w3af-svn-notify Mailing List for w3af (Page 247)
Status: Beta
Brought to you by:
andresriancho
Menu
▾
▴
w3af-svn-notify — This mailing list has a copy of the SVN Commit logs and each modified file
You can subscribe to this list here.
| 2008 |
Jan
|
Feb
(235) |
Mar
(336) |
Apr
(280) |
May
(278) |
Jun
(159) |
Jul
(270) |
Aug
(240) |
Sep
(121) |
Oct
(110) |
Nov
(199) |
Dec
(228) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2009 |
Jan
(251) |
Feb
(206) |
Mar
(115) |
Apr
(45) |
May
(27) |
Jun
(67) |
Jul
(49) |
Aug
(38) |
Sep
(10) |
Oct
(131) |
Nov
(89) |
Dec
(38) |
| 2010 |
Jan
(85) |
Feb
(71) |
Mar
(45) |
Apr
(23) |
May
(12) |
Jun
|
Jul
(11) |
Aug
(7) |
Sep
(81) |
Oct
(79) |
Nov
(165) |
Dec
(62) |
| 2011 |
Jan
(134) |
Feb
(73) |
Mar
(34) |
Apr
(63) |
May
(147) |
Jun
(43) |
Jul
(21) |
Aug
(26) |
Sep
(43) |
Oct
(34) |
Nov
(44) |
Dec
(112) |
| 2012 |
Jan
(47) |
Feb
(44) |
Mar
(72) |
Apr
(209) |
May
(54) |
Jun
(279) |
Jul
(151) |
Aug
(332) |
Sep
(39) |
Oct
(268) |
Nov
(116) |
Dec
(368) |
| 2013 |
Jan
(73) |
Feb
|
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: <and...@us...> - 2008-04-29 13:26:45
|
Revision: 1059
http://w3af.svn.sourceforge.net/w3af/?rev=1059&view=rev
Author: andresriancho
Date: 2008-04-29 06:24:18 -0700 (Tue, 29 Apr 2008)
Log Message:
-----------
Minimal change to remove a simple bug that appears only on some cases on which the user has commit privileges to the w3af SVN.
Modified Paths:
--------------
trunk/core/controllers/w3afCore.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-29 04:22:55
|
Revision: 1058
http://w3af.svn.sourceforge.net/w3af/?rev=1058&view=rev
Author: andresriancho
Date: 2008-04-28 21:22:53 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
Added help command for shell objects.
Modified Paths:
--------------
trunk/core/data/kb/shell.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-29 04:11:02
|
Revision: 1057
http://w3af.svn.sourceforge.net/w3af/?rev=1057&view=rev
Author: andresriancho
Date: 2008-04-28 21:11:00 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
Removing pyrijndael dependency because I didn't used it.
Modified Paths:
--------------
trunk/core/controllers/w3afAgent/AESSocket.py
Removed Paths:
-------------
trunk/extlib/pyrijndael/
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <fac...@us...> - 2008-04-28 22:41:23
|
Revision: 1056
http://w3af.svn.sourceforge.net/w3af/?rev=1056&view=rev
Author: facundobatista
Date: 2008-04-28 15:41:20 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
First Manual Request version, need to finish the functionality.
Modified Paths:
--------------
trunk/core/ui/gtkUi/main.py
trunk/core/ui/gtkUi/reqResViewer.py
Added Paths:
-----------
trunk/core/ui/gtkUi/craftedRequests.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-28 17:43:46
|
Revision: 1055
http://w3af.svn.sourceforge.net/w3af/?rev=1055&view=rev
Author: andresriancho
Date: 2008-04-28 10:43:36 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
New way of handling errors in 404 generator.
Modified Paths:
--------------
trunk/core/controllers/coreHelpers/fingerprint404Page.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-28 16:45:05
|
Revision: 1054
http://w3af.svn.sourceforge.net/w3af/?rev=1054&view=rev
Author: andresriancho
Date: 2008-04-28 09:44:47 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
Better error handling in 404 generation.
Modified Paths:
--------------
trunk/core/controllers/coreHelpers/fingerprint404Page.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-28 16:39:33
|
Revision: 1053
http://w3af.svn.sourceforge.net/w3af/?rev=1053&view=rev
Author: andresriancho
Date: 2008-04-28 09:39:23 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
Fixing bug in the objects plugin. I was using a variable v that wasn't defined.
Modified Paths:
--------------
trunk/plugins/grep/objects.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-28 10:47:56
|
Revision: 1052
http://w3af.svn.sourceforge.net/w3af/?rev=1052&view=rev
Author: andresriancho
Date: 2008-04-28 03:47:30 -0700 (Mon, 28 Apr 2008)
Log Message:
-----------
Adding some debugging lines to see what is happenning with the global error count.
