Hi,
OK thanks for the review , I have made a comparison between both version
and no CORS header miss.
I have retrieved your version to sync with my working repository.
Do you have made the corresponding update into the "
inspectOriginHeaderScrutiny" plugin ? I ask this because I cannot find it
into the threading2 branch and then I will report update into my version (i
will also change the name "cors_origin.py" the sync with the new name of
the other plugin)
Cordialement, Best regards,
Dominique Righetto
dominique.righe...@gmail.com
dominique.righe...@owasp.org
Twitter: @righettod
Google Code Repository <http://righettod.googlecode.com>
GitHub Repository <https://github.com/righettod>
*"No trees were killed to send this message, but a large number of
electrons were terribly inconvenienced."*
On Sun, Oct 14, 2012 at 1:57 AM, Andres Riancho <andres.rian...@gmail.com>wrote:
> First commit [0], the corsUtils.py is now in the threading2 branch :)
> Comments:
>
> * Renamed file and location where it ended in the project
> * Refactoring: there was no need for a class. Now we have functions
> * Refactoring: creating the HTTP request by concatenating strings is
> not as nice as creating objects. The objects I created are simple to
> understand and will achieve the same objective. Please make sure that
> there is nothing essential to CORS missing from the strings, because
> some headers were removed.
> * Unittested code: added unittests for all functions
>
> [0] https://sourceforge.net/apps/trac/w3af/changeset/5890
>
> On Sat, Oct 13, 2012 at 8:08 PM, Andres Riancho
> <andres.rian...@gmail.com> wrote:
> > Dom,
> >
> > Before the end of the day I'll try to write the unittests and
> > integrate everything with the threading2 branch; that will go out
> > shortly. Closing all the open reviews from the community is my top
> > priority of the week :)
> >
> > Regards,
> >
> > On Sat, Oct 13, 2012 at 10:37 AM, Dominique RIGHETTO
> > <dominique.righe...@gmail.com> wrote:
> >> Hello,
> >>
> >> Does anyone know if CORS plugins [0][1] have been validated by W3AF
> >> project team in order to be added into project SVN repository ?
> >>
> >> [0] :
> >>
> https://code.google.com/p/righettod/source/browse/PYTHON/W3AF-Plugins/plugins/audit/inspectOriginHeaderScrutiny.py
> >> [1] :
> >>
> https://code.google.com/p/righettod/source/browse/PYTHON/W3AF-Plugins/plugins/audit/inspectRequestPreflight.py
> >>
> >> Yesteday i have moved sources to a dedicated Github repository in order
> >> to facilitate contributions follow up :
> >> https://github.com/righettod/w3af-plugins
> >>
> >> Thanks in advance
> >>
> >> --
> >> Cordialement, Best regards,
> >> Dominique Righetto
> >> dominique.righe...@gmail.com
> >> dominique.righe...@owasp.org
> >> Twitter: @righettod
> >> http://righettod.github.com
> >> "No trees were killed to send this message, but a large number of
> electrons were terribly inconvenienced."
> >>
> >>
> >>
> ------------------------------------------------------------------------------
> >> Don't let slow site performance ruin your business. Deploy New Relic APM
> >> Deploy New Relic app performance management and know exactly
> >> what is happening inside your Ruby, Python, PHP, Java, and .NET app
> >> Try New Relic at no cost today and get our sweet Data Nerd shirt too!
> >> http://p.sf.net/sfu/newrelic-dev2dev
> >> _______________________________________________
> >> W3af-develop mailing list
> >> W3af-develop@lists.sourceforge.net
> >> https://lists.sourceforge.net/lists/listinfo/w3af-develop
> >
> >
> >
> > --
> > Andrés Riancho
> > Project Leader at w3af - http://w3af.org/
> > Web Application Attack and Audit Framework
> > Twitter: @w3af
> > GPG: 0x93C344F3
>
>
>
> --
> Andrés Riancho
> Project Leader at w3af - http://w3af.org/
> Web Application Attack and Audit Framework
> Twitter: @w3af
> GPG: 0x93C344F3
>
------------------------------------------------------------------------------
Don't let slow site performance ruin your business. Deploy New Relic APM
Deploy New Relic app performance management and know exactly
what is happening inside your Ruby, Python, PHP, Java, and .NET app
Try New Relic at no cost today and get our sweet Data Nerd shirt too!
http://p.sf.net/sfu/newrelic-dev2dev
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
