------------
>    trunk/core/data/options/option.py
>
> Added Paths:
> -----------
>    trunk/core/controllers/misc/decorators.py
>    trunk/plugins/discovery/http_vs_https_dist.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> Learn how Oracle Real Application Clusters (RAC) One Node allows customers
> to consolidate database storage, standardize their database environment, and,
> should the need arise, upgrade to a full multi-node Oracle RAC database
> without downtime or disruption
> http://p.sf.net/sfu/oracle-sfdevnl
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Revision: 3878
          http://w3af.svn.sourceforge.net/w3af/?rev=3878&view=rev
Author:   javierandalia
Date:     2011-01-07 23:58:49 +0000 (Fri, 07 Jan 2011)

Log Message:
-----------
Ticket #150305 - Applied suggested changes from code review. Included unit tests

Modified Paths:
--------------
    trunk/core/controllers/extrusionScanning/server/extrusionServer.py
    trunk/plugins/discovery/http_vs_https_dist.py

Added Paths:
-----------
    trunk/plugins/discovery/tests/
    trunk/plugins/discovery/tests/__init__.py
    trunk/plugins/discovery/tests/test_http_vs_https_dist.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Some minor comments:

    - We already have a getPort() in urlParser, no need to reinvent
the wheel @ "netloc = uparser.getNetLocation(target_url)"
    - Replace analize with analyze
    - "trunk/plugins/discovery/tests/__init__.py" should be blank
    - Do we need to put the "translation hack" in all tests? Wasn't
this solved somewhere else?


On Fri, Jan 7, 2011 at 8:58 PM,  <javierandalia@...> wrote:
> Revision: 3878
>          http://w3af.svn.sourceforge.net/w3af/?rev=3878&view=rev
> Author:   javierandalia
> Date:     2011-01-07 23:58:49 +0000 (Fri, 07 Jan 2011)
>
> Log Message:
> -----------
> Ticket #150305 - Applied suggested changes from code review. Included unit tests
>
> Modified Paths:
> --------------
>    trunk/core/controllers/extrusionScanning/server/extrusionServer.py
>    trunk/plugins/discovery/http_vs_https_dist.py
>
> Added Paths:
> -----------
>    trunk/plugins/discovery/tests/
>    trunk/plugins/discovery/tests/__init__.py
>    trunk/plugins/discovery/tests/test_http_vs_https_dist.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> Gaining the trust of online customers is vital for the success of any company
> that requires sensitive data to be transmitted over the Web.   Learn how to
> best implement a security strategy that keeps consumers' information secure
> and instills the confidence they need to proceed with transactions.
> http://p.sf.net/sfu/oracle-sfdevnl
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Revision: 3899
          http://w3af.svn.sourceforge.net/w3af/?rev=3899&view=rev
Author:   andresriancho
Date:     2011-01-14 19:50:37 +0000 (Fri, 14 Jan 2011)

Log Message:
-----------
Removing *old* scapy from extlib, now users need to install it in their system.

Modified Paths:
--------------
    trunk/core/controllers/extrusionScanning/server/extrusionServer.py
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/plugins/discovery/http_vs_https_dist.py
    trunk/readme/EN/w3af-users-guide.html
    trunk/readme/EN/w3af-users-guide.odt
    trunk/readme/EN/w3af-users-guide.pdf

Removed Paths:
-------------
    trunk/extlib/scapy/

Property Changed:
----------------
    trunk/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3904
          http://w3af.svn.sourceforge.net/w3af/?rev=3904&view=rev
Author:   andresriancho
Date:     2011-01-14 23:07:32 +0000 (Fri, 14 Jan 2011)

Log Message:
-----------
Removed nltk from extlib, this fixes issue [0] in a definitive way, without inserting anything into sys.path .
Added a dependency check for the new library that we require.
Added a nltk wrapper that allows us to ship the wordnet corpus (wordnet.zip) within w3af, in order to avoid any issues with the corpus download procedures.

[0] https://sourceforge.net/apps/trac/w3af/ticket/160031

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/plugins/discovery/wordnet.py

Added Paths:
-----------
    trunk/core/data/nltk_wrapper/
    trunk/core/data/nltk_wrapper/__init__.py
    trunk/core/data/nltk_wrapper/nltk_wrapper.py
    trunk/plugins/discovery/wordnet/
    trunk/plugins/discovery/wordnet/wordnet.zip

Removed Paths:
-------------
    trunk/extlib/nltk/
    trunk/extlib/nltk_contrib/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Javier,

    I think it's important for you to read these changes, in order to
see what I did and how I modified the code in order to avoid using
sys.path.insert()

Regards,

On Fri, Jan 14, 2011 at 8:07 PM,  <andresriancho@...> wrote:
> Revision: 3904
>          http://w3af.svn.sourceforge.net/w3af/?rev=3904&view=rev
> Author:   andresriancho
> Date:     2011-01-14 23:07:32 +0000 (Fri, 14 Jan 2011)
>
> Log Message:
> -----------
> Removed nltk from extlib, this fixes issue [0] in a definitive way, without inserting anything into sys.path .
> Added a dependency check for the new library that we require.
> Added a nltk wrapper that allows us to ship the wordnet corpus (wordnet.zip) within w3af, in order to avoid any issues with the corpus download procedures.
>
> [0] https://sourceforge.net/apps/trac/w3af/ticket/160031
>
> Modified Paths:
> --------------
>    trunk/core/controllers/misc/dependencyCheck.py
>    trunk/plugins/discovery/wordnet.py
>
> Added Paths:
> -----------
>    trunk/core/data/nltk_wrapper/
>    trunk/core/data/nltk_wrapper/__init__.py
>    trunk/core/data/nltk_wrapper/nltk_wrapper.py
>    trunk/plugins/discovery/wordnet/
>    trunk/plugins/discovery/wordnet/wordnet.zip
>
> Removed Paths:
> -------------
>    trunk/extlib/nltk/
>    trunk/extlib/nltk_contrib/
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> Protect Your Site and Customers from Malware Attacks
> Learn about various malware tactics and how to avoid them. Understand
> malware threats, the impact they can have on your business, and how you
> can protect your company and customers by using code signing.
> http://p.sf.net/sfu/oracle-sfdevnl
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Revision: 3909
          http://w3af.svn.sourceforge.net/w3af/?rev=3909&view=rev
Author:   andresriancho
Date:     2011-01-15 01:03:46 +0000 (Sat, 15 Jan 2011)

Log Message:
-----------
Updated plugin URL and test script.

Modified Paths:
--------------
    trunk/plugins/discovery/zone_h.py
    trunk/scripts/script-zone_h.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3952
          http://w3af.svn.sourceforge.net/w3af/?rev=3952&view=rev
Author:   javierandalia
Date:     2011-01-17 20:56:32 +0000 (Mon, 17 Jan 2011)

Log Message:
-----------
initial import

Added Paths:
-----------
    trunk/README.txt
    trunk/conf/
    trunk/conf/authz
    trunk/conf/passwd
    trunk/conf/svnserve.conf
    trunk/db/
    trunk/db/current
    trunk/db/format
    trunk/db/fs-type
    trunk/db/revprops/
    trunk/db/revprops/0/
    trunk/db/revprops/0/0
    trunk/db/revs/
    trunk/db/revs/0/
    trunk/db/revs/0/0
    trunk/db/transactions/
    trunk/db/txn-current
    trunk/db/txn-current-lock
    trunk/db/txn-protorevs/
    trunk/db/uuid
    trunk/db/write-lock
    trunk/format
    trunk/hooks/
    trunk/hooks/post-commit.tmpl
    trunk/hooks/post-lock.tmpl
    trunk/hooks/post-revprop-change.tmpl
    trunk/hooks/post-unlock.tmpl
    trunk/hooks/pre-commit.tmpl
    trunk/hooks/pre-lock.tmpl
    trunk/hooks/pre-revprop-change.tmpl
    trunk/hooks/pre-unlock.tmpl
    trunk/hooks/start-commit.tmpl
    trunk/locks/
    trunk/locks/db-logs.lock
    trunk/locks/db.lock


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3953
          http://w3af.svn.sourceforge.net/w3af/?rev=3953&view=rev
Author:   javierandalia
Date:     2011-01-17 21:06:50 +0000 (Mon, 17 Jan 2011)

Log Message:
-----------
Rolling back unintentional commit

Removed Paths:
-------------
    trunk/conf/
    trunk/db/
    trunk/hooks/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3954
          http://w3af.svn.sourceforge.net/w3af/?rev=3954&view=rev
Author:   javierandalia
Date:     2011-01-17 21:19:36 +0000 (Mon, 17 Jan 2011)

Log Message:
-----------
Rolling back unintentional commit

Removed Paths:
-------------
    trunk/README.txt
    trunk/format
    trunk/locks/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3982
          http://w3af.svn.sourceforge.net/w3af/?rev=3982&view=rev
Author:   javierandalia
Date:     2011-01-24 18:18:00 +0000 (Mon, 24 Jan 2011)

Log Message:
-----------
MERGE w3af auto-upd [3894]:[3981] into trunk

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/ui/consoleUi/consoleUi.py
    trunk/w3af_console

Added Paths:
-----------
    trunk/core/controllers/auto_update/
    trunk/core/controllers/auto_update/__init__.py
    trunk/core/controllers/auto_update/auto_update.py
    trunk/core/controllers/auto_update/tests/
    trunk/core/controllers/auto_update/tests/__init__.py
    trunk/core/controllers/auto_update/tests/test_auto_update.py

Removed Paths:
-------------
    trunk/core/controllers/auto_update/__init__.py
    trunk/core/controllers/auto_update/auto_update.py
    trunk/core/controllers/auto_update/tests/
    trunk/core/controllers/auto_update/tests/__init__.py
    trunk/core/controllers/auto_update/tests/test_auto_update.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3985
          http://w3af.svn.sourceforge.net/w3af/?rev=3985&view=rev
Author:   javierandalia
Date:     2011-01-26 19:49:00 +0000 (Wed, 26 Jan 2011)

Log Message:
-----------
Autoupdate feature - GUI

Modified Paths:
--------------
    trunk/core/controllers/auto_update/auto_update.py
    trunk/core/controllers/auto_update/tests/test_auto_update.py
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/ui/consoleUi/consoleUi.py
    trunk/core/ui/gtkUi/entries.py
    trunk/core/ui/gtkUi/main.py
    trunk/w3af_console
    trunk/w3af_gui


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 3988
          http://w3af.svn.sourceforge.net/w3af/?rev=3988&view=rev
Author:   javierandalia
Date:     2011-01-27 20:09:13 +0000 (Thu, 27 Jan 2011)

Log Message:
-----------
Added -r (--revision) option to w3af console startup script

Modified Paths:
--------------
    trunk/core/controllers/auto_update/auto_update.py
    trunk/core/controllers/auto_update/tests/test_auto_update.py
    trunk/core/ui/consoleUi/consoleUi.py
    trunk/w3af_console


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4014
          http://w3af.svn.sourceforge.net/w3af/?rev=4014&view=rev
Author:   oxdef
Date:     2011-02-06 16:49:50 +0000 (Sun, 06 Feb 2011)

Log Message:
-----------
Fixed bug 161417: No such file or directory: ...trace

Modified Paths:
--------------
    trunk/core/data/db/db.py
    trunk/core/data/db/history.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Taras,

    I'm reviewing your code and here are some comments:

- Do we need to "DELETE *" if we're going to delete the DB afterwards?
Why don't we simply close() the DB file and then remove it?

 	261	        # Clear DB
 	262	        sql = 'DELETE FROM ' + self._dataTable
 	263	        self._db.execute(sql)

Regards,

On Sun, Feb 6, 2011 at 1:49 PM,  <oxdef@...> wrote:
> Revision: 4014
>          http://w3af.svn.sourceforge.net/w3af/?rev=4014&view=rev
> Author:   oxdef
> Date:     2011-02-06 16:49:50 +0000 (Sun, 06 Feb 2011)
>
> Log Message:
> -----------
> Fixed bug 161417: No such file or directory: ...trace
>
> Modified Paths:
> --------------
>    trunk/core/data/db/db.py
>    trunk/core/data/db/history.py
>    trunk/plugins/output/gtkOutput.py
>
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
> ------------------------------------------------------------------------------
> The modern datacenter depends on network connectivity to access resources
> and provide services. The best practices for maximizing a physical server's
> connectivity to a physical network are well understood - see how these
> rules translate into the virtual world?
> http://p.sf.net/sfu/oracle-sfdevnlfb
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Andres,

     1. Fix of the bug was by replacing sessionName dependence for
        traces dir to DB filename
     2. HistoryItem.clear() method is for the future (it is *not* used
        now) and for fixing previously discussed task to delete all
        history items (clear DB and delete trace files). For the current
        moment I simply can't find correct place for its calling.  Can
        you suggest it?

