Hi Jon,
jrose <jr...@owasp.org> wrote:
> I'll have to take a look at this later when i have some time, but I
> previously wrote a proxy log parser that would work on any logs, not just
> burp. We should merge these together and make sure its generic enough to
> handle the common proxy logs.
That would of course be very neat. I'd love to see your code and how you did
that.
Coming to think of it, we both used code in our implementations that does some
kind of raw HTTP request parsing, didn't we? I just realized that I could've
used w3af's httpRequestParser, dispensing with a lot of the sqlmap code. Ah
well, I primarily coded this to get my Python up to speed again and learn more
about w3af's internals.
I didn't have a look at other proxy logs yet, as I mainly use WebScarab. But I
guess at least the MITM Proxies one would use for pentests can all log raw HTTP
requests. So the best solution would be to write some (hopefully) short code to
get at these raw requests and then parse them with httpRequestParser, wouldn't
it? This way, if there's room for improvement in the parser, all other
components would benefit from it, too.
> Also, when I took a quick look at the sqlmap
> parsing code I didn't see anything for handling multipart post, does it
> handle this?
You're right, it doesn't. I didn't have the time to get a detailed look at
w3af's httpRequestParser, but if it also can't handle this, this would be one of
the abovementioned situations where the whole framework could be improved,
right?
Patrick
--
The Plague: You wanted to know who I am, Zero Cool? Well, let me explain
the New World Order. Governments and corporations need people
like you and me. We are Samurai... the Keyboard Cowboys... and
all those other people who have no idea what's going on are
the cattle... Moooo.
(Hackers)
------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
trial. Simplify your report design, integration and deployment - and focus on
what you do best, core application coding. Discover what's new with
Crystal Reports now. http://p.sf.net/sfu/bobj-july
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