Modified Paths:
--------------
trunk/core/data/url/xUrllib.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-28 03:58:20
|
Revision: 1051
http://w3af.svn.sourceforge.net/w3af/?rev=1051&view=rev
Author: andresriancho
Date: 2008-04-27 20:58:17 -0700 (Sun, 27 Apr 2008)
Log Message:
-----------
Possibly fixing bug.
Modified Paths:
--------------
trunk/core/data/url/xUrllib.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-27 15:31:04
|
Revision: 1050
http://w3af.svn.sourceforge.net/w3af/?rev=1050&view=rev
Author: andresriancho
Date: 2008-04-27 08:31:00 -0700 (Sun, 27 Apr 2008)
Log Message:
-----------
Added some error signatures.
Modified Paths:
--------------
trunk/plugins/audit/sqli.py
trunk/plugins/grep/errorPages.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: SourceForge.net <no...@so...> - 2008-04-27 15:00:55
|
Task #148114 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: HTTP response side by side content compare Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: Try to reutilize MELD (check the license). Test if that reutilization is ok in win32. Andres needs to define how to choose the two responses (or more than two). This task needs further definitions!! ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148114&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:59:38
|
Task #148113 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Embebed tool to encode/decode URL/Base64 and to hash sha1/md5 Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Encode/Hash" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window Upper functionality will process the upper text and will put the answer in the lower window. Lower functionality will process the lower text and will put the answer in the upper window. Upper options: URL Encode, Base64 Encode, Sha1 hash, md5 hash. Lower options: URL Decode, Base64 Decode. Follow-Ups: ------------------------------------------------------- Date: 2008-04-27 11:59 By: facundobatista Comment: GUI design: http://www.taniquetil.com.ar/facundo/owasp/soc08-148113.svg ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148113&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:58:26
|
Task #148113 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Embebed tool to encode/decode URL/Base64 and to hash sha1/md5 Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Encode/Hash" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window Upper functionality will process the upper text and will put the answer in the lower window. Lower functionality will process the lower text and will put the answer in the upper window. Upper options: URL Encode, Base64 Encode, Sha1 hash, md5 hash. Lower options: URL Decode, Base64 Decode. ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148113&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:55:58
|
Task #148112 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Reload a plugin after its edited from within the GUI Complete: 0% Status: Open Authority : facundobatista Assigned to: andresriancho Description: When a plugin is edited and is saved, the GUI should alert the Core for it to reload the plugin. Andres needs to implement something in the Core for this (like a "reloadPlugin(plugintype, pluginname)" function). ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148112&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:53:33
|
Task #148111 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Manually create a fuzzed requests based on tokens Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Fuzzy Request" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window The Help text is only for the fuzzy syntax Feedbacks. Analyze: greyed out until the user clicked on "analyze"; if the user changes the request, it goes grey again. Send: it updates dynamicly with the requests that are being sent. When user clicks on "send", if will sent more than 20 request, popup a confirmation question. Selector: the text entry background will be yellow if its value is wrong; if the user gives enter with the wrong value, it will do nothing, just a message to the statusbar). Andres needs to implement something in the core for this. The request/post fields are repeated because the upper has what the user wrote, and the lower has the different alternatives created with the fuzzy syntax (actually those are sent as requests). Syntax: - the "$" is the delimiter - to actually include a "$", use "$$" - if you write "$something$", the "something" will be evaluated with eval, having the "string" module already imported (eg: "$range(1,5,2)$", "$string.lowercase$"). Follow-Ups: ------------------------------------------------------- Date: 2008-04-27 11:53 By: facundobatista Comment: GUI design: http://www.taniquetil.com.ar/facundo/owasp/soc08-148111.svg Other detail talked initially: When user clicks on "Analyze", with the "preview" activated, it'll popup a new window showing (but don't sending) all the generated requests. ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148111&group_id=170274&group_project_id=56282 |
|
From: <and...@us...> - 2008-04-27 14:51:06
|
Revision: 1049
http://w3af.svn.sourceforge.net/w3af/?rev=1049&view=rev
Author: andresriancho
Date: 2008-04-27 07:51:03 -0700 (Sun, 27 Apr 2008)
Log Message:
-----------
Bug fixing: 1952067.
