[W3af-svn-notify] [Task #148111] Manually create a fuzzed requests based on tokens
Status: Beta
Brought to you by:
andresriancho
Menu
▾
▴
[W3af-svn-notify] [Task #148111] Manually create a fuzzed requests based on tokens
|
From: SourceForge.net <no...@so...> - 2008-05-11 22:06:35
|
Task #148111 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Manually create a fuzzed requests based on tokens Complete: 100% Status: Closed Authority : facundobatista Assigned to: facundobatista Description: A new option "Fuzzy Request" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window The Help text is only for the fuzzy syntax Feedbacks. Analyze: greyed out until the user clicked on "analyze"; if the user changes the request, it goes grey again. Send: it updates dynamicly with the requests that are being sent. When user clicks on "send", if will sent more than 20 request, popup a confirmation question. Selector: the text entry background will be yellow if its value is wrong; if the user gives enter with the wrong value, it will do nothing, just a message to the statusbar). Andres needs to implement something in the core for this. The request/post fields are repeated because the upper has what the user wrote, and the lower has the different alternatives created with the fuzzy syntax (actually those are sent as requests). Syntax: - the "$" is the delimiter - to actually include a "$", use "$$" - if you write "$something$", the "something" will be evaluated with eval, having the "string" module already imported (eg: "$range(1,5,2)$", "$string.lowercase$"). Follow-Ups: ------------------------------------------------------- Date: 2008-05-11 19:06 By: facundobatista Comment: Done, with the agreed changes in the list. ------------------------------------------------------- Date: 2008-05-02 14:31 By: facundobatista Comment: This is the agreed new design: http://www.taniquetil.com.ar/facundo/owasp/soc08-148111b.svg ------------------------------------------------------- Date: 2008-05-01 21:43 By: facundobatista Comment: First draft ------------------------------------------------------- Date: 2008-04-27 11:53 By: facundobatista Comment: GUI design: http://www.taniquetil.com.ar/facundo/owasp/soc08-148111.svg Other detail talked initially: When user clicks on "Analyze", with the "preview" activated, it'll popup a new window showing (but don't sending) all the generated requests. ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148111&group_id=170274&group_project_id=56282 |
