Thread: [W3af-svn-notify] SF.net SVN: w3af: [643] trunk
Status: Beta
Brought to you by:
andresriancho
Menu
▾
▴
w3af-svn-notify
|
From: <and...@us...> - 2008-02-08 01:44:47
|
Revision: 643
http://w3af.svn.sourceforge.net/w3af/?rev=643&view=rev
Author: andresriancho
Date: 2008-02-07 17:44:14 -0800 (Thu, 07 Feb 2008)
Log Message:
-----------
Fixed some small bugs in the core and in errorPages. The core now properly shows what plugin found what fuzzable request.
Modified Paths:
--------------
trunk/core/controllers/targetSettings.py
trunk/core/controllers/w3afCore.py
trunk/plugins/grep/errorPages.py
trunk/scripts/script-genHmapFingerprint.w3af
Added Paths:
-----------
trunk/plugins/discovery/oHmap/known.servers/apache.1.3.33.win32
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-09 13:17:43
|
Revision: 651
http://w3af.svn.sourceforge.net/w3af/?rev=651&view=rev
Author: andresriancho
Date: 2008-02-09 05:17:38 -0800 (Sat, 09 Feb 2008)
Log Message:
-----------
Small comments added.
Modified Paths:
--------------
trunk/core/ui/gtkUi/scanrun.py
trunk/core/ui/gtkUi/scantab.py
trunk/w3af.e3p
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-09 18:41:24
|
Revision: 653
http://w3af.svn.sourceforge.net/w3af/?rev=653&view=rev
Author: andresriancho
Date: 2008-02-09 10:41:22 -0800 (Sat, 09 Feb 2008)
Log Message:
-----------
Deprecated sessions and added a pause() method to w3afCore to be able to pause scans. When scans are paused, no info is saved to the disk or persisted in any way, if the user closes the w3af process, data is lost.
Modified Paths:
--------------
trunk/core/controllers/w3afCore.py
trunk/core/ui/consoleUi/consoleUi.py
trunk/plugins/output/console.py
Removed Paths:
-------------
trunk/core/controllers/sessionManager.py
trunk/core/ui/consoleUi/session.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-09 18:48:24
|
Revision: 656
http://w3af.svn.sourceforge.net/w3af/?rev=656&view=rev
Author: andresriancho
Date: 2008-02-09 10:48:20 -0800 (Sat, 09 Feb 2008)
Log Message:
-----------
Finished coding the target specification that allows remote operating system to be specified. Also modified some plugins to use that setting. Tested the changes with two script files.
Modified Paths:
--------------
trunk/core/controllers/targetSettings.py
trunk/plugins/audit/localFileInclude.py
trunk/plugins/audit/osCommanding.py
Added Paths:
-----------
trunk/scripts/script-osCommanding-BAD-targetOS.w3af
trunk/scripts/script-osCommanding-targetOS.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-09 18:57:09
|
Revision: 657
http://w3af.svn.sourceforge.net/w3af/?rev=657&view=rev
Author: andresriancho
Date: 2008-02-09 10:57:05 -0800 (Sat, 09 Feb 2008)
Log Message:
-----------
Ignoring all files in these directories.
Property Changed:
----------------
trunk/extras/testEnv/webroot/dav/
trunk/extras/testEnv/webroot/fileUpload/uploads/
trunk/sessions/
trunk/webroot/
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-09 19:35:09
|
Revision: 660
http://w3af.svn.sourceforge.net/w3af/?rev=660&view=rev
Author: andresriancho
Date: 2008-02-09 11:35:03 -0800 (Sat, 09 Feb 2008)
Log Message:
-----------
Deleted some scripts and slightly modified others.
Added one line to w3afCore in order to make pause() better for the UIs.