>     I'm reviewing your code and here are some comments:
> 
> - Do we need to "DELETE *" if we're going to delete the DB afterwards?
> Why don't we simply close() the DB file and then remove it?
> 
>  	261	        # Clear DB
>  	262	        sql = 'DELETE FROM ' + self._dataTable
>  	263	        self._db.execute(sql)
Simply it (HistoryItem.clear() method) is logically good place for
clearing actions (clear DB and delete files). If we will only close DB
file and then remove it we can forget about trace files. For example, DB
can be also used by other things inside w3af and HistoryItem uses it
only as data container.


> 
> Regards,
> 
> On Sun, Feb 6, 2011 at 1:49 PM,  <oxdef@...> wrote:
> > Revision: 4014
> >          http://w3af.svn.sourceforge.net/w3af/?rev=4014&view=rev
> > Author:   oxdef
> > Date:     2011-02-06 16:49:50 +0000 (Sun, 06 Feb 2011)
> >
> > Log Message:
> > -----------
> > Fixed bug 161417: No such file or directory: ...trace
> >
> > Modified Paths:
> > --------------
> >    trunk/core/data/db/db.py
> >    trunk/core/data/db/history.py
> >    trunk/plugins/output/gtkOutput.py
> >
> >
> > This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
> >
> > ------------------------------------------------------------------------------
> > The modern datacenter depends on network connectivity to access resources
> > and provide services. The best practices for maximizing a physical server's
> > connectivity to a physical network are well understood - see how these
> > rules translate into the virtual world?
> > http://p.sf.net/sfu/oracle-sfdevnlfb
> > _______________________________________________
> > W3af-svn-notify mailing list
> > W3af-svn-notify@...
> > https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
> >
> 
> 
> 

-- 
Taras
http://oxdef.info
----
"Software is like sex: it's better when it's free." - Linus Torvalds

Taras,

On Sun, Feb 6, 2011 at 5:38 PM, Taras <oxdef@...> wrote:
> Andres,
>
>     1. Fix of the bug was by replacing sessionName dependence for
>        traces dir to DB filename

    Ok,

>     2. HistoryItem.clear() method is for the future (it is *not* used
>        now) and for fixing previously discussed task to delete all
>        history items (clear DB and delete trace files). For the current
>        moment I simply can't find correct place for its calling.  Can
>        you suggest it?

    Given that the DB is used in both the scanner and its tools, I
would recommend that we call HistoryItem.clear() when:

- The user closes the GUI (see core.ui.gtkUi.main.main )
- The user clears the results from the previous scan results (see
core.ui.gtkUi.main_scan_clear)

    Does that make sense?

>>     I'm reviewing your code and here are some comments:
>>
>> - Do we need to "DELETE *" if we're going to delete the DB afterwards?
>> Why don't we simply close() the DB file and then remove it?
>>
>>       261             # Clear DB
>>       262             sql = 'DELETE FROM ' + self._dataTable
>>       263             self._db.execute(sql)
> Simply it (HistoryItem.clear() method) is logically good place for
> clearing actions (clear DB and delete files). If we will only close DB
> file and then remove it we can forget about trace files. For example, DB
> can be also used by other things inside w3af and HistoryItem uses it
> only as data container.
>
>
>>
>> Regards,
>>
>> On Sun, Feb 6, 2011 at 1:49 PM,  <oxdef@...> wrote:
>> > Revision: 4014
>> >          http://w3af.svn.sourceforge.net/w3af/?rev=4014&view=rev
>> > Author:   oxdef
>> > Date:     2011-02-06 16:49:50 +0000 (Sun, 06 Feb 2011)
>> >
>> > Log Message:
>> > -----------
>> > Fixed bug 161417: No such file or directory: ...trace
>> >
>> > Modified Paths:
>> > --------------
>> >    trunk/core/data/db/db.py
>> >    trunk/core/data/db/history.py
>> >    trunk/plugins/output/gtkOutput.py
>> >
>> >
>> > This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>> >
>> > ------------------------------------------------------------------------------
>> > The modern datacenter depends on network connectivity to access resources
>> > and provide services. The best practices for maximizing a physical server's
>> > connectivity to a physical network are well understood - see how these
>> > rules translate into the virtual world?
>> > http://p.sf.net/sfu/oracle-sfdevnlfb
>> > _______________________________________________
>> > W3af-svn-notify mailing list
>> > W3af-svn-notify@...
>> > https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>> >
>>
>>
>>
>
> --
> Taras
> http://oxdef.info
> ----
> "Software is like sex: it's better when it's free." - Linus Torvalds
>
>
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Revision: 4024
          http://w3af.svn.sourceforge.net/w3af/?rev=4024&view=rev
Author:   javierandalia
Date:     2011-02-10 13:58:17 +0000 (Thu, 10 Feb 2011)

Log Message:
-----------
Ticket #161145 - UnicodeDecodeError solved. The solved issue makes us think that we MUST give more attention to the encodings along the framework.

Modified Paths:
--------------
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/discovery/webSpider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4028
          http://w3af.svn.sourceforge.net/w3af/?rev=4028&view=rev
Author:   javierandalia
Date:     2011-02-11 13:35:06 +0000 (Fri, 11 Feb 2011)

Log Message:
-----------
Changes to make doctests pass

Modified Paths:
--------------
    trunk/core/data/dc/form.py
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/url/handlers/keepalive.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/grep/codeDisclosure.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4032
          http://w3af.svn.sourceforge.net/w3af/?rev=4032&view=rev
Author:   javierandalia
Date:     2011-02-11 21:08:34 +0000 (Fri, 11 Feb 2011)

Log Message:
-----------
Fixed minor details to decrease the number of hudson-pylint reported violations

Modified Paths:
--------------
    trunk/core/controllers/wizard/question.py
    trunk/core/data/kb/read_shell.py
    trunk/core/data/options/preferences.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/url/handlers/keepalive.py
    trunk/plugins/attack/db/dbDriver.py
    trunk/plugins/attack/db/dbDriverFunctions.py
    trunk/plugins/attack/rfiProxy.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4038
          http://w3af.svn.sourceforge.net/w3af/?rev=4038&view=rev
Author:   andresriancho
Date:     2011-02-15 21:53:41 +0000 (Tue, 15 Feb 2011)

Log Message:
-----------
Ignoring pyc files in some directories.

Property Changed:
----------------
    trunk/core/controllers/auto_update/
    trunk/core/data/nltk_wrapper/
    trunk/extlib/simplejson/
    trunk/plugins/discovery/tests/


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4042
          http://w3af.svn.sourceforge.net/w3af/?rev=4042&view=rev
Author:   andresriancho
Date:     2011-02-18 01:06:01 +0000 (Fri, 18 Feb 2011)

Log Message:
-----------
Applying dos2unix tool to some files. Thanks Steve Pinkham for the recommendation.

Modified Paths:
--------------
    trunk/core/data/dc/tests/test_form.py
    trunk/plugins/discovery/ghdb/GHDB.xml
    trunk/plugins/output/htmlFile/style.css
    trunk/readme/GPL


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4074
          http://w3af.svn.sourceforge.net/w3af/?rev=4074&view=rev
Author:   javierandalia
Date:     2011-03-11 23:46:06 +0000 (Fri, 11 Mar 2011)

Log Message:
-----------
Minor code changes: rem unused imports, correcting typos, adding comments to the code

Modified Paths:
--------------
    trunk/core/controllers/auto_update/tests/test_auto_update.py
    trunk/core/data/url/handlers/localCache.py
    trunk/plugins/attack/payloads/payloads/get_source_code.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4075
          http://w3af.svn.sourceforge.net/w3af/?rev=4075&view=rev
Author:   javierandalia
Date:     2011-03-11 23:47:00 +0000 (Fri, 11 Mar 2011)

Log Message:
-----------
PHP Static Code Analizer - More improvements

Modified Paths:
--------------
    trunk/core/controllers/sca/sca.py
    trunk/core/controllers/sca/tests/test_sca.py

Added Paths:
-----------
    trunk/plugins/attack/payloads/payloads/php_sca.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4089
          http://w3af.svn.sourceforge.net/w3af/?rev=4089&view=rev
Author:   javierandalia
Date:     2011-03-23 20:02:10 +0000 (Wed, 23 Mar 2011)

Log Message:
-----------
Ticket #161987 - Load profiles from any location

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/profile/profile.py
    trunk/core/ui/consoleUi/profiles.py
    trunk/w3af_console


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4105
          http://w3af.svn.sourceforge.net/w3af/?rev=4105&view=rev
Author:   javierandalia
Date:     2011-04-18 20:26:02 +0000 (Mon, 18 Apr 2011)

Log Message:
-----------
Ticket #149255 - When using gtkUi, data is stored twice

Modified Paths:
--------------
    trunk/core/data/db/db.py
    trunk/core/data/db/history.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/url/handlers/keepalive.py
    trunk/core/data/url/handlers/localCache.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/data/url/handlers/mangleHandler.py
    trunk/core/data/url/httpResponse.py
    trunk/core/data/url/urlOpenerSettings.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4113
          http://w3af.svn.sourceforge.net/w3af/?rev=4113&view=rev
Author:   andresriancho
Date:     2011-04-25 16:55:46 +0000 (Mon, 25 Apr 2011)

Log Message:
-----------
Merging url_object branch into trunk.
Massive change!

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAuditPlugin.py
    trunk/core/controllers/basePlugin/baseGrepPlugin.py
    trunk/core/controllers/basePlugin/baseManglePlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/bruteforce/bruteforcer.py
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/proxy.py
    trunk/core/controllers/intrusionTools/execMethodHelpers.py
    trunk/core/controllers/misc/webroot.py
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/targetSettings.py
    trunk/core/controllers/vdaemon/vdaemon.py
    trunk/core/controllers/w3afCore.py
    trunk/core/data/db/history.py
    trunk/core/data/db/temp_persist.py
    trunk/core/data/dc/dataContainer.py
    trunk/core/data/dc/form.py
    trunk/core/data/export/ajax_export.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/fuzzer/mutantQs.py
    trunk/core/data/kb/exec_shell.py
    trunk/core/data/kb/info.py
    trunk/core/data/kb/shell.py
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/parsers/documentParser.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/parsers/httpRequestParser.py
    trunk/core/data/parsers/pdfParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/parsers/wmlParser.py
    trunk/core/data/parsers/wsdlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/request/httpQsRequest.py
    trunk/core/data/request/variant_identification.py
    trunk/core/data/searchEngines/bing.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/searchEngines/pks.py
    trunk/core/data/searchEngines/tests/test_googleSearchEngine.py
    trunk/core/data/searchEngines/yahooSiteExplorer.py
    trunk/core/data/url/HTTPRequest.py
    trunk/core/data/url/handlers/localCache.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/data/url/handlers/mangleHandler.py
    trunk/core/data/url/handlers/urlParameterHandler.py
    trunk/core/data/url/httpResponse.py
    trunk/core/data/url/urlOpenerSettings.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/gtkUi/clusterTable.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/db/dbDriverFunctions.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/payloads/payloads/get_source_code.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xssBeef.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/audit/unSSL.py
    trunk/plugins/audit/xsrf.py
    trunk/plugins/audit/xss.py
    trunk/plugins/audit/xst.py
    trunk/plugins/bruteforce/basicAuthBrute.py
    trunk/plugins/discovery/afd.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/bing_spider.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/dnsWildcard.py
    trunk/plugins/discovery/domain_dot.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/favicon_identification.py
    trunk/plugins/discovery/findBackdoor.py
    trunk/plugins/discovery/findCaptchas.py
    trunk/plugins/discovery/findGit.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/fingerBing.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/fingerPKS.py
    trunk/plugins/discovery/fingerprint_os.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/halberd.py
    trunk/plugins/discovery/hmap.py
    trunk/plugins/discovery/importResults.py
    trunk/plugins/discovery/oracleDiscovery.py
    trunk/plugins/discovery/phishtank.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/ria_enumerator.py
    trunk/plugins/discovery/robotsReader.py
    trunk/plugins/discovery/serverStatus.py
    trunk/plugins/discovery/sharedHosting.py
    trunk/plugins/discovery/sitemapReader.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/spiderMan.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/urllist_txt.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wordpress_fingerprint.py
    trunk/plugins/discovery/wsdlFinder.py
    trunk/plugins/discovery/xssedDotCom.py
    trunk/plugins/discovery/yahooSiteExplorer.py
    trunk/plugins/discovery/zone_h.py
    trunk/plugins/evasion/backSpaceBetweenDots.py
    trunk/plugins/evasion/fullWidthEncode.py
    trunk/plugins/evasion/modsecurity.py
    trunk/plugins/evasion/reversedSlashes.py
    trunk/plugins/evasion/rndCase.py
    trunk/plugins/evasion/rndHexEncode.py
    trunk/plugins/evasion/rndParam.py
    trunk/plugins/evasion/rndPath.py
    trunk/plugins/evasion/selfReference.py
    trunk/plugins/evasion/shiftOutShiftInBetweenDots.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/mangle/sed.py
    trunk/plugins/output/gtkOutput.py
    trunk/plugins/output/htmlFile.py
    trunk/plugins/output/textFile.py
    trunk/readme/EN/w3af-users-guide.html
    trunk/readme/EN/w3af-users-guide.odt
    trunk/readme/EN/w3af-users-guide.pdf
    trunk/scripts/script-get_mails_all.w3af
    trunk/scripts/script-gtkOutput.w3af
    trunk/scripts/script-html_parser-broken_test_1.w3af
    trunk/scripts/script-html_parser-broken_test_2.w3af
    trunk/scripts/script-httpInBody.w3af