Modified Paths:
--------------
trunk/core/ui/gtkUi/main.py
trunk/w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:50:48
|
Task #148111 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Manually create a fuzzed requests based on tokens Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Fuzzy Request" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window The Help text is only for the fuzzy syntax Feedbacks. Analyze: greyed out until the user clicked on "analyze"; if the user changes the request, it goes grey again. Send: it updates dynamicly with the requests that are being sent. When user clicks on "send", if will sent more than 20 request, popup a confirmation question. Selector: the text entry background will be yellow if its value is wrong; if the user gives enter with the wrong value, it will do nothing, just a message to the statusbar). Andres needs to implement something in the core for this. The request/post fields are repeated because the upper has what the user wrote, and the lower has the different alternatives created with the fuzzy syntax (actually those are sent as requests). Syntax: - the "$" is the delimiter - to actually include a "$", use "$$" - if you write "$something$", the "something" will be evaluated with eval, having the "string" module already imported (eg: "$range(1,5,2)$", "$string.lowercase$"). ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148111&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:48:30
|
Task #148110 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Manually send a request and analyze the response. Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Manual Request" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window. At the beginning, the response/body part is greyed out. When the user clicks on "send", the request written in the request/post part is sent and the result is shown in the response/body part. The "send" stays active, the user can send multiple times, everytime the response is updated. Andres needs to implement something in the core for this. If there's an error in the procedure, it'll be a w3afException, the error will be shown in a popup, and the response/boyd part will be greyed out. Follow-Ups: ------------------------------------------------------- Date: 2008-04-27 11:48 By: facundobatista Comment: GUI design: http://www.taniquetil.com.ar/facundo/owasp/soc08-148110.svg ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148110&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:46:37
|
Task #148110 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Manually send a request and analyze the response. Complete: 0% Status: Open Authority : facundobatista Assigned to: facundobatista Description: A new option "Manual Request" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window. At the beginning, the response/body part is greyed out. When the user clicks on "send", the request written in the request/post part is sent and the result is shown in the response/body part. The "send" stays active, the user can send multiple times, everytime the response is updated. Andres needs to implement something in the core for this. If there's an error in the procedure, it'll be a w3afException, the error will be shown in a popup, and the response/boyd part will be greyed out. ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148110&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:40:35
|
Task #148109 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Local proxy to trap and modify requests and responses Complete: 0% Status: Open Authority : facundobatista Assigned to: andresriancho Description: A new option "Local Proxy" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window (design attached) The "configure" option will raise a popup asking for ip and port (defaults to 127.0.0.1, 8080) The "start/stop" button mutates itself, and controls the Proxy execution. Uses the Proxy core infrastructure (core/controllers/daemon/proxy) Andres will document the API for this Proxy. Andres needs to define the interface Follow-Ups: ------------------------------------------------------- Date: 2008-04-27 11:40 By: facundobatista Comment: Can not attach a file, here, this SourceForge interface sucks. The GUI design is here: http://www.taniquetil.com.ar/facundo/owasp/soc08-148109.svg ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148109&group_id=170274&group_project_id=56282 |
|
From: SourceForge.net <no...@so...> - 2008-04-27 14:35:20
|
Task #148109 has been updated. Project: w3af Subproject: gtkUi - OWASP SoC 2008 Summary: Local proxy to trap and modify requests and responses Complete: 0% Status: Open Authority : facundobatista Assigned to: andresriancho Description: A new option "Local Proxy" (search for an icon), in the toolbar and the menu (in "Tools"). It will open a new window (design attached) The "configure" option will raise a popup asking for ip and port (defaults to 127.0.0.1, 8080) The "start/stop" button mutates itself, and controls the Proxy execution. Uses the Proxy core infrastructure (core/controllers/daemon/proxy) Andres will document the API for this Proxy. Andres needs to define the interface ------------------------------------------------------- For more info, visit: http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=148109&group_id=170274&group_project_id=56282 |
|
From: <and...@us...> - 2008-04-27 14:11:27
|
Revision: 1048
http://w3af.svn.sourceforge.net/w3af/?rev=1048&view=rev
Author: andresriancho
Date: 2008-04-27 07:11:05 -0700 (Sun, 27 Apr 2008)
Log Message:
-----------
Fixed bug #1919663.
Modified Paths:
--------------
trunk/plugins/bruteforce/basicAuthBrute.py
trunk/scripts/script-basicAuthBrute.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-26 23:53:34
|
Revision: 1047
http://w3af.svn.sourceforge.net/w3af/?rev=1047&view=rev
Author: andresriancho
Date: 2008-04-26 16:53:21 -0700 (Sat, 26 Apr 2008)
Log Message:
-----------
Bleh, the code I added is useless. Just realized it.
Modified Paths:
--------------
trunk/plugins/discovery/findBackdoor.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-26 23:50:59
|
Revision: 1046
http://w3af.svn.sourceforge.net/w3af/?rev=1046&view=rev
Author: andresriancho
Date: 2008-04-26 16:50:56 -0700 (Sat, 26 Apr 2008)
Log Message:
-----------
Some lines were added to the plugin code so we can fix the bug with more information available.
Modified Paths:
--------------
trunk/plugins/discovery/findBackdoor.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-04-26 23:38:53
|
Revision: 1045
http://w3af.svn.sourceforge.net/w3af/?rev=1045&view=rev
Author: andresriancho
Date: 2008-04-26 16:38:48 -0700 (Sat, 26 Apr 2008)
Log Message:
-----------
Fixed bug #1952455.
Modified Paths:
--------------
trunk/plugins/discovery/findvhost.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