Modified Paths:
--------------
trunk/core/controllers/w3afCore.py
trunk/extras/testEnv/webroot/permanent-xss/test-permanentxss.txt
trunk/scripts/script-404pageTest.w3af
trunk/scripts/script-filenameXss.w3af
trunk/scripts/script-htmlOutput.w3af
trunk/scripts/script-preg_replace.w3af
Removed Paths:
-------------
trunk/scripts/script-resume.w3af
trunk/scripts/script-save-2.w3af
trunk/scripts/script-save.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-11 22:33:46
|
Revision: 667
http://w3af.svn.sourceforge.net/w3af/?rev=667&view=rev
Author: andresriancho
Date: 2008-02-11 14:33:42 -0800 (Mon, 11 Feb 2008)
Log Message:
-----------
Now w3afCore supports stop() , cleanup() and pause().
Modified Paths:
--------------
trunk/core/controllers/w3afCore.py
trunk/w3af.e3p
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <ab...@us...> - 2008-02-18 21:22:36
|
Revision: 693
http://w3af.svn.sourceforge.net/w3af/?rev=693&view=rev
Author: aberezh
Date: 2008-02-18 13:22:25 -0800 (Mon, 18 Feb 2008)
Log Message:
-----------
creditCards plugin is moved to trunk.
Added Paths:
-----------
trunk/extras/testEnv/webroot/grepPlugins/creditCards.html
trunk/plugins/grep/creditCards.py
trunk/scripts/script-creditCards-no.w3af
trunk/scripts/script-creditCards-yes.w3af
Removed Paths:
-------------
branches/sasha/extras/testEnv/webroot/grepPlugins/creditCards.html
branches/sasha/plugins/grep/creditCards.py
branches/sasha/scripts/script-creditCards-no.w3af
branches/sasha/scripts/script-creditCards-yes.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-19 09:36:08
|
Revision: 695
http://w3af.svn.sourceforge.net/w3af/?rev=695&view=rev
Author: andresriancho
Date: 2008-02-19 01:35:45 -0800 (Tue, 19 Feb 2008)
Log Message:
-----------
Fixed a bug in xst that was really strange. Also modified some little things on the core that make the code more clear.
Modified Paths:
--------------
trunk/core/data/fuzzer/mutantQs.py
trunk/core/data/kb/info.py
trunk/core/data/kb/vuln.py
trunk/core/data/request/fuzzableRequest.py
trunk/core/data/request/httpQsRequest.py
trunk/core/data/url/xUrllib.py
trunk/extras/testEnv/webroot/permanent-xss/test-permanentxss.txt
trunk/plugins/audit/xst.py
trunk/scripts/script-404pageTest.w3af
trunk/scripts/script-xst.w3af
trunk/w3af.e3t
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-19 13:45:27
|
Revision: 698
http://w3af.svn.sourceforge.net/w3af/?rev=698&view=rev
Author: andresriancho
Date: 2008-02-19 05:45:11 -0800 (Tue, 19 Feb 2008)
Log Message:
-----------
Removed some false positives in localFileInclude plugin.
Modified Paths:
--------------
trunk/plugins/audit/localFileInclude.py
trunk/scripts/script-localFileInclude-falsePositive.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-19 18:03:17
|
Revision: 699
http://w3af.svn.sourceforge.net/w3af/?rev=699&view=rev
Author: andresriancho
Date: 2008-02-19 10:02:12 -0800 (Tue, 19 Feb 2008)
Log Message:
-----------
Fixed a bug that didn't allow the user to enable all evasion plugins. Please note that enabling all
evasion plugins is almost useless.
Modified Paths:
--------------
trunk/core/controllers/basePlugin/baseEvasionPlugin.py
trunk/core/controllers/w3afCore.py
trunk/core/data/url/xUrllib.py
trunk/scripts/script-evasion-all.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-19 20:01:56
|
Revision: 704
http://w3af.svn.sourceforge.net/w3af/?rev=704&view=rev
Author: andresriancho
Date: 2008-02-19 12:01:20 -0800 (Tue, 19 Feb 2008)
Log Message:
-----------
Minimal changes to basePlugin.printUniq ; now messages are printed correctly to information or vulnerability depending of its type.
Solved some issues in newline(error in the way newlines were compared) and passwordProfiling(do not count 403 and 500 messages).