Added Paths:
-----------
    trunk/plugins/grep/tests/
    trunk/plugins/grep/tests/__init__.py
    trunk/plugins/grep/tests/test-1.html
    trunk/plugins/grep/tests/test-2.html
    trunk/plugins/grep/tests/test-3.html
    trunk/plugins/grep/tests/test-4.html
    trunk/plugins/grep/tests/test-5.html
    trunk/plugins/grep/tests/test_all.py
    trunk/plugins/grep/tests/test_codeDisclosure.py

Removed Paths:
-------------
    trunk/plugins/grep/tests/__init__.py
    trunk/plugins/grep/tests/test-1.html
    trunk/plugins/grep/tests/test-2.html
    trunk/plugins/grep/tests/test-3.html
    trunk/plugins/grep/tests/test-4.html
    trunk/plugins/grep/tests/test-5.html
    trunk/plugins/grep/tests/test_all.py
    trunk/plugins/grep/tests/test_codeDisclosure.py

Property Changed:
----------------
    trunk/
    trunk/plugins/grep/ssndata/
    trunk/plugins/grep/ssndata/ssnAreasGroups.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/scripts/script-form_autocomplete.w3af
    trunk/scripts/script-robots_txt.w3af
    trunk/scripts/script-sitemap_xml.w3af
    trunk/scripts/script-urllist_txt.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4116
          http://w3af.svn.sourceforge.net/w3af/?rev=4116&view=rev
Author:   javierandalia
Date:     2011-04-25 19:40:39 +0000 (Mon, 25 Apr 2011)

Log Message:
-----------
Cosmetic changes

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseOutputPlugin.py
    trunk/core/data/url/handlers/localCache.py
    trunk/plugins/audit/fileUpload/README


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4117
          http://w3af.svn.sourceforge.net/w3af/?rev=4117&view=rev
Author:   javierandalia
Date:     2011-04-25 19:50:00 +0000 (Mon, 25 Apr 2011)

Log Message:
-----------
Added support for pgsql and connection pool. Not in use for the moment

Modified Paths:
--------------
    trunk/core/data/db/db.py
    trunk/core/data/db/history.py
    trunk/plugins/output/gtkOutput.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4141
          http://w3af.svn.sourceforge.net/w3af/?rev=4141&view=rev
Author:   javierandalia
Date:     2011-04-27 17:03:16 +0000 (Wed, 27 Apr 2011)

Log Message:
-----------
Fix for proxy daemon

Modified Paths:
--------------
    trunk/core/controllers/daemons/proxy.py
    trunk/core/data/parsers/urlParser.py
    trunk/plugins/discovery/spiderMan.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4186
          http://w3af.svn.sourceforge.net/w3af/?rev=4186&view=rev
Author:   javierandalia
Date:     2011-05-05 15:20:47 +0000 (Thu, 05 May 2011)

Log Message:
-----------
Ticket #162601 Too-many-retries Error

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/w3afException.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/bruteforce/formAuthBrute.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4237
          http://w3af.svn.sourceforge.net/w3af/?rev=4237&view=rev
Author:   andresriancho
Date:     2011-05-14 16:47:25 +0000 (Sat, 14 May 2011)

Log Message:
-----------
Replaced ocurred with occurred.

Modified Paths:
--------------
    trunk/core/controllers/daemons/proxy.py
    trunk/core/data/db/history.py
    trunk/core/data/profile/profile.py
    trunk/plugins/discovery/dnsWildcard.py
    trunk/plugins/discovery/hmap.py
    trunk/plugins/discovery/pykto.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4242
          http://w3af.svn.sourceforge.net/w3af/?rev=4242&view=rev
Author:   andresriancho
Date:     2011-05-17 15:47:25 +0000 (Tue, 17 May 2011)

Log Message:
-----------
Fixing bug #163592, "'url_object' object has no attribute 'replace'"

Modified Paths:
--------------
    trunk/core/ui/gtkUi/common/searchable.py
    trunk/plugins/grep/httpAuthDetect.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4310
          http://w3af.svn.sourceforge.net/w3af/?rev=4310&view=rev
Author:   andresriancho
Date:     2011-06-03 03:17:55 +0000 (Fri, 03 Jun 2011)

Log Message:
-----------
A more generic bloom filter API that will allow some tests related to #163272

Modified Paths:
--------------
    trunk/core/data/bloomfilter/pybloom.py
    trunk/core/data/bloomfilter/test_pybloom.py
    trunk/core/data/db/temp_persist.py
    trunk/core/data/db/tests/test_temp_persist.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/findDVCS.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wsdlFinder.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/formAutocomplete.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/hashFind.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/grep/svnUsers.py
    trunk/plugins/grep/wsdlGreper.py

Added Paths:
-----------
    trunk/core/data/bloomfilter/bloomfilter.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4316
          http://w3af.svn.sourceforge.net/w3af/?rev=4316&view=rev
Author:   andresriancho
Date:     2011-06-05 02:52:21 +0000 (Sun, 05 Jun 2011)

Log Message:
-----------
Improved the disk_list in order to pickle/un-pickle. Made changes to webSpider (only part of w3af that actually uses disk_list now).

Modified Paths:
--------------
    trunk/core/data/db/temp_persist.py
    trunk/core/data/db/tests/test_temp_persist.py
    trunk/plugins/discovery/webSpider.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4365
          http://w3af.svn.sourceforge.net/w3af/?rev=4365&view=rev
Author:   javierandalia
Date:     2011-07-26 21:27:13 +0000 (Tue, 26 Jul 2011)

Log Message:
-----------
MERGE unicode branch into trunk

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseManglePlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/coreHelpers/export.py
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/tests/test_proxy.py
    trunk/core/controllers/easy_contribution/sourceforge.py
    trunk/core/controllers/misc/lru.py
    trunk/core/controllers/outputManager.py
    trunk/core/controllers/w3afCore.py
    trunk/core/controllers/w3afException.py
    trunk/core/data/db/history.py
    trunk/core/data/db/temp_persist.py
    trunk/core/data/db/tests/test_temp_persist.py
    trunk/core/data/dc/cookie.py
    trunk/core/data/dc/dataContainer.py
    trunk/core/data/dc/form.py
    trunk/core/data/dc/queryString.py
    trunk/core/data/fuzzer/formFiller.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantFileContent.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/fuzzer/mutantQs.py
    trunk/core/data/kb/info.py
    trunk/core/data/parsers/documentParser.py
    trunk/core/data/parsers/dpCache.py
    trunk/core/data/parsers/encode_decode.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/parsers/httpRequestParser.py
    trunk/core/data/parsers/pdfParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/swfParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/parsers/wmlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/core/data/request/httpQsRequest.py
    trunk/core/data/request/jsonPostDataRequest.py
    trunk/core/data/request/variant_identification.py
    trunk/core/data/request/wsPostDataRequest.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/searchEngines/pks.py
    trunk/core/data/searchEngines/tests/test_googleSearchEngine.py
    trunk/core/data/url/HTTPRequest.py
    trunk/core/data/url/handlers/MultipartPostHandler.py
    trunk/core/data/url/handlers/keepalive.py
    trunk/core/data/url/handlers/localCache.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/data/url/handlers/mangleHandler.py
    trunk/core/data/url/httpResponse.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/consoleUi/rootMenu.py
    trunk/core/ui/gtkUi/rrviews/rendering.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/xss.py
    trunk/plugins/discovery/fingerBing.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/importResults.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/evasion/backSpaceBetweenDots.py
    trunk/plugins/evasion/fullWidthEncode.py
    trunk/plugins/evasion/modsecurity.py
    trunk/plugins/evasion/reversedSlashes.py
    trunk/plugins/evasion/rndCase.py
    trunk/plugins/evasion/rndHexEncode.py
    trunk/plugins/evasion/selfReference.py
    trunk/plugins/evasion/shiftOutShiftInBetweenDots.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/formAutocomplete.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/mangle/sed.py
    trunk/plugins/output/console.py
    trunk/plugins/output/textFile.py
    trunk/scripts/script-encoding.w3af
    trunk/scripts/script-fingerGoogle.w3af
    trunk/scripts/script-form_autocomplete.w3af
    trunk/scripts/script-nonTarget.w3af
    trunk/scripts/script-regexRelativeURL.w3af
    trunk/scripts/script-web_spider.w3af

Added Paths:
-----------
    trunk/core/controllers/misc/io.py
    trunk/core/data/constants/encodings.py
    trunk/core/data/parsers/baseparser.py
    trunk/core/data/url/handlers/tests/test_multipartposthandler.py
    trunk/core/data/url/tests/
    trunk/core/data/url/tests/__init__.py
    trunk/core/data/url/tests/test_httpResponse.py

Removed Paths:
-------------
    trunk/core/data/parsers/abstractParser.py
    trunk/core/data/url/tests/__init__.py
    trunk/core/data/url/tests/test_httpResponse.py
    trunk/extlib/simplejson/

Property Changed:
----------------
    trunk/
    trunk/plugins/grep/ssndata/
    trunk/scripts/script-form_autocomplete.w3af
    trunk/scripts/script-robots_txt.w3af
    trunk/scripts/script-sitemap_xml.w3af
    trunk/scripts/script-urllist_txt.w3af


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4383
          http://w3af.svn.sourceforge.net/w3af/?rev=4383&view=rev
Author:   andresriancho
Date:     2011-08-07 21:01:20 +0000 (Sun, 07 Aug 2011)

Log Message:
-----------
Adding support for the ETag header during the audit phase. Performance improvement!

Modified Paths:
--------------
    trunk/core/data/fuzzer/fuzzer.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/grep/strangeHTTPCode.py


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4402
          http://w3af.svn.sourceforge.net/w3af/?rev=4402&view=rev
Author:   andresriancho
Date:     2011-09-04 16:56:33 +0000 (Sun, 04 Sep 2011)
Log Message:
-----------
Fixing #167818 by creating a new option type: "url".

Modified Paths:
--------------
    trunk/core/data/options/option.py
    trunk/core/ui/gtkUi/entries.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xssBeef.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4410
          http://w3af.svn.sourceforge.net/w3af/?rev=4410&view=rev
Author:   javierandalia
Date:     2011-09-05 22:49:35 +0000 (Mon, 05 Sep 2011)
Log Message:
-----------
Avoiding possible bug when sending bruteforcing requests - added validation scripts

Modified Paths:
--------------
    trunk/core/data/url/urlOpenerSettings.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/scripts/script-formLoginBrute.w3af

Added Paths:
-----------
    trunk/scripts/script-formGETLoginBrute.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4427
          http://w3af.svn.sourceforge.net/w3af/?rev=4427&view=rev
Author:   andresriancho
Date:     2011-09-19 01:15:45 +0000 (Mon, 19 Sep 2011)
Log Message:
-----------
Applying pinotree's patch for "fix hardcoded errno values". See ticket #168255.

