RubyGems - arachni - Versions diffs - 1.2.1 → 1.3 - Mend

arachni 1.2.1 → 1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (373) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +66 -0
data/Gemfile +1 -1
data/README.md +16 -5
data/components/checks/active/ldap_injection/errors.txt +1 -0
data/components/checks/active/source_code_disclosure.rb +1 -1
data/components/checks/active/unvalidated_redirect.rb +6 -6
data/components/checks/active/unvalidated_redirect_dom.rb +10 -7
data/components/checks/passive/grep/captcha.rb +14 -5
data/components/checks/passive/grep/form_upload.rb +7 -3
data/components/checks/passive/grep/hsts.rb +3 -3
data/components/checks/passive/grep/html_objects.rb +2 -3
data/components/checks/passive/grep/http_only_cookies.rb +2 -3
data/components/checks/passive/grep/insecure_cookies.rb +1 -1
data/components/checks/passive/grep/password_autocomplete.rb +2 -2
data/components/checks/passive/grep/unencrypted_password_forms.rb +7 -7
data/components/checks/passive/grep/x_frame_options.rb +2 -2
data/components/checks/passive/http_put.rb +2 -3
data/components/path_extractors/comments.rb +3 -3
data/components/path_extractors/scripts.rb +10 -1
data/components/plugins/defaults/autothrottle.rb +27 -18
data/components/plugins/defaults/meta/remedies/discovery.rb +30 -33
data/components/plugins/defaults/meta/remedies/timing_attacks.rb +7 -11
data/components/plugins/login_script.rb +9 -3
data/components/plugins/proxy.rb +4 -3
data/components/reporters/html.rb +11 -14
data/components/reporters/html/default/issue.erb +13 -38
data/components/reporters/html/default/issue/info.erb +1 -1
data/components/reporters/html/default/summary/issues/by_name.erb +3 -3
data/components/reporters/stdout.rb +62 -71
data/components/reporters/xml.rb +26 -40
data/components/reporters/xml/schema.xsd +43 -89
data/lib/arachni/browser.rb +52 -3
data/lib/arachni/browser/javascript.rb +3 -3
data/lib/arachni/browser/javascript/scripts/taint_tracer.js +46 -25
data/lib/arachni/browser_cluster.rb +61 -0
data/lib/arachni/browser_cluster/job.rb +21 -1
data/lib/arachni/browser_cluster/jobs/browser_provider.rb +3 -1
data/lib/arachni/browser_cluster/jobs/resource_exploration.rb +2 -1
data/lib/arachni/browser_cluster/jobs/resource_exploration/event_trigger.rb +2 -1
data/lib/arachni/browser_cluster/jobs/taint_trace.rb +3 -2
data/lib/arachni/browser_cluster/jobs/taint_trace/event_trigger.rb +1 -1
data/lib/arachni/browser_cluster/worker.rb +5 -0
data/lib/arachni/check/auditor.rb +22 -12
data/lib/arachni/data/framework.rb +13 -1
data/lib/arachni/data/issues.rb +9 -25
data/lib/arachni/element/base.rb +9 -3
data/lib/arachni/element/capabilities/analyzable.rb +2 -6
data/lib/arachni/element/capabilities/analyzable/differential.rb +24 -7
data/lib/arachni/element/capabilities/analyzable/{taint.rb → signature.rb} +23 -23
data/lib/arachni/element/capabilities/auditable.rb +0 -6
data/lib/arachni/element/capabilities/dom_only.rb +61 -0
data/lib/arachni/element/capabilities/with_dom.rb +3 -1
data/lib/arachni/element/cookie.rb +35 -5
data/lib/arachni/element/cookie/dom.rb +13 -4
data/lib/arachni/element/{capabilities/auditable/dom.rb → dom.rb} +20 -68
data/lib/arachni/element/dom/capabilities/auditable.rb +29 -0
data/lib/arachni/element/dom/capabilities/inputtable.rb +27 -0
data/lib/arachni/element/dom/capabilities/mutable.rb +21 -0
data/lib/arachni/element/dom/capabilities/submittable.rb +52 -0
data/lib/arachni/element/form.rb +12 -1
data/lib/arachni/element/form/capabilities/mutable.rb +2 -1
data/lib/arachni/element/form/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/form/dom.rb +9 -3
data/lib/arachni/element/header.rb +14 -33
data/lib/arachni/element/header/capabilities/inputtable.rb +29 -0
data/lib/arachni/element/header/capabilities/mutable.rb +51 -0
data/lib/arachni/element/input/dom.rb +71 -0
data/lib/arachni/element/json.rb +2 -0
data/lib/arachni/element/link.rb +3 -0
data/lib/arachni/element/link/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/link/dom.rb +16 -3
data/lib/arachni/element/link/dom/capabilities/submittable.rb +29 -0
data/lib/arachni/element/link_template.rb +3 -5
data/lib/arachni/element/link_template/capabilities/inputtable.rb +5 -0