Modified Paths:
--------------
trunk/core/controllers/basePlugin/basePlugin.py
trunk/plugins/grep/newline.py
trunk/plugins/grep/passwordProfiling.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-22 03:12:13
|
Revision: 707
http://w3af.svn.sourceforge.net/w3af/?rev=707&view=rev
Author: andresriancho
Date: 2008-02-21 19:12:12 -0800 (Thu, 21 Feb 2008)
Log Message:
-----------
Adding a first version of moth, the w3af mozilla extension that provides javascript support.
Modified Paths:
--------------
trunk/w3af.e3p
trunk/w3af.e3t
Added Paths:
-----------
trunk/mozilla-extension/
trunk/mozilla-extension/xpi/
trunk/mozilla-extension/xpi/content/
trunk/mozilla-extension/xpi/content/contents.rdf
trunk/mozilla-extension/xpi/content/moth-Overlay.xul
trunk/mozilla-extension/xpi/install.rdf
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-22 19:52:33
|
Revision: 709
http://w3af.svn.sourceforge.net/w3af/?rev=709&view=rev
Author: andresriancho
Date: 2008-02-22 11:52:31 -0800 (Fri, 22 Feb 2008)
Log Message:
-----------
Added some code to moth.
Modified Paths:
--------------
trunk/extras/testEnv/webroot/web20Spider/2-2.html
trunk/mozilla-extension/xpi/content/moth-Overlay.xul
trunk/mozilla-extension/xpi/install.rdf
Added Paths:
-----------
trunk/mozilla-extension/xpi/build.xml
trunk/mozilla-extension/xpi/content/moth-Overlay.js
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-24 01:47:06
|
Revision: 712
http://w3af.svn.sourceforge.net/w3af/?rev=712&view=rev
Author: andresriancho
Date: 2008-02-23 17:46:55 -0800 (Sat, 23 Feb 2008)
Log Message:
-----------
Modified test files for w3afAgent.
Modified Paths:
--------------
trunk/extras/socksClient.py
trunk/scripts/script-osCommanding-lnx-w3afAgent.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-24 17:28:34
|
Revision: 719
http://w3af.svn.sourceforge.net/w3af/?rev=719&view=rev
Author: andresriancho
Date: 2008-02-24 09:28:16 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
Fixed bug in remote file include shell; now it can exploit that vulnerability in any type of programming language (PHP is the only one that is "affected by default" but others may be affected because of programming errors.)
Modified Paths:
--------------
trunk/plugins/attack/remoteFileIncludeShell.py
trunk/plugins/attack/webshells/cmd.asp
trunk/plugins/attack/webshells/cmd.jsp
trunk/plugins/attack/webshells/cmd.php
trunk/plugins/attack/webshells/cmd.py
trunk/scripts/script-remoteFileInclude.w3af
trunk/w3af.e3p
trunk/w3af.e3t
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 00:40:39
|
Revision: 720
http://w3af.svn.sourceforge.net/w3af/?rev=720&view=rev
Author: andresriancho
Date: 2008-02-24 16:40:34 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
Added a plugin that can be used to import results from other tools.
Added Paths:
-----------
trunk/plugins/discovery/importResults.py
trunk/scripts/input-test.csv
trunk/scripts/script-importResults.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 00:43:21
|
Revision: 722
http://w3af.svn.sourceforge.net/w3af/?rev=722&view=rev
Author: andresriancho
Date: 2008-02-24 16:43:18 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
I think that I finally solved the unicode/ascii issue with the output plugins.
Modified Paths:
--------------
trunk/core/controllers/outputManager.py
trunk/plugins/output/textFile.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 00:50:13
|
Revision: 723
http://w3af.svn.sourceforge.net/w3af/?rev=723&view=rev
Author: andresriancho
Date: 2008-02-24 16:50:11 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
Some minimal changes to the code of extras/describePlugins-html.py ; also added the result of that script to the svn.
Modified Paths:
--------------
trunk/extras/describePlugins-html.py
trunk/extras/testEnv/webroot/permanent-xss/test-permanentxss.txt
trunk/scripts/script-pdf.w3af
Added Paths:
-----------
trunk/extras/generated-php/
trunk/extras/generated-php/pluginDesc.php
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-05-27 13:08:34
|
Revision: 1220
http://w3af.svn.sourceforge.net/w3af/?rev=1220&view=rev
Author: andresriancho
Date: 2008-05-27 06:08:28 -0700 (Tue, 27 May 2008)
Log Message:
-----------
Fixing bug #1972460.
Modified Paths:
--------------
trunk/core/data/parsers/abstractParser.py
trunk/plugins/discovery/yahooSiteExplorer.py
trunk/w3af.e3p
trunk/w3af.e3t
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-07-11 12:17:15
|
Revision: 1448
http://w3af.svn.sourceforge.net/w3af/?rev=1448&view=rev
Author: andresriancho
Date: 2008-07-11 05:17:13 -0700 (Fri, 11 Jul 2008)
Log Message:
-----------
Changed all the usage of the slow difflib sequence matcher to a faster levenshtein distance calculation.
Modified Paths:
--------------
trunk/core/controllers/coreHelpers/fingerprint404Page.py
trunk/plugins/audit/generic.py
trunk/plugins/bruteforce/formAuthBrute.py
trunk/plugins/discovery/findvhost.py
trunk/plugins/discovery/hmap.py
trunk/plugins/discovery/phpEggs.py
trunk/plugins/discovery/userDir.py
Added Paths:
-----------
trunk/core/controllers/misc/levenshtein.py
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-07-12 13:17:27
|
Revision: 1456
http://w3af.svn.sourceforge.net/w3af/?rev=1456&view=rev
Author: andresriancho
Date: 2008-07-12 06:17:11 -0700 (Sat, 12 Jul 2008)
Log Message:
-----------
Trying to fix some bugs and false positives in findBackdoor.
Modified Paths:
--------------
trunk/core/controllers/coreHelpers/fingerprint404Page.py
trunk/core/data/url/httpResponse.py
trunk/plugins/discovery/findBackdoor.py
Added Paths:
-----------
trunk/scripts/script-findBackdoor.w3af
Removed Paths:
-------------
trunk/scripts/script-backdoorSearch.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 01:05:14
|
Revision: 725
http://w3af.svn.sourceforge.net/w3af/?rev=725&view=rev
Author: andresriancho
Date: 2008-02-24 17:05:11 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
The document parsers now distinguish a script from a comment.
Modified Paths:
--------------
trunk/core/data/parsers/abstractParser.py
trunk/core/data/parsers/documentParser.py
trunk/core/data/parsers/htmlParser.py
trunk/core/data/parsers/sgmlParser.py
trunk/core/data/parsers/wmlParser.py
trunk/extras/generated-php/pluginDesc.php
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 01:18:16
|
Revision: 726
http://w3af.svn.sourceforge.net/w3af/?rev=726&view=rev
Author: andresriancho
Date: 2008-02-24 17:18:14 -0800 (Sun, 24 Feb 2008)
Log Message:
-----------
grep.findComments plugin now identifies if the comment contains HTML code and issues a warning about it.
Modified Paths:
--------------
trunk/plugins/grep/findComments.py
Added Paths:
-----------
trunk/extras/testEnv/webroot/grepPlugins/htmlInComments.html
trunk/scripts/script-findHtmlInComments.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
|
From: <and...@us...> - 2008-02-25 11:01:24
|
Revision: 728
http://w3af.svn.sourceforge.net/w3af/?rev=728&view=rev
Author: andresriancho
Date: 2008-02-25 02:48:26 -0800 (Mon, 25 Feb 2008)
Log Message:
-----------
Added a plugin that searches for HTTP request and responses inside the HTTP response body.
Added Paths:
-----------
trunk/extras/testEnv/webroot/httpInBody/
trunk/extras/testEnv/webroot/httpInBody/body.html
trunk/plugins/grep/httpInBody.py
trunk/scripts/script-httpInBody.w3af
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.
|
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X