Modified Paths:
--------------
    trunk/core/data/db/history.py
    trunk/plugins/output/gtkOutput.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4466
          http://w3af.svn.sourceforge.net/w3af/?rev=4466&view=rev
Author:   javierandalia
Date:     2011-10-31 15:53:42 +0000 (Mon, 31 Oct 2011)
Log Message:
-----------
Removing 'showCaller' option from 'textFile' plugin and some other minor changes

Modified Paths:
--------------
    trunk/core/controllers/configurable.py
    trunk/core/controllers/misc/factory.py
    trunk/core/controllers/w3afCore.py
    trunk/plugins/output/textFile.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4490
          http://w3af.svn.sourceforge.net/w3af/?rev=4490&view=rev
Author:   javierandalia
Date:     2011-11-19 01:08:26 +0000 (Sat, 19 Nov 2011)
Log Message:
-----------
Some code refactoring in "FuzzableRequest" Area - reason: readability counts - tests were updated, all of them pass.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAttackPlugin.py
    trunk/core/controllers/daemons/proxy.py
    trunk/core/data/exchangableMethods.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantCookie.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/fuzzer/mutantQs.py
    trunk/core/data/parsers/httpRequestParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/core/data/request/httpQsRequest.py
    trunk/core/data/request/jsonPostDataRequest.py
    trunk/core/data/request/variant_identification.py
    trunk/core/data/request/wsPostDataRequest.py
    trunk/core/data/request/xmlrpcRequest.py
    trunk/core/data/url/handlers/localCache.py
    trunk/core/data/url/handlers/logHandler.py
    trunk/core/data/url/handlers/mangleHandler.py
    trunk/core/data/url/httpResponse.py
    trunk/core/data/url/xUrllib.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/importResults.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/ssn.py
    trunk/plugins/grep/strangeHTTPCode.py
    trunk/plugins/grep/symfony.py
    trunk/plugins/grep/tests/test_all.py
    trunk/plugins/grep/tests/test_codeDisclosure.py
    trunk/plugins/grep/user_defined_regex.py
    trunk/plugins/grep/wsdlGreper.py
    trunk/plugins/mangle/sed.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Javier,

    Some comments on your code:

* trunk/core/controllers/basePlugin/baseAttackPlugin.py:115 , should
that be getURI() instead of getURL() ?
* trunk/core/data/exchangableMethods.py:57 ,
qsr.setDc(fuzzableRequest.getDc())  why don't you use the __init__
parameter of qsr to pass this value?
* I like this name change:
        42	 	from core.data.request.httpQsRequest import httpQsRequest
 	42	        from core.data.request.httpQsRequest import HTTPQSRequest
* trunk/core/data/request/frFactory.py:135 and 141, what are those XXX?
* Grep for all the places where you have those XXX and replace with
something more meaningful
* For things like this:
  451	 	    def copy( self ):
  428	    def copy(self):
Should we have a code style checker in eclipse+pydev?

    All in all, the change looks good! Let's focus now on finishing
multiprocessing!

Regards,

On Fri, Nov 18, 2011 at 10:08 PM,  <javierandalia@...> wrote:
> Revision: 4490
>          http://w3af.svn.sourceforge.net/w3af/?rev=4490&view=rev
> Author:   javierandalia
> Date:     2011-11-19 01:08:26 +0000 (Sat, 19 Nov 2011)
> Log Message:
> -----------
> Some code refactoring in "FuzzableRequest" Area - reason: readability counts - tests were updated, all of them pass.
>
> Modified Paths:
> --------------
>    trunk/core/controllers/basePlugin/baseAttackPlugin.py
>    trunk/core/controllers/daemons/proxy.py
>    trunk/core/data/exchangableMethods.py
>    trunk/core/data/fuzzer/fuzzer.py
>    trunk/core/data/fuzzer/mutant.py
>    trunk/core/data/fuzzer/mutantCookie.py
>    trunk/core/data/fuzzer/mutantFileName.py
>    trunk/core/data/fuzzer/mutantQs.py
>    trunk/core/data/parsers/httpRequestParser.py
>    trunk/core/data/parsers/urlParser.py
>    trunk/core/data/request/frFactory.py
>    trunk/core/data/request/fuzzableRequest.py
>    trunk/core/data/request/httpPostDataRequest.py
>    trunk/core/data/request/httpQsRequest.py
>    trunk/core/data/request/jsonPostDataRequest.py
>    trunk/core/data/request/variant_identification.py
>    trunk/core/data/request/wsPostDataRequest.py
>    trunk/core/data/request/xmlrpcRequest.py
>    trunk/core/data/url/handlers/localCache.py
>    trunk/core/data/url/handlers/logHandler.py
>    trunk/core/data/url/handlers/mangleHandler.py
>    trunk/core/data/url/httpResponse.py
>    trunk/core/data/url/xUrllib.py
>    trunk/plugins/attack/sql_webshell.py
>    trunk/plugins/attack/sqlmap.py
>    trunk/plugins/discovery/archiveDotOrg.py
>    trunk/plugins/discovery/importResults.py
>    trunk/plugins/grep/ajax.py
>    trunk/plugins/grep/blankBody.py
>    trunk/plugins/grep/codeDisclosure.py
>    trunk/plugins/grep/collectCookies.py
>    trunk/plugins/grep/httpAuthDetect.py
>    trunk/plugins/grep/oracle.py
>    trunk/plugins/grep/pathDisclosure.py
>    trunk/plugins/grep/ssn.py
>    trunk/plugins/grep/strangeHTTPCode.py
>    trunk/plugins/grep/symfony.py
>    trunk/plugins/grep/tests/test_all.py
>    trunk/plugins/grep/tests/test_codeDisclosure.py
>    trunk/plugins/grep/user_defined_regex.py
>    trunk/plugins/grep/wsdlGreper.py
>    trunk/plugins/mangle/sed.py
>
> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>
>
> ------------------------------------------------------------------------------
> All the data continuously generated in your IT infrastructure
> contains a definitive record of customers, application performance,
> security threats, fraudulent activity, and more. Splunk takes this
> data and makes sense of it. IT sense. And common sense.
> http://p.sf.net/sfu/splunk-novd2d
> _______________________________________________
> W3af-svn-notify mailing list
> W3af-svn-notify@...
> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

On 11/19/2011 02:11 PM, Andres Riancho wrote:
> Javier,
>
>      Some comments on your code:
>
> * trunk/core/controllers/basePlugin/baseAttackPlugin.py:115 , should
> that be getURI() instead of getURL() ?

Hmmm... that wasn't changed at all in the new version. Think it has more 
sense the way it is right now (and before). The DataContainer is 
actually the QueryString. What's your opinion?

> * trunk/core/data/exchangableMethods.py:57 ,
> qsr.setDc(fuzzableRequest.getDc())  why don't you use the __init__
> parameter of qsr to pass this value?

HTTPQSRequest  class doesn't include 'dc' (DataContainer param) in its 
'__init__' parameters. By default, when the object is instantiated it 
infers it from the passed URI. However, if the idea is to overwrite the 
object's inferred dc it may be used 'setDc' method.

> * I like this name change:
>          42	 	from core.data.request.httpQsRequest import httpQsRequest
>   	42	        from core.data.request.httpQsRequest import HTTPQSRequest

Yes, it is PEP08 compatible. We really need to make more progress in 
that direction.

> * trunk/core/data/request/frFactory.py:135 and 141, what are those XXX?
> * Grep for all the places where you have those XXX and replace with
> something more meaningful

They shouldn't be there. Forgot to add the right methods' doc 
strings/comments.

> * For things like this:
>    451	 	    def copy( self ):
>    428	    def copy(self):
> Should we have a code style checker in eclipse+pydev?

Yes, totally.

>      All in all, the change looks good! Let's focus now on finishing
> multiprocessing!
>
> Regards,
>
> On Fri, Nov 18, 2011 at 10:08 PM,<javierandalia@...>  wrote:
>> Revision: 4490
>>           http://w3af.svn.sourceforge.net/w3af/?rev=4490&view=rev
>> Author:   javierandalia
>> Date:     2011-11-19 01:08:26 +0000 (Sat, 19 Nov 2011)
>> Log Message:
>> -----------
>> Some code refactoring in "FuzzableRequest" Area - reason: readability counts - tests were updated, all of them pass.
>>
>> Modified Paths:
>> --------------
>>     trunk/core/controllers/basePlugin/baseAttackPlugin.py
>>     trunk/core/controllers/daemons/proxy.py
>>     trunk/core/data/exchangableMethods.py
>>     trunk/core/data/fuzzer/fuzzer.py
>>     trunk/core/data/fuzzer/mutant.py
>>     trunk/core/data/fuzzer/mutantCookie.py
>>     trunk/core/data/fuzzer/mutantFileName.py
>>     trunk/core/data/fuzzer/mutantQs.py
>>     trunk/core/data/parsers/httpRequestParser.py
>>     trunk/core/data/parsers/urlParser.py
>>     trunk/core/data/request/frFactory.py
>>     trunk/core/data/request/fuzzableRequest.py
>>     trunk/core/data/request/httpPostDataRequest.py
>>     trunk/core/data/request/httpQsRequest.py
>>     trunk/core/data/request/jsonPostDataRequest.py
>>     trunk/core/data/request/variant_identification.py
>>     trunk/core/data/request/wsPostDataRequest.py
>>     trunk/core/data/request/xmlrpcRequest.py
>>     trunk/core/data/url/handlers/localCache.py
>>     trunk/core/data/url/handlers/logHandler.py
>>     trunk/core/data/url/handlers/mangleHandler.py
>>     trunk/core/data/url/httpResponse.py
>>     trunk/core/data/url/xUrllib.py
>>     trunk/plugins/attack/sql_webshell.py
>>     trunk/plugins/attack/sqlmap.py
>>     trunk/plugins/discovery/archiveDotOrg.py
>>     trunk/plugins/discovery/importResults.py
>>     trunk/plugins/grep/ajax.py
>>     trunk/plugins/grep/blankBody.py
>>     trunk/plugins/grep/codeDisclosure.py
>>     trunk/plugins/grep/collectCookies.py
>>     trunk/plugins/grep/httpAuthDetect.py
>>     trunk/plugins/grep/oracle.py
>>     trunk/plugins/grep/pathDisclosure.py
>>     trunk/plugins/grep/ssn.py
>>     trunk/plugins/grep/strangeHTTPCode.py
>>     trunk/plugins/grep/symfony.py
>>     trunk/plugins/grep/tests/test_all.py
>>     trunk/plugins/grep/tests/test_codeDisclosure.py
>>     trunk/plugins/grep/user_defined_regex.py
>>     trunk/plugins/grep/wsdlGreper.py
>>     trunk/plugins/mangle/sed.py
>>
>> This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
>>
>>
>> ------------------------------------------------------------------------------
>> All the data continuously generated in your IT infrastructure
>> contains a definitive record of customers, application performance,
>> security threats, fraudulent activity, and more. Splunk takes this
>> data and makes sense of it. IT sense. And common sense.
>> http://p.sf.net/sfu/splunk-novd2d
>> _______________________________________________
>> W3af-svn-notify mailing list
>> W3af-svn-notify@...
>> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>>
>
>

Javier,

On Mon, Nov 21, 2011 at 11:48 AM, Javier Andalia
<javier_andalia@...> wrote:
>
> On 11/19/2011 02:11 PM, Andres Riancho wrote:
>>
>> Javier,
>>
>>     Some comments on your code:
>>
>> * trunk/core/controllers/basePlugin/baseAttackPlugin.py:115 , should
>> that be getURI() instead of getURL() ?
>
> Hmmm... that wasn't changed at all in the new version. Think it has more
> sense the way it is right now (and before). The DataContainer is actually
> the QueryString. What's your opinion?

I think we might be missing the parameters by using getURL() but it
has been working like that from the beginning anyways so we should let
it as it is now.

>> * trunk/core/data/exchangableMethods.py:57 ,
>> qsr.setDc(fuzzableRequest.getDc())  why don't you use the __init__
>> parameter of qsr to pass this value?
>
> HTTPQSRequest  class doesn't include 'dc' (DataContainer param) in its
> '__init__' parameters. By default, when the object is instantiated it infers
> it from the passed URI. However, if the idea is to overwrite the object's
> inferred dc it may be used 'setDc' method.

