Patrick, On Mon, Jul 27, 2009 at 7:21 PM, Patrick Hof<patrick...@web.de> wrote: > Hi Jon, > > jrose <jr...@owasp.org> wrote: > >> I'll have to take a look at this later when i have some time, but I >> previously wrote a proxy log parser that would work on any logs, not just >> burp. We should merge these together and make sure its generic enough to >> handle the common proxy logs. > > That would of course be very neat. I'd love to see your code and how you did > that. > > Coming to think of it, we both used code in our implementations that does some > kind of raw HTTP request parsing, didn't we? I just realized that I could've > used w3af's httpRequestParser, dispensing with a lot of the sqlmap code. Ah > well, I primarily coded this to get my Python up to speed again and learn more > about w3af's internals. > > I didn't have a look at other proxy logs yet, as I mainly use WebScarab. But I > guess at least the MITM Proxies one would use for pentests can all log raw > HTTP > requests. So the best solution would be to write some (hopefully) short code > to > get at these raw requests and then parse them with httpRequestParser, wouldn't > it? This way, if there's room for improvement in the parser, all other > components would benefit from it, too. > >> Also, when I took a quick look at the sqlmap >> parsing code I didn't see anything for handling multipart post, does it >> handle this? > > You're right, it doesn't. I didn't have the time to get a detailed look at > w3af's httpRequestParser, but if it also can't handle this, this would be one > of > the abovementioned situations where the whole framework could be improved, > right?
Could you please send me a webscarab log file? I need that to test the importResults plugin. Thanks! > > Patrick > > -- > The Plague: You wanted to know who I am, Zero Cool? Well, let me explain > the New World Order. Governments and corporations need people > like you and me. We are Samurai... the Keyboard Cowboys... and > all those other people who have no idea what's going on are > the cattle... Moooo. > (Hackers) > > ------------------------------------------------------------------------------ > Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day > trial. Simplify your report design, integration and deployment - and focus on > what you do best, core application coding. Discover what's new with > Crystal Reports now. http://p.sf.net/sfu/bobj-july > _______________________________________________ > W3af-develop mailing list > W3af-develop@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/w3af-develop > -- Andrés Riancho Founder, Bonsai - Information Security http://www.bonsai-sec.com/ http://w3af.sf.net/ ------------------------------------------------------------------------------ Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july _______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop