Viktor,
THANK YOU so much for your great contribution. I just commited
your code to the SVN, could you please test it yourself to verify that
the small changes I made are working? If you feel like it, and I would
be really glad to receive one more contribution from you, I would like
you to modify the audit.frontpage plugin. I just added a couple of
TODO comments for you to read there.
If you don't understand the new task, please create a new thread
and we'll talk there =)
Cheers,
On Thu, Dec 4, 2008 at 5:36 PM, Viktor Gazdag <[EMAIL PROTECTED]> wrote:
> ---------- Forwarded message ----------
> From: Viktor Gazdag <[EMAIL PROTECTED]>
> Date: 2008/12/4
> Subject: Re: [W3af-develop] plugin creating question
> To: Andres Riancho <[EMAIL PROTECTED]>
>
>
> 2008/11/30 Andres Riancho <[EMAIL PROTECTED]>
>>
>> Viktor,
>>
>> On Sun, Nov 30, 2008 at 6:35 PM, Viktor Gazdag <[EMAIL PROTECTED]>
>> wrote:
>> > 2008/11/30 Viktor Gazdag <[EMAIL PROTECTED]>
>> >>
>> >> 2008/11/30 Andres Riancho <[EMAIL PROTECTED]>
>> >>>
>> >>> Viktor,
>> >>>
>> >>> On Sat, Nov 22, 2008 at 1:18 PM, Andres Riancho
>> >>> <[EMAIL PROTECTED]> wrote:
>> >>> > Viktor,
>> >>> >
>> >>> > On Sat, Nov 22, 2008 at 12:47 PM, Viktor Gazdag
>> >>> > <[EMAIL PROTECTED]>
>> >>> > wrote:
>> >>> >> Hello! :)
>> >>> >>
>> >>> >>
>> >>> >> I would like to be interested in create the frontpage
>> >>> >> version(151986)
>> >>> >> and
>> >>> >> the squid(148264) plugins. Can i make them? If yes, I will start to
>> >>> >> code it,
>> >>> >> but not finished so quickly. I will have more time for them after
>> >>> >> 2-3
>> >>> >> weeks,
>> >>> >> when i done with my school things.
>> >>> >
>> >>> > I'm really glad you want to contribute one more time =). Of course
>> >>> > you
>> >>> > can do it!
>> >>> >
>> >>> > Regarding the tasks:
>> >>> >
>> >>> > - 151986: discovery plugin to identify frontpage version
>> >>> > It's a rather simple task, you just have to request the
>> >>> > "/_vti_inf.html" page and use a regular expression to get the
>> >>> > version.
>> >>> > I think that nessus and metasploit do it, so maybe you can take some
>> >>> > ideas from those plugins/modules.
>> >>>
>> >>> Have you been able to start with the 151986 task? Can I help you with
>> >>> something?
>> >>
>> >> I have some problem with the "indent" things, but at Thursday i will
>> >> make
>> >> it. If i have still problem at Thursday, i will write.
>> >>
>> >
>> > I change my mind! Here is the plugin. :)
>>
>> Excellent! I'm glad you changed your mind =)
>> Here are my comments on the plugin, which performs the job as
>> expected, but can be modified to be more efficient:
>>
>> - As we talked through gtalk, the _vti_inf.html file is only located
>> in the webroot, so there is no need to search for it inside every
>> directory. The for loop with
>> "urlParser.getDirectories(fuzzableRequest.getURL() ):" has to be
>> removed, together with all the references to self._analyzedDirs.
>>
>> - In order to be run only once, this discovery plugin has to raise a
>> w3afRunOnce exception, (you may find a lot of references to this, and
>> usage examples in other discovery plugins)
>>
>> - Having a _vti_inf.html file in the webroot is not a vulnerability,
>> so I changed the result of the plugin from a vulnerability of medium
>> severity to a information object.
>>
>> - I added a "else" after the if that checks if the regex matches (see
>> line 92). It is kind of strange to have a _vti_inf.html file without
>> any frontpage information, and this has to be reported to the user.
>>
>> If you have the time, please fix these small issues, and send me the
>> plugin again. After that, I'll commit it to the trunk =)
>
> I attached it!:)
>
>>
>> Thank you very much for your continuous contributions!
>>
>> >>>
>> >>> > - 148264: Identify squid proxy
>> >>> > Regarding this task, the issue is a little bit more complicated. I
>> >>> > think that creating one plugin to address this vulnerability would
>> >>> > be
>> >>> > a waste of time, what we could do is create a grep plugin to fetch
>> >>> > information from the headers, that can get the information about
>> >>> > mod-choke[0], squid, and other appliances.
>> >>> >
>> >>> > For now, start with the task 151986, whenever you are done with
>> >>> > that,
>> >>> > we can move on to the next one =)
>> >>> >
>> >>> > Thanks!
>> >>> >
>> >>> > [0]
>> >>> >
>> >>> > http://sourceforge.net/pm/task.php?func=detailtask&project_task_id=150711&group_id=170274&group_project_id=50603
>> >>> >
>> >>> >>
>> >>> >>
>> >>> >> -------------------------------------------------------------------------
>> >>> >> This SF.Net email is sponsored by the Moblin Your Move Developer's
>> >>> >> challenge
>> >>> >> Build the coolest Linux based applications with Moblin SDK & win
>> >>> >> great
>> >>> >> prizes
>> >>> >> Grand prize is a trip for two to an Open Source event anywhere in
>> >>> >> the
>> >>> >> world
>> >>> >> http://moblin-contest.org/redirect.php?banner_id=100&url=/
>> >>> >> _______________________________________________
>> >>> >> W3af-develop mailing list
>> >>> >> W3af-develop@lists.sourceforge.net
>> >>> >> https://lists.sourceforge.net/lists/listinfo/w3af-develop
>> >>> >>
>> >>> >>
>> >>> >
>> >>> >
>> >>> >
>> >>> > --
>> >>> > Andres Riancho
>> >>> > http://w3af.sourceforge.net/
>> >>> > Web Application Attack and Audit Framework
>> >>> >
>> >>>
>> >>>
>> >>>
>> >>> --
>> >>> Andres Riancho
>> >>> http://w3af.sourceforge.net/
>> >>> Web Application Attack and Audit Framework
>> >>
>> >
>> >
>>
>>
>>
>> --
>> Andres Riancho
>> http://w3af.sourceforge.net/
>> Web Application Attack and Audit Framework
>
>
>
> -------------------------------------------------------------------------
> This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
> Build the coolest Linux based applications with Moblin SDK & win great
> prizes
> Grand prize is a trip for two to an Open Source event anywhere in the world
> http://moblin-contest.org/redirect.php?banner_id=100&url=/
> _______________________________________________
> W3af-develop mailing list
> W3af-develop@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/w3af-develop
>
>
--
Andres Riancho
http://w3af.sourceforge.net/
Web Application Attack and Audit Framework
------------------------------------------------------------------------------
SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
The future of the web can't happen without you. Join us at MIX09 to help
pave the way to the Next Web now. Learn more and register at
http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