Understood

>> * I like this name change:
>>         42             from core.data.request.httpQsRequest import
>> httpQsRequest
>>        42              from core.data.request.httpQsRequest import
>> HTTPQSRequest
>
> Yes, it is PEP08 compatible. We really need to make more progress in that
> direction.
>
>> * trunk/core/data/request/frFactory.py:135 and 141, what are those XXX?
>> * Grep for all the places where you have those XXX and replace with
>> something more meaningful
>
> They shouldn't be there. Forgot to add the right methods' doc
> strings/comments.
>
>> * For things like this:
>>   451              def copy( self ):
>>   428      def copy(self):
>> Should we have a code style checker in eclipse+pydev?
>
> Yes, totally.

I've searched for a bit and it seems that pydev supports pylint for
checking code style, but pylint doesn't "cover all of the pep-8", so
it sounds like we've hit a dead-end.

>>     All in all, the change looks good! Let's focus now on finishing
>> multiprocessing!
>>
>> Regards,
>>
>> On Fri, Nov 18, 2011 at 10:08 PM,<javierandalia@...>
>>  wrote:
>>>
>>> Revision: 4490
>>>          http://w3af.svn.sourceforge.net/w3af/?rev=4490&view=rev
>>> Author:   javierandalia
>>> Date:     2011-11-19 01:08:26 +0000 (Sat, 19 Nov 2011)
>>> Log Message:
>>> -----------
>>> Some code refactoring in "FuzzableRequest" Area - reason: readability
>>> counts - tests were updated, all of them pass.
>>>
>>> Modified Paths:
>>> --------------
>>>    trunk/core/controllers/basePlugin/baseAttackPlugin.py
>>>    trunk/core/controllers/daemons/proxy.py
>>>    trunk/core/data/exchangableMethods.py
>>>    trunk/core/data/fuzzer/fuzzer.py
>>>    trunk/core/data/fuzzer/mutant.py
>>>    trunk/core/data/fuzzer/mutantCookie.py
>>>    trunk/core/data/fuzzer/mutantFileName.py
>>>    trunk/core/data/fuzzer/mutantQs.py
>>>    trunk/core/data/parsers/httpRequestParser.py
>>>    trunk/core/data/parsers/urlParser.py
>>>    trunk/core/data/request/frFactory.py
>>>    trunk/core/data/request/fuzzableRequest.py
>>>    trunk/core/data/request/httpPostDataRequest.py
>>>    trunk/core/data/request/httpQsRequest.py
>>>    trunk/core/data/request/jsonPostDataRequest.py
>>>    trunk/core/data/request/variant_identification.py
>>>    trunk/core/data/request/wsPostDataRequest.py
>>>    trunk/core/data/request/xmlrpcRequest.py
>>>    trunk/core/data/url/handlers/localCache.py
>>>    trunk/core/data/url/handlers/logHandler.py
>>>    trunk/core/data/url/handlers/mangleHandler.py
>>>    trunk/core/data/url/httpResponse.py
>>>    trunk/core/data/url/xUrllib.py
>>>    trunk/plugins/attack/sql_webshell.py
>>>    trunk/plugins/attack/sqlmap.py
>>>    trunk/plugins/discovery/archiveDotOrg.py
>>>    trunk/plugins/discovery/importResults.py
>>>    trunk/plugins/grep/ajax.py
>>>    trunk/plugins/grep/blankBody.py
>>>    trunk/plugins/grep/codeDisclosure.py
>>>    trunk/plugins/grep/collectCookies.py
>>>    trunk/plugins/grep/httpAuthDetect.py
>>>    trunk/plugins/grep/oracle.py
>>>    trunk/plugins/grep/pathDisclosure.py
>>>    trunk/plugins/grep/ssn.py
>>>    trunk/plugins/grep/strangeHTTPCode.py
>>>    trunk/plugins/grep/symfony.py
>>>    trunk/plugins/grep/tests/test_all.py
>>>    trunk/plugins/grep/tests/test_codeDisclosure.py
>>>    trunk/plugins/grep/user_defined_regex.py
>>>    trunk/plugins/grep/wsdlGreper.py
>>>    trunk/plugins/mangle/sed.py
>>>
>>> This was sent by the SourceForge.net collaborative development platform,
>>> the world's largest Open Source development site.
>>>
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> All the data continuously generated in your IT infrastructure
>>> contains a definitive record of customers, application performance,
>>> security threats, fraudulent activity, and more. Splunk takes this
>>> data and makes sense of it. IT sense. And common sense.
>>> http://p.sf.net/sfu/splunk-novd2d
>>> _______________________________________________
>>> W3af-svn-notify mailing list
>>> W3af-svn-notify@...
>>> https://lists.sourceforge.net/lists/listinfo/w3af-svn-notify
>>>
>>
>>
>
>



-- 
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af

Revision: 4552
          http://w3af.svn.sourceforge.net/w3af/?rev=4552&view=rev
Author:   andresriancho
Date:     2011-12-09 13:30:49 +0000 (Fri, 09 Dec 2011)
Log Message:
-----------
Adding more restrictions to the private IP detection.

Modified Paths:
--------------
    trunk/plugins/grep/privateIP.py
    trunk/scripts/script-private_ip-no-match.w3af
    trunk/scripts/script-private_ip.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4561
          http://w3af.svn.sourceforge.net/w3af/?rev=4561&view=rev
Author:   andresriancho
Date:     2011-12-09 16:36:24 +0000 (Fri, 09 Dec 2011)
Log Message:
-----------
Adding support for HTTP requests that have both QS and POST-data. The main change was made in the w3afCore where we were using getURL instead of getURI and loosing data.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/w3afCore.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutantPostData.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/scripts/script-xss_forms.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4576
          http://w3af.svn.sourceforge.net/w3af/?rev=4576&view=rev
Author:   andresriancho
Date:     2011-12-17 14:16:51 +0000 (Sat, 17 Dec 2011)
Log Message:
-----------
Adding plugin authentication support!

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py

Added Paths:
-----------
    trunk/core/controllers/basePlugin/baseAuthPlugin.py
    trunk/plugins/auth/
    trunk/plugins/auth/__init__.py
    trunk/plugins/auth/generic.py
    trunk/scripts/script-auth_generic.w3af

Removed Paths:
-------------
    trunk/plugins/auth/__init__.py
    trunk/plugins/auth/generic.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4587
          http://w3af.svn.sourceforge.net/w3af/?rev=4587&view=rev
Author:   javierandalia
Date:     2011-12-20 21:42:32 +0000 (Tue, 20 Dec 2011)
Log Message:
-----------
302 redirect handling - now after POST

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/redos.py
    trunk/plugins/discovery/webSpider.py

Added Paths:
-----------
    trunk/scripts/script-302_redir_xss.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4602
          http://w3af.svn.sourceforge.net/w3af/?rev=4602&view=rev
Author:   andresriancho
Date:     2011-12-27 12:20:07 +0000 (Tue, 27 Dec 2011)
Log Message:
-----------
Merging rewritten-urls branch to trunk.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantFileName.py

Added Paths:
-----------
    trunk/core/data/fuzzer/mutantUrlParts.py
    trunk/scripts/script-fuzzURLParts.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4605
          http://w3af.svn.sourceforge.net/w3af/?rev=4605&view=rev
Author:   javierandalia
Date:     2011-12-27 15:38:28 +0000 (Tue, 27 Dec 2011)
Log Message:
-----------
fixed replication of sqli and blindsqli vulns in the kb - other slight code changes

Modified Paths:
--------------
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/controllers/sql_tools/blind_sqli_time_delay.py
    trunk/core/data/kb/knowledgeBase.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/audit/sqli.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4616
          http://w3af.svn.sourceforge.net/w3af/?rev=4616&view=rev
Author:   andresriancho
Date:     2012-01-02 21:19:09 +0000 (Mon, 02 Jan 2012)
Log Message:
-----------
Fixed a couple of bugs in the spiderMan and identified one more. Need to fix it afterwards.

Modified Paths:
--------------
    trunk/core/controllers/daemons/proxy.py
    trunk/plugins/discovery/spiderMan.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4632
          http://w3af.svn.sourceforge.net/w3af/?rev=4632&view=rev
Author:   javierandalia
Date:     2012-01-09 14:28:23 +0000 (Mon, 09 Jan 2012)
Log Message:
-----------
Slight change to 'has_no_bug' method. Now w3af may detect more vulns - Added 'run_async' method. No more duplication of the code calling the ThreadManager instance inside plugins.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAuditPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/kb/vuln.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/generic.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/redos.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xss.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/afd.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/bing_spider.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/findBackdoor.py
    trunk/plugins/discovery/findCaptchas.py
    trunk/plugins/discovery/findGit.py
    trunk/plugins/discovery/fingerBing.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/robotsReader.py
    trunk/plugins/discovery/sitemapReader.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/urllist_txt.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wsdlFinder.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4647
          http://w3af.svn.sourceforge.net/w3af/?rev=4647&view=rev
Author:   javierandalia
Date:     2012-01-20 21:26:13 +0000 (Fri, 20 Jan 2012)
Log Message:
-----------
More tests...

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/kb/config.py
    trunk/plugins/discovery/urlFuzzer.py

Added Paths:
-----------
    trunk/plugins/tests/
    trunk/plugins/tests/__init__.py
    trunk/plugins/tests/audit/
    trunk/plugins/tests/audit/__init__.py
    trunk/plugins/tests/audit/test_xss.py
    trunk/plugins/tests/discovery/
    trunk/plugins/tests/discovery/__init__.py
    trunk/plugins/tests/discovery/test_urlfuzzer.py
    trunk/plugins/tests/discovery/test_webspider.py
    trunk/plugins/tests/grep/
    trunk/plugins/tests/grep/__init__.py
    trunk/plugins/tests/grep/test_directoryindexing.py
    trunk/plugins/tests/helper.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4651
          http://w3af.svn.sourceforge.net/w3af/?rev=4651&view=rev
Author:   javierandalia
Date:     2012-01-26 17:37:37 +0000 (Thu, 26 Jan 2012)
Log Message:
-----------
Sqli plugin changes: added new signatures (thanks to Ignacio Garrido) - done some code improvement - rewritten sqli test script in the new unittest format - removing test script

Modified Paths:
--------------
    trunk/plugins/audit/sqli.py

Added Paths:
-----------
    trunk/plugins/tests/audit/test_sqli.py

Removed Paths:
-------------
    trunk/scripts/script-sqli.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4653
          http://w3af.svn.sourceforge.net/w3af/?rev=4653&view=rev
Author:   javierandalia
Date:     2012-01-26 21:54:15 +0000 (Thu, 26 Jan 2012)
Log Message:
-----------
Ported script-file_upload to unittest format

Added Paths:
-----------
    trunk/plugins/tests/audit/test_fileupload.py

Removed Paths:
-------------
    trunk/scripts/script-file_upload.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4658
          http://w3af.svn.sourceforge.net/w3af/?rev=4658&view=rev
Author:   javierandalia
Date:     2012-01-31 16:14:35 +0000 (Tue, 31 Jan 2012)
Log Message:
-----------
HTTPResponse's content_type attr now accessed as a property instead of method- More pythonic and takes advantage of lazy evaluation - Solution improvement for ticket #170513's submitted fix

Modified Paths:
--------------
    trunk/core/data/db/history.py
    trunk/core/data/parsers/documentParser.py
    trunk/core/data/url/httpResponse.py
    trunk/core/ui/gtkUi/rrviews/rendering.py
    trunk/plugins/discovery/phpEggs.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4674
          http://w3af.svn.sourceforge.net/w3af/?rev=4674&view=rev
Author:   andresriancho
Date:     2012-02-13 18:58:46 +0000 (Mon, 13 Feb 2012)
Log Message:
-----------
Adding new attack plugin (beta, doesn't work yet) and test script.

