Hi, all! I just tested POST processing with custom port 7080 and everything is ok. ----------- spiderMan proxy is running on 127.0.0.1:44444. Please configure your browser to use these proxy settings and navigate the target site. To exit spiderMan plugin please navigate to http://127.7.7.7/spiderMan?terminate . The user is navigating through the spiderMan proxy. Trapped fuzzable requests: http://localhost:7080/test.php | Method: GET http://localhost:7080/test.php | Method: POST The user terminated the spiderMan session. New URL found by spiderMan plugin: http://localhost:7080/test.php Found 2 URLs and 4 different points of injection. The list of URLs is: - http://localhost:7080 - http://localhost:7080/test.php The list of fuzzable requests is: - http://localhost:7080 | Method: GET - http://localhost:7080/test.php | Method: GET - http://localhost:7080/test.php | Method: POST - http://localhost:7080/test.php | Method: POST | Parameters: (text="")
------------------------------------------------------------------------------------ Lately we had fixed very same ticket: https://sourceforge.net/apps/trac/w3af/ticket/160059 So, please, check if you have updated version from SVN. On Mon, 2010-11-01 at 14:55 -0300, Andres Riancho wrote: > @Taras: Any clue on why this is failing? > @Damian: Have you tried to "svn update" to the latest version of w3af? > > 2010/10/26 Damian Skiedrzyński <ski.dam...@gmail.com>: > > I am using w3af-1.0-rc3 so the last stable version. > > > > Regards, > > Damian > > 2010/10/25 Andres Riancho <andres.rian...@gmail.com> > >> > >> Which version of w3af are you using? > >> > >> Regards, > >> -- > >> Andres Riancho > >> > >> El oct 25, 2010 1:06 p.m., "Damian Skiedrzyński" <ski.dam...@gmail.com> > >> escribió: > >> > >> Hi all, > >> > >> When trying to run a scan with spiderMan proxy I can't open my webpage > >> through the borwser (even though the proxy settings are correct) and I get > >> the following error messages: > >> > >> [10/25/10 18:53:18] Auto-enabling plugin: discovery.allowedMethods > >> [10/25/10 18:53:18] Auto-enabling plugin: discovery.serverHeader > >> [10/25/10 18:53:18] Auto-enabling plugin: discovery.frontpage_version > >> [10/25/10 18:53:26] spiderMan proxy is running on 127.0.0.1:44444. > >> Please configure your browser to use these proxy settings and navigate the > >> target site. > >> To exit spiderMan plugin please navigate to > >> http://127.7.7.7/spiderMan?terminate . > >> [10/25/10 18:55:55] The user is navigating through the spiderMan proxy. > >> [10/25/10 18:55:55] Trapped fuzzable requests: > >> [10/25/10 18:55:55] http://localhost:7080/APP/model | Method: POST > >> [10/25/10 18:56:25] The proxy request failed, error: Too many retries (2) > >> while requesting: http://localhost:7080/APP/model > >> [10/25/10 18:56:25] http://localhost:7080/APP/ | Method: GET > >> [10/25/10 18:56:25] The page language is: en > >> [10/25/10 18:56:27] http://localhost:7080/APP/init | Method: POST > >> [10/25/10 18:56:57] The proxy request failed, error: Too many retries (2) > >> while requesting: http://localhost:7080/APP/init > >> [10/25/10 18:56:57] http://localhost:7080/APP/user | Method: POST > >> [10/25/10 18:57:27] The proxy request failed, error: Too many retries (2) > >> while requesting: http://localhost:7080/APP/user > >> > >> Anyone has an idea what is wrong? > >> Thank you for any advice in advance. > >> > >> Cheers, > >> Damian > >> > >> > -- Taras http://oxdef.info ---- "Software is like sex: it's better when it's free." - Linus Torvalds ------------------------------------------------------------------------------ Nokia and AT&T present the 2010 Calling All Innovators-North America contest Create new apps & games for the Nokia N8 for consumers in U.S. and Canada $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store http://p.sf.net/sfu/nokia-dev2dev _______________________________________________ W3af-users mailing list W3af-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-users