Added Paths:
-----------
    trunk/plugins/attack/xpath.py
    trunk/scripts/script-xpath-exploit.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4675
          http://w3af.svn.sourceforge.net/w3af/?rev=4675&view=rev
Author:   javierandalia
Date:     2012-02-13 20:18:38 +0000 (Mon, 13 Feb 2012)
Log Message:
-----------
More encoding changes - 'querystring' now a property from URLObjects - Renamed some DataContainer structures, using OrderedDict as baseclass

Modified Paths:
--------------
    trunk/core/data/dc/cookie.py
    trunk/core/data/dc/dataContainer.py
    trunk/core/data/dc/form.py
    trunk/core/data/dc/queryString.py
    trunk/core/data/dc/tests/test_form.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/core/data/fuzzer/mutant.py
    trunk/core/data/fuzzer/mutantFileName.py
    trunk/core/data/fuzzer/mutantUrlParts.py
    trunk/core/data/parsers/baseparser.py
    trunk/core/data/parsers/encode_decode.py
    trunk/core/data/parsers/htmlParser.py
    trunk/core/data/parsers/sgmlParser.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/parsers/wmlParser.py
    trunk/core/data/request/frFactory.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/data/request/httpPostDataRequest.py
    trunk/core/data/request/httpQsRequest.py
    trunk/core/data/request/variant_identification.py
    trunk/core/data/searchEngines/pks.py
    trunk/core/data/url/HTTPRequest.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/gtkUi/scanrun.py
    trunk/plugins/attack/db/dbDriverFunctions.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/payloads/payloads/php_sca.py
    trunk/plugins/audit/eval.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/importResults.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wordpress_enumerate_users.py
    trunk/plugins/evasion/rndParam.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/tests/audit/test_xss.py
    trunk/plugins/tests/discovery/test_webspider.py

Added Paths:
-----------
    trunk/core/data/dc/header.py

Removed Paths:
-------------
    trunk/scripts/script-encoding.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4676
          http://w3af.svn.sourceforge.net/w3af/?rev=4676&view=rev
Author:   javierandalia
Date:     2012-02-13 20:20:07 +0000 (Mon, 13 Feb 2012)
Log Message:
-----------
Code cleaning and some other minor changes

Modified Paths:
--------------
    trunk/core/data/kb/info.py
    trunk/core/data/options/optionList.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/searchEngines/tests/test_googleSearchEngine.py
    trunk/core/data/url/httpResponse.py
    trunk/plugins/discovery/ghdb.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4681
          http://w3af.svn.sourceforge.net/w3af/?rev=4681&view=rev
Author:   andresriancho
Date:     2012-02-14 21:05:17 +0000 (Tue, 14 Feb 2012)
Log Message:
-----------
Still beta, but now at least does something! get_xml still needs some work and I'll have to remove all TODO messages.

Modified Paths:
--------------
    trunk/plugins/attack/xpath.py
    trunk/scripts/script-xpath-exploit.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4689
          http://w3af.svn.sourceforge.net/w3af/?rev=4689&view=rev
Author:   andresriancho
Date:     2012-02-17 17:38:20 +0000 (Fri, 17 Feb 2012)
Log Message:
-----------
Fixed bug #170864 and added a not-so-related related unittest to url_object.

Modified Paths:
--------------
    trunk/core/data/parsers/urlParser.py
    trunk/plugins/discovery/sitemapReader.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4693
          http://w3af.svn.sourceforge.net/w3af/?rev=4693&view=rev
Author:   andresriancho
Date:     2012-02-17 18:19:12 +0000 (Fri, 17 Feb 2012)
Log Message:
-----------
Changing FSF address

Modified Paths:
--------------
    trunk/core/ui/gtkUi/comparator/diffutil.py
    trunk/extlib/cluster/cluster.py
    trunk/extlib/cluster/clusterTests.py
    trunk/plugins/discovery/oHalberd/GNUmakefile
    trunk/plugins/discovery/oHalberd/Halberd/ScanTask.py
    trunk/plugins/discovery/oHalberd/Halberd/__init__.py
    trunk/plugins/discovery/oHalberd/Halberd/clientlib.py
    trunk/plugins/discovery/oHalberd/Halberd/clues/Clue.py
    trunk/plugins/discovery/oHalberd/Halberd/clues/__init__.py
    trunk/plugins/discovery/oHalberd/Halberd/clues/analysis.py
    trunk/plugins/discovery/oHalberd/Halberd/clues/file.py
    trunk/plugins/discovery/oHalberd/Halberd/conflib.py
    trunk/plugins/discovery/oHalberd/Halberd/crew.py
    trunk/plugins/discovery/oHalberd/Halberd/logger.py
    trunk/plugins/discovery/oHalberd/Halberd/reportlib.py
    trunk/plugins/discovery/oHalberd/Halberd/shell.py
    trunk/plugins/discovery/oHalberd/Halberd/util.py
    trunk/plugins/discovery/oHalberd/LICENSE
    trunk/plugins/discovery/oHalberd/doc/GNUmakefile
    trunk/plugins/discovery/oHalberd/scripts/halberd
    trunk/plugins/discovery/oHalberd/setup.py
    trunk/plugins/discovery/oHalberd/tests/__init__.py
    trunk/plugins/discovery/oHalberd/tests/test_clientlib.py
    trunk/plugins/discovery/oHalberd/tests/test_clues_Clue.py
    trunk/plugins/discovery/oHalberd/tests/test_clues_analysis.py
    trunk/plugins/discovery/oHalberd/tests/test_clues_file.py
    trunk/plugins/discovery/oHmap/hmap.py
    trunk/readme/GPL
    trunk/tools/gencc

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4719
          http://w3af.svn.sourceforge.net/w3af/?rev=4719&view=rev
Author:   andresriancho
Date:     2012-03-13 00:25:17 +0000 (Tue, 13 Mar 2012)
Log Message:
-----------
Adding simple tests for all plugins basic methods, minor refactoring of attack plugins.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseAttackPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/data/options/option.py
    trunk/core/data/options/optionList.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py

Added Paths:
-----------
    trunk/plugins/tests/basic.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4725
          http://w3af.svn.sourceforge.net/w3af/?rev=4725&view=rev
Author:   javierandalia
Date:     2012-03-13 19:39:18 +0000 (Tue, 13 Mar 2012)
Log Message:
-----------
Other misc minor changes

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/core/data/parsers/baseparser.py
    trunk/plugins/grep/pathDisclosure.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4732
          http://w3af.svn.sourceforge.net/w3af/?rev=4732&view=rev
Author:   javierandalia
Date:     2012-03-14 20:43:02 +0000 (Wed, 14 Mar 2012)
Log Message:
-----------
Added chardet as an extlib dependency

Modified Paths:
--------------
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/controllers/misc/encoding.py

Added Paths:
-----------
    trunk/extlib/chardet/
    trunk/extlib/chardet/__init__.py
    trunk/extlib/chardet/big5freq.py
    trunk/extlib/chardet/big5prober.py
    trunk/extlib/chardet/chardistribution.py
    trunk/extlib/chardet/charsetgroupprober.py
    trunk/extlib/chardet/charsetprober.py
    trunk/extlib/chardet/codingstatemachine.py
    trunk/extlib/chardet/constants.py
    trunk/extlib/chardet/escprober.py
    trunk/extlib/chardet/escsm.py
    trunk/extlib/chardet/eucjpprober.py
    trunk/extlib/chardet/euckrfreq.py
    trunk/extlib/chardet/euckrprober.py
    trunk/extlib/chardet/euctwfreq.py
    trunk/extlib/chardet/euctwprober.py
    trunk/extlib/chardet/gb2312freq.py
    trunk/extlib/chardet/gb2312prober.py
    trunk/extlib/chardet/hebrewprober.py
    trunk/extlib/chardet/jisfreq.py
    trunk/extlib/chardet/jpcntx.py
    trunk/extlib/chardet/langbulgarianmodel.py
    trunk/extlib/chardet/langcyrillicmodel.py
    trunk/extlib/chardet/langgreekmodel.py
    trunk/extlib/chardet/langhebrewmodel.py
    trunk/extlib/chardet/langhungarianmodel.py
    trunk/extlib/chardet/langthaimodel.py
    trunk/extlib/chardet/latin1prober.py
    trunk/extlib/chardet/mbcharsetprober.py
    trunk/extlib/chardet/mbcsgroupprober.py
    trunk/extlib/chardet/mbcssm.py
    trunk/extlib/chardet/sbcharsetprober.py
    trunk/extlib/chardet/sbcsgroupprober.py
    trunk/extlib/chardet/sjisprober.py
    trunk/extlib/chardet/universaldetector.py
    trunk/extlib/chardet/utf8prober.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4823
          http://w3af.svn.sourceforge.net/w3af/?rev=4823&view=rev
Author:   andresriancho
Date:     2012-04-05 14:40:10 +0000 (Thu, 05 Apr 2012)
Log Message:
-----------
Merging esmre branch into trunk. The performance enhancements shown by this module haven't been noticable in my tests, but the refactoring
that was performed might be useful for other things, so I decided to merge it back into the trunk. The most important things here are
the changes added by the multi_in and multi_re classes to all/most plugins that perform pattern matching against HTTP responses.

Modified Paths:
--------------
    trunk/core/controllers/basePlugin/baseBruteforcePlugin.py
    trunk/core/controllers/basePlugin/baseEvasionPlugin.py
    trunk/core/controllers/basePlugin/baseManglePlugin.py
    trunk/core/controllers/basePlugin/baseOutputPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/misc/dependencyCheck.py
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/targetSettings.py
    trunk/core/controllers/w3afCore.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/core/ui/consoleUi/menu.py
    trunk/extlib/cluster/cluster.py
    trunk/extlib/cluster/clusterTests.py
    trunk/plugins/attack/rfiProxy.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/generic.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/htaccessMethods.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/redos.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/sslCertificate.py
    trunk/plugins/audit/unSSL.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xsrf.py
    trunk/plugins/audit/xss.py
    trunk/plugins/audit/xst.py
    trunk/plugins/auth/generic.py
    trunk/plugins/discovery/afd.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/bing_spider.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/detectReverseProxy.py
    trunk/plugins/discovery/detectTransparentProxy.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/dnsWildcard.py
    trunk/plugins/discovery/domain_dot.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/favicon_identification.py
    trunk/plugins/discovery/findBackdoor.py
    trunk/plugins/discovery/findCaptchas.py
    trunk/plugins/discovery/findDVCS.py
    trunk/plugins/discovery/findGit.py
    trunk/plugins/discovery/findJBoss.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/fingerBing.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/fingerPKS.py
    trunk/plugins/discovery/fingerprint_WAF.py
    trunk/plugins/discovery/fingerprint_os.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/halberd.py
    trunk/plugins/discovery/hmap.py
    trunk/plugins/discovery/importResults.py
    trunk/plugins/discovery/oracleDiscovery.py
    trunk/plugins/discovery/phishtank.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/ria_enumerator.py
    trunk/plugins/discovery/robotsReader.py
    trunk/plugins/discovery/serverHeader.py
    trunk/plugins/discovery/serverStatus.py
    trunk/plugins/discovery/sharedHosting.py
    trunk/plugins/discovery/sitemapReader.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/spiderMan.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/urllist_txt.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wordpress_enumerate_users.py
    trunk/plugins/discovery/wordpress_fingerprint.py
    trunk/plugins/discovery/wordpress_fullpathdisclosure.py
    trunk/plugins/discovery/xssedDotCom.py
    trunk/plugins/discovery/zone_h.py
    trunk/plugins/evasion/backSpaceBetweenDots.py
    trunk/plugins/evasion/fullWidthEncode.py
    trunk/plugins/evasion/modsecurity.py
    trunk/plugins/evasion/reversedSlashes.py
    trunk/plugins/evasion/rndCase.py
    trunk/plugins/evasion/rndHexEncode.py
    trunk/plugins/evasion/rndParam.py
    trunk/plugins/evasion/rndPath.py
    trunk/plugins/evasion/selfReference.py
    trunk/plugins/evasion/shiftOutShiftInBetweenDots.py
    trunk/plugins/grep/ajax.py
    trunk/plugins/grep/blankBody.py
    trunk/plugins/grep/codeDisclosure.py
    trunk/plugins/grep/collectCookies.py
    trunk/plugins/grep/creditCards.py
    trunk/plugins/grep/directoryIndexing.py
    trunk/plugins/grep/domXss.py
    trunk/plugins/grep/dotNetEventValidation.py
    trunk/plugins/grep/error500.py
    trunk/plugins/grep/errorPages.py
    trunk/plugins/grep/feeds.py
    trunk/plugins/grep/fileUpload.py
    trunk/plugins/grep/findComments.py
    trunk/plugins/grep/formAutocomplete.py
    trunk/plugins/grep/getMails.py
    trunk/plugins/grep/hashFind.py
    trunk/plugins/grep/httpAuthDetect.py
    trunk/plugins/grep/httpInBody.py
    trunk/plugins/grep/lang.py
    trunk/plugins/grep/metaTags.py
    trunk/plugins/grep/motw.py
    trunk/plugins/grep/objects.py
    trunk/plugins/grep/oracle.py
    trunk/plugins/grep/passwordProfiling.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/grep/privateIP.py
    trunk/plugins/grep/strangeHTTPCode.py
    trunk/plugins/grep/strangeHeaders.py
    trunk/plugins/grep/strangeParameters.py
    trunk/plugins/grep/strangeReason.py
    trunk/plugins/grep/svnUsers.py
    trunk/plugins/grep/symfony.py
    trunk/plugins/grep/user_defined_regex.py
    trunk/plugins/grep/wsdlGreper.py
    trunk/plugins/mangle/sed.py
    trunk/plugins/tests/audit/test_sqli.py
    trunk/scripts/script-LDAPi.w3af
    trunk/scripts/script-xpath.w3af

Added Paths:
-----------
    trunk/core/data/esmre/
    trunk/core/data/esmre/__init__.py
    trunk/core/data/esmre/esm_multi_in.py
    trunk/core/data/esmre/esmre_multire.py
    trunk/core/data/esmre/in_multi_in.py
    trunk/core/data/esmre/multi_in.py
    trunk/core/data/esmre/multi_re.py
    trunk/core/data/esmre/re_multire.py
    trunk/core/data/esmre/test_data.py
    trunk/core/data/esmre/test_multi_in.py
    trunk/core/data/esmre/test_multire.py
    trunk/plugins/tests/audit/test_ldapi.py
    trunk/plugins/tests/audit/test_lfi.py
    trunk/plugins/tests/audit/test_mx_injection.py
    trunk/plugins/tests/audit/test_os_commanding.py
    trunk/plugins/tests/audit/test_xpath.py
    trunk/plugins/tests/grep/test_error_pages.py
    trunk/plugins/tests/grep/test_http_in_body.py

Removed Paths:
-------------
    trunk/core/data/esmre/__init__.py
    trunk/core/data/esmre/esm_multi_in.py
    trunk/core/data/esmre/esmre_multire.py
    trunk/core/data/esmre/in_multi_in.py
    trunk/core/data/esmre/multi_in.py
    trunk/core/data/esmre/multi_re.py
    trunk/core/data/esmre/re_multire.py
    trunk/core/data/esmre/test_data.py
    trunk/core/data/esmre/test_multi_in.py
    trunk/core/data/esmre/test_multire.py

Property Changed:
----------------
    trunk/
    trunk/plugins/grep/ssndata/
    trunk/scripts/script-form_autocomplete.w3af
    trunk/scripts/script-robots_txt.w3af
    trunk/scripts/script-sitemap_xml.w3af
    trunk/scripts/script-urllist_txt.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4824
          http://w3af.svn.sourceforge.net/w3af/?rev=4824&view=rev
Author:   andresriancho
Date:     2012-04-05 14:42:27 +0000 (Thu, 05 Apr 2012)
Log Message:
-----------
svn propset svn:ignore '*.py[co]'

Property Changed:
----------------
    trunk/core/controllers/auto_update/tests/
    trunk/core/controllers/daemons/tests/
    trunk/core/controllers/sca/
    trunk/core/controllers/sca/tests/
    trunk/core/controllers/tests/
    trunk/core/data/esmre/
    trunk/core/data/parsers/tests/
    trunk/core/data/request/tests/
    trunk/core/data/url/tests/
    trunk/core/data/visualization/
    trunk/core/ui/gtkUi/tests/
    trunk/plugins/auth/
    trunk/plugins/discovery/wordnet/
    trunk/plugins/grep/tests/
    trunk/plugins/output/xmlFile/
    trunk/plugins/tests/
    trunk/plugins/tests/audit/
    trunk/plugins/tests/discovery/
    trunk/plugins/tests/grep/

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4832
          http://w3af.svn.sourceforge.net/w3af/?rev=4832&view=rev
Author:   andresriancho
Date:     2012-04-06 01:36:07 +0000 (Fri, 06 Apr 2012)
Log Message:
-----------
Added a more strict algorithm to verify 404 responses.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/plugins/discovery/webSpider.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4881
          http://w3af.svn.sourceforge.net/w3af/?rev=4881&view=rev
Author:   oxdef
Date:     2012-04-13 10:28:25 +0000 (Fri, 13 Apr 2012)
Log Message:
-----------
Merged HistoryItem improvements

Modified Paths:
--------------
    trunk/core/controllers/misc/temp_dir.py
    trunk/core/data/db/history.py
    trunk/plugins/output/gtkOutput.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4905
          http://w3af.svn.sourceforge.net/w3af/?rev=4905&view=rev
Author:   andresriancho
Date:     2012-04-20 23:31:00 +0000 (Fri, 20 Apr 2012)
Log Message:
-----------
Adding cpu usage profiling and refactoring memory usage so all profiling is in one place.

Modified Paths:
--------------
    trunk/core/data/url/xUrllib.py
    trunk/w3af_console

Added Paths:
-----------
    trunk/core/controllers/profiling/
    trunk/core/controllers/profiling/__init__.py
    trunk/core/controllers/profiling/cpu_usage.py
    trunk/core/controllers/profiling/memory_usage.py

Removed Paths:
-------------
    trunk/core/controllers/misc/memoryUsage.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4920
          http://w3af.svn.sourceforge.net/w3af/?rev=4920&view=rev
Author:   andresriancho
Date:     2012-04-21 20:53:50 +0000 (Sat, 21 Apr 2012)
Log Message:
-----------
* Removing uriList as nobody was using it (reduced memory usage with this change).
* Renamed urlList to url_objects.

Modified Paths:
--------------
    trunk/core/controllers/w3afCore.py
    trunk/plugins/attack/payloads/payloads/get_source_code.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/grep/pathDisclosure.py
    trunk/plugins/tests/discovery/test_urlfuzzer.py
    trunk/plugins/tests/discovery/test_webspider.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4941
          http://w3af.svn.sourceforge.net/w3af/?rev=4941&view=rev
Author:   andresriancho
Date:     2012-04-24 16:46:12 +0000 (Tue, 24 Apr 2012)
Log Message:
-----------
* HUGE refactoring of w3afCore. Moved plugin config, target config, profile config, strategy, etc. to specific modules and unit-tested them.
* Moved exportFuzzableRequests to an output plugin.
* Added unit-tests for *many* things.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/export.py
    trunk/core/controllers/coreHelpers/progress.py
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/profiling/memory_usage.py
    trunk/core/controllers/w3afCore.py
    trunk/core/controllers/w3afException.py
    trunk/core/controllers/wizard/questions/question_infrastructure_2.py
    trunk/core/controllers/wizard/questions/question_infrastructure_3.py
    trunk/core/controllers/wizard/questions/question_infrastructure_internet_1.py
    trunk/core/data/kb/knowledgeBase.py
    trunk/core/data/profile/profile.py
    trunk/core/ui/consoleUi/config.py
    trunk/core/ui/consoleUi/consoleUi.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/core/ui/consoleUi/plugins.py
    trunk/core/ui/consoleUi/profiles.py
    trunk/core/ui/consoleUi/rootMenu.py
    trunk/core/ui/gtkUi/confpanel.py
    trunk/core/ui/gtkUi/exploittab.py
    trunk/core/ui/gtkUi/kbtree.py
    trunk/core/ui/gtkUi/logtab.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/pluginconfig.py
    trunk/core/ui/gtkUi/profiles.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/core/ui/gtkUi/wizard.py
    trunk/plugins/tests/basic.py
    trunk/plugins/tests/grep/test_all.py
    trunk/plugins/tests/helper.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/audit_high_risk.pw3af
    trunk/profiles/bruteforce.pw3af
    trunk/profiles/empty_profile.pw3af
    trunk/profiles/fast_scan.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af
    trunk/profiles/sitemap.pw3af
    trunk/profiles/web_infrastructure.pw3af

Added Paths:
-----------
    trunk/core/controllers/coreHelpers/plugins.py
    trunk/core/controllers/coreHelpers/profiles.py
    trunk/core/controllers/coreHelpers/status.py
    trunk/core/controllers/coreHelpers/strategy.py
    trunk/core/controllers/coreHelpers/target.py
    trunk/core/controllers/coreHelpers/tests/
    trunk/core/controllers/coreHelpers/tests/__init__.py
    trunk/core/controllers/coreHelpers/tests/test_plugins.py
    trunk/core/controllers/coreHelpers/tests/test_profiles.py
    trunk/core/controllers/coreHelpers/tests/test_strategy.py
    trunk/core/controllers/coreHelpers/update_urls_in_kb.py
    trunk/plugins/output/export_requests.py
    trunk/plugins/tests/output/
    trunk/plugins/tests/output/__init__.py
    trunk/plugins/tests/output/test_export_requests.py

Removed Paths:
-------------
    trunk/core/controllers/targetSettings.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4942
          http://w3af.svn.sourceforge.net/w3af/?rev=4942&view=rev
Author:   andresriancho
Date:     2012-04-24 18:34:42 +0000 (Tue, 24 Apr 2012)
Log Message:
-----------
While trying to reproduce #171714 , introduced unit-test for xmlFile plugin and fixed some issues in the unit-test framework.

Modified Paths:
--------------
    trunk/core/data/options/option.py
    trunk/core/data/options/optionList.py
    trunk/plugins/output/xmlFile.py
    trunk/plugins/tests/helper.py

Added Paths:
-----------
    trunk/plugins/tests/output/test_xml_output.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4982
          http://w3af.svn.sourceforge.net/w3af/?rev=4982&view=rev
Author:   andresriancho
Date:     2012-05-01 22:57:31 +0000 (Tue, 01 May 2012)
Log Message:
-----------
- Defined (but not used) a disk_set
- Started to use set() in strategy
- More tests for disk_list, realized that __contains__ wasn't working so good so I had to implement disk_item and have some classes implement it
- Renamed temp_persist to disk_list in order to order stuff and have a disk_set.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/strategy.py
    trunk/core/data/parsers/urlParser.py
    trunk/core/data/request/fuzzableRequest.py
    trunk/core/ui/gtkUi/messages.py
    trunk/plugins/discovery/webSpider.py

Added Paths:
-----------
    trunk/core/data/db/disk_item.py
    trunk/core/data/db/disk_list.py
    trunk/core/data/db/disk_set.py
    trunk/core/data/db/tests/test_disk_list.py
    trunk/core/data/db/tests/test_disk_set.py

Removed Paths:
-------------
    trunk/core/data/db/temp_persist.py
    trunk/core/data/db/tests/test_temp_persist.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 4991
          http://w3af.svn.sourceforge.net/w3af/?rev=4991&view=rev
Author:   andresriancho
Date:     2012-05-02 13:28:24 +0000 (Wed, 02 May 2012)
Log Message:
-----------
Cosmetic.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/strategy.py
    trunk/plugins/discovery/favicon_identification.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5094
          http://w3af.svn.sourceforge.net/w3af/?rev=5094&view=rev
Author:   andresriancho
Date:     2012-06-11 13:14:26 +0000 (Mon, 11 Jun 2012)
Log Message:
-----------
Updated the blind sql injection detection with the following objectives:
    * Be fully unit-tested
    * Detect all cases in wavsep
    * Have less false positives

Still need to spend some more time with it in order to have an enhanced time delay detection algorithm that's also generic enough to detect any other time based vulnerability such as OS commanding. More on this later.

Modified Paths:
--------------
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/controllers/sql_tools/blind_sqli_time_delay.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/audit/blindSqli.py

Added Paths:
-----------
    trunk/plugins/tests/audit/test_blind_sqli.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5103
          http://w3af.svn.sourceforge.net/w3af/?rev=5103&view=rev
Author:   andresriancho
Date:     2012-06-11 17:44:00 +0000 (Mon, 11 Jun 2012)
Log Message:
-----------
Adding unittest for response splitting, removing test scripts.

Added Paths:
-----------
    trunk/plugins/tests/audit/test_response_splitting.py

Removed Paths:
-------------
    trunk/scripts/script-response_splitting.w3af
    trunk/scripts/script-response_splitting_error.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5105
          http://w3af.svn.sourceforge.net/w3af/?rev=5105&view=rev
Author:   andresriancho
Date:     2012-06-11 18:08:29 +0000 (Mon, 11 Jun 2012)
Log Message:
-----------
Replacing script with unittest.

Added Paths:
-----------
    trunk/plugins/tests/audit/test_global_redirect.py

Removed Paths:
-------------
    trunk/scripts/script-global_redirect.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5106
          http://w3af.svn.sourceforge.net/w3af/?rev=5106&view=rev
Author:   andresriancho
Date:     2012-06-11 18:26:25 +0000 (Mon, 11 Jun 2012)
Log Message:
-----------
Adding unittest for phishing vector plugin. Removed script for the same plugin.
In a near commit, a refactoring of the phishing vector plugin.

Added Paths:
-----------
    trunk/plugins/tests/audit/test_phishing_vector.py

Removed Paths:
-------------
    trunk/scripts/script-phishing_vector.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5109
          http://w3af.svn.sourceforge.net/w3af/?rev=5109&view=rev
Author:   andresriancho
Date:     2012-06-11 19:25:36 +0000 (Mon, 11 Jun 2012)
Log Message:
-----------
Adding unitttest, removing script.

Added Paths:
-----------
    trunk/plugins/tests/audit/test_format_string.py

Removed Paths:
-------------
    trunk/scripts/script-format_string.w3af

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5116
          http://w3af.svn.sourceforge.net/w3af/?rev=5116&view=rev
Author:   andresriancho
Date:     2012-06-13 18:37:16 +0000 (Wed, 13 Jun 2012)
Log Message:
-----------
* Refactoring of basePlugin.sendMutants to xUrllib.send_mutants
* Added multiple unittests for various plugins
* Refactoring of detection of vulnerabilities that required delays into one module (exact_delay.py).
* Fixed various errors and bugs
* Increased coverage for WAVSEP

Modified Paths:
--------------
    trunk/core/__init__.py
    trunk/core/controllers/basePlugin/baseAttackPlugin.py
    trunk/core/controllers/basePlugin/baseAuditPlugin.py
    trunk/core/controllers/basePlugin/baseAuthPlugin.py
    trunk/core/controllers/basePlugin/baseDiscoveryPlugin.py
    trunk/core/controllers/basePlugin/baseEvasionPlugin.py
    trunk/core/controllers/basePlugin/baseGrepPlugin.py
    trunk/core/controllers/basePlugin/basePlugin.py
    trunk/core/controllers/coreHelpers/fingerprint_404.py
    trunk/core/controllers/coreHelpers/strategy.py
    trunk/core/controllers/coreHelpers/tests/test_plugins.py
    trunk/core/controllers/daemons/localproxy.py
    trunk/core/controllers/daemons/proxy.py
    trunk/core/controllers/sql_tools/blind_sqli_response_diff.py
    trunk/core/controllers/sql_tools/blind_sqli_time_delay.py
    trunk/core/data/__init__.py
    trunk/core/data/exchangableMethods.py
    trunk/core/data/kb/info.py
    trunk/core/data/kb/shell.py
    trunk/core/data/searchEngines/bing.py
    trunk/core/data/searchEngines/googleSearchEngine.py
    trunk/core/data/searchEngines/pks.py
    trunk/core/data/searchEngines/tests/test_googleSearchEngine.py
    trunk/core/data/searchEngines/yahooSiteExplorer.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/__init__.py
    trunk/core/ui/consoleUi/exploit.py
    trunk/core/ui/gtkUi/reqResViewer.py
    trunk/plugins/__init__.py
    trunk/plugins/attack/davShell.py
    trunk/plugins/attack/db/dbDriver.py
    trunk/plugins/attack/db/dbDriverBuilder.py
    trunk/plugins/attack/db/dbDriverFunctions.py
    trunk/plugins/attack/eval.py
    trunk/plugins/attack/fileUploadShell.py
    trunk/plugins/attack/localFileReader.py
    trunk/plugins/attack/osCommandingShell.py
    trunk/plugins/attack/remoteFileIncludeShell.py
    trunk/plugins/attack/sql_webshell.py
    trunk/plugins/attack/sqlmap.py
    trunk/plugins/attack/xpath.py
    trunk/plugins/audit/LDAPi.py
    trunk/plugins/audit/blindSqli.py
    trunk/plugins/audit/buffOverflow.py
    trunk/plugins/audit/dav.py
    trunk/plugins/audit/eval.py
    trunk/plugins/audit/fileUpload.py
    trunk/plugins/audit/formatString.py
    trunk/plugins/audit/frontpage.py
    trunk/plugins/audit/generic.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/audit/htaccessMethods.py
    trunk/plugins/audit/localFileInclude.py
    trunk/plugins/audit/mxInjection.py
    trunk/plugins/audit/osCommanding.py
    trunk/plugins/audit/phishingVector.py
    trunk/plugins/audit/preg_replace.py
    trunk/plugins/audit/redos.py
    trunk/plugins/audit/remoteFileInclude.py
    trunk/plugins/audit/responseSplitting.py
    trunk/plugins/audit/sqli.py
    trunk/plugins/audit/ssi.py
    trunk/plugins/audit/unSSL.py
    trunk/plugins/audit/xpath.py
    trunk/plugins/audit/xsrf.py
    trunk/plugins/audit/xss.py
    trunk/plugins/audit/xst.py
    trunk/plugins/auth/generic.py
    trunk/plugins/bruteforce/basicAuthBrute.py
    trunk/plugins/bruteforce/formAuthBrute.py
    trunk/plugins/discovery/afd.py
    trunk/plugins/discovery/allowedMethods.py
    trunk/plugins/discovery/archiveDotOrg.py
    trunk/plugins/discovery/bing_spider.py
    trunk/plugins/discovery/content_negotiation.py
    trunk/plugins/discovery/detectReverseProxy.py
    trunk/plugins/discovery/digitSum.py
    trunk/plugins/discovery/dir_bruter.py
    trunk/plugins/discovery/dnsWildcard.py
    trunk/plugins/discovery/domain_dot.py
    trunk/plugins/discovery/dotNetErrors.py
    trunk/plugins/discovery/favicon_identification.py
    trunk/plugins/discovery/findBackdoor.py
    trunk/plugins/discovery/findCaptchas.py
    trunk/plugins/discovery/findDVCS.py
    trunk/plugins/discovery/findGit.py
    trunk/plugins/discovery/findJBoss.py
    trunk/plugins/discovery/findvhost.py
    trunk/plugins/discovery/fingerBing.py
    trunk/plugins/discovery/fingerGoogle.py
    trunk/plugins/discovery/fingerPKS.py
    trunk/plugins/discovery/fingerprint_WAF.py
    trunk/plugins/discovery/fingerprint_os.py
    trunk/plugins/discovery/frontpage_version.py
    trunk/plugins/discovery/ghdb.py
    trunk/plugins/discovery/googleSpider.py
    trunk/plugins/discovery/netcraft.py
    trunk/plugins/discovery/oracleDiscovery.py
    trunk/plugins/discovery/phishtank.py
    trunk/plugins/discovery/phpEggs.py
    trunk/plugins/discovery/phpinfo.py
    trunk/plugins/discovery/pykto.py
    trunk/plugins/discovery/ria_enumerator.py
    trunk/plugins/discovery/robotsReader.py
    trunk/plugins/discovery/serverHeader.py
    trunk/plugins/discovery/serverStatus.py
    trunk/plugins/discovery/sharedHosting.py
    trunk/plugins/discovery/sitemapReader.py
    trunk/plugins/discovery/slash.py
    trunk/plugins/discovery/spiderMan.py
    trunk/plugins/discovery/urlFuzzer.py
    trunk/plugins/discovery/urllist_txt.py
    trunk/plugins/discovery/userDir.py
    trunk/plugins/discovery/webDiff.py
    trunk/plugins/discovery/webSpider.py
    trunk/plugins/discovery/wordnet.py
    trunk/plugins/discovery/wordpress_enumerate_users.py
    trunk/plugins/discovery/wordpress_fingerprint.py
    trunk/plugins/discovery/wordpress_fullpathdisclosure.py
    trunk/plugins/discovery/wsdlFinder.py
    trunk/plugins/discovery/xssedDotCom.py
    trunk/plugins/discovery/zone_h.py
    trunk/profiles/OWASP_TOP10.pw3af
    trunk/profiles/audit_high_risk.pw3af
    trunk/profiles/full_audit.pw3af
    trunk/profiles/full_audit_manual_disc.pw3af

Added Paths:
-----------
    trunk/core/controllers/delay_detection/
    trunk/core/controllers/delay_detection/__init__.py
    trunk/core/controllers/delay_detection/delay.py
    trunk/core/controllers/delay_detection/exact_delay.py
    trunk/core/data/kb/tests/
    trunk/core/data/kb/tests/__init__.py
    trunk/core/data/kb/tests/test_info.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5120
          http://w3af.svn.sourceforge.net/w3af/?rev=5120&view=rev
Author:   andresriancho
Date:     2012-06-13 21:27:12 +0000 (Wed, 13 Jun 2012)
Log Message:
-----------
Cosmetic changes.

Modified Paths:
--------------
    trunk/core/data/visualization/string_representation.py
    trunk/plugins/grep/passwordProfiling.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5148
          http://w3af.svn.sourceforge.net/w3af/?rev=5148&view=rev
Author:   andresriancho
Date:     2012-06-15 19:07:13 +0000 (Fri, 15 Jun 2012)
Log Message:
-----------
Merging error_handling branch into trunk. Enjoy error handling :D

Modified Paths:
--------------
    trunk/core/controllers/auto_update/tests/test_auto_update.py
    trunk/core/controllers/bruteforce/bruteforcer.py
    trunk/core/controllers/coreHelpers/status.py
    trunk/core/controllers/coreHelpers/strategy.py
    trunk/core/controllers/dependency_check/dependency_check.py
    trunk/core/controllers/easy_contribution/sourceforge.py
    trunk/core/controllers/misc/get_net_iface.py
    trunk/core/controllers/miscSettings.py
    trunk/core/controllers/sca/tests/test_sca.py
    trunk/core/controllers/w3afCore.py
    trunk/core/controllers/wizard/questions/question_infrastructure_4.py
    trunk/core/controllers/wizard/questions/question_target_1.py
    trunk/core/data/db/tests/test_history.py
    trunk/core/data/dc/form.py
    trunk/core/data/dc/tests/test_form.py
    trunk/core/data/kb/config.py
    trunk/core/data/profile/profile.py
    trunk/core/data/url/xUrllib.py
    trunk/core/ui/consoleUi/help.xml
    trunk/core/ui/consoleUi/kbMenu.py
    trunk/core/ui/consoleUi/menu.py
    trunk/core/ui/consoleUi/rootMenu.py
    trunk/core/ui/gtkUi/entries.py
    trunk/core/ui/gtkUi/guardian.py
    trunk/core/ui/gtkUi/helpers.py
    trunk/core/ui/gtkUi/main.py
    trunk/core/ui/gtkUi/splash.py
    trunk/plugins/audit/globalRedirect.py
    trunk/plugins/tests/audit/test_blind_sqli.py
    trunk/plugins/tests/helper.py

Added Paths:
-----------
    trunk/core/controllers/coreHelpers/exception_handler.py
    trunk/core/controllers/coreHelpers/tests/test_exception_handler.py
    trunk/core/controllers/exception_handling/
    trunk/core/controllers/misc/dns_cache.py
    trunk/core/data/misc/
    trunk/core/data/url/tests/test_xurllib.py
    trunk/core/ui/consoleUi/bug_report.py
    trunk/core/ui/gtkUi/constants.py
    trunk/core/ui/gtkUi/data/warning-black-animated.gif
    trunk/core/ui/gtkUi/dependency_check.py
    trunk/core/ui/gtkUi/exception_handling/
    trunk/plugins/tests/audit/test_all_false_positive.py
    trunk/plugins/tests/discovery/failing_spider.py
    trunk/plugins/tests/discovery/test_discover_exception_handling.py

Removed Paths:
-------------
    trunk/core/ui/gtkUi/bug_report.py
    trunk/core/ui/gtkUi/dependencyCheck.py
    trunk/core/ui/gtkUi/exception_handler.py

Property Changed:
----------------
    trunk/

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 5398
          http://w3af.svn.sourceforge.net/w3af/?rev=5398&view=rev
Author:   andresriancho
Date:     2012-07-20 15:45:12 +0000 (Fri, 20 Jul 2012)
Log Message:
-----------
Merged changes for repeated parameter names. Unittests are not passing but Taras told me he would fix them.

Modified Paths:
--------------
    trunk/core/controllers/miscSettings.py
    trunk/core/data/fuzzer/fuzzer.py
    trunk/plugins/tests/audit/test_xss.py

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.

Revision: 6655
          http://w3af.svn.sourceforge.net/w3af/?rev=6655&view=rev
Author:   andresriancho
Date:     2013-04-13 21:18:10 +0000 (Sat, 13 Apr 2013)
Log Message:
-----------
Adding warning so people update to the latest from github

Modified Paths:
--------------
    trunk/w3af_console
    trunk/w3af_gui

This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.