data/lib/arachni/element/link_template/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/link_template/dom.rb +16 -3
data/lib/arachni/element/link_template/dom/capabilities/submittable.rb +29 -0
data/lib/arachni/element/server.rb +3 -5
data/lib/arachni/element/ui_form.rb +106 -0
data/lib/arachni/element/ui_form/dom.rb +107 -0
data/lib/arachni/element/ui_input.rb +62 -0
data/lib/arachni/element/xml.rb +2 -1
data/lib/arachni/framework.rb +7 -5
data/lib/arachni/framework/parts/audit.rb +0 -1
data/lib/arachni/framework/parts/check.rb +1 -0
data/lib/arachni/framework/parts/data.rb +4 -0
data/lib/arachni/framework/parts/state.rb +0 -2
data/lib/arachni/http/client.rb +17 -6
data/lib/arachni/http/proxy_server.rb +52 -5
data/lib/arachni/http/request.rb +1 -1
data/lib/arachni/issue.rb +34 -179
data/lib/arachni/issue/severity.rb +2 -0
data/lib/arachni/option_groups/audit.rb +22 -2
data/lib/arachni/option_groups/browser_cluster.rb +15 -0
data/lib/arachni/page.rb +3 -2
data/lib/arachni/parser.rb +24 -5
data/lib/arachni/platform/manager.rb +1 -2
data/lib/arachni/rpc/server/framework.rb +3 -4
data/lib/arachni/rpc/server/framework/multi_instance.rb +2 -1
data/lib/arachni/session.rb +1 -1
data/lib/arachni/trainer.rb +4 -7
data/lib/arachni/watir/element.rb +12 -1
data/lib/version +1 -1
data/spec/arachni/browser/element_locator_spec.rb +43 -43
data/spec/arachni/browser/javascript/dom_monitor_spec.rb +44 -44
data/spec/arachni/browser/javascript/proxy/stub_spec.rb +17 -14
data/spec/arachni/browser/javascript/proxy_spec.rb +24 -24
data/spec/arachni/browser/javascript/taint_tracer/frame/called_function_spec.rb +11 -11
data/spec/arachni/browser/javascript/taint_tracer/frame_spec.rb +7 -7
data/spec/arachni/browser/javascript/taint_tracer/sink/data_flow_spec.rb +13 -13
data/spec/arachni/browser/javascript/taint_tracer/sink/execution_flow_spec.rb +7 -7
data/spec/arachni/browser/javascript/taint_tracer_spec.rb +568 -558
data/spec/arachni/browser/javascript_spec.rb +73 -63
data/spec/arachni/browser_cluster/job/result_spec.rb +3 -3
data/spec/arachni/browser_cluster/job_spec.rb +68 -48
data/spec/arachni/browser_cluster/jobs/resource_exploration/event_trigger/result_spec.rb +2 -2
data/spec/arachni/browser_cluster/jobs/resource_exploration/event_trigger_spec.rb +5 -4
data/spec/arachni/browser_cluster/jobs/resource_exploration/result_spec.rb +2 -2
data/spec/arachni/browser_cluster/jobs/resource_exploration_spec.rb +5 -5
data/spec/arachni/browser_cluster/worker_spec.rb +87 -70
data/spec/arachni/browser_cluster_spec.rb +64 -39
data/spec/arachni/browser_spec.rb +692 -527
data/spec/arachni/check/auditor_spec.rb +177 -147
data/spec/arachni/check/base_spec.rb +33 -33
data/spec/arachni/check/manager_spec.rb +15 -15
data/spec/arachni/component/base_spec.rb +8 -8
data/spec/arachni/component/manager_spec.rb +100 -99
data/spec/arachni/component/options/address_spec.rb +3 -3
data/spec/arachni/component/options/base_spec.rb +7 -7
data/spec/arachni/component/options/bool_spec.rb +9 -9
data/spec/arachni/component/options/float_spec.rb +6 -6
data/spec/arachni/component/options/int_spec.rb +5 -5
data/spec/arachni/component/options/multiple_choice_spec.rb +12 -12
data/spec/arachni/component/options/object_spec.rb +2 -2
data/spec/arachni/component/options/path_spec.rb +3 -3
data/spec/arachni/component/options/port_spec.rb +5 -5
data/spec/arachni/component/options/string_spec.rb +3 -3
data/spec/arachni/component/options/url_spec.rb +4 -4
data/spec/arachni/component/utilities_spec.rb +2 -2
data/spec/arachni/data/framework/rpc_spec.rb +10 -9
data/spec/arachni/data/framework_spec.rb +65 -46
data/spec/arachni/data/issues_spec.rb +39 -77
data/spec/arachni/data/plugins_spec.rb +11 -11
data/spec/arachni/data/session_spec.rb +6 -6
data/spec/arachni/data_spec.rb +8 -8
data/spec/arachni/element/body_spec.rb +10 -10
data/spec/arachni/element/capabilities/analyzable/differential_spec.rb +39 -21
data/spec/arachni/element/capabilities/analyzable/{taint_spec.rb → signature_spec.rb} +63 -63
data/spec/arachni/element/capabilities/analyzable/timeout_spec.rb +51 -51
data/spec/arachni/element/capabilities/with_scope/scope_spec.rb +5 -5
data/spec/arachni/element/cookie/dom_spec.rb +37 -18
data/spec/arachni/element/cookie_spec.rb +206 -139
data/spec/arachni/element/form/dom_spec.rb +36 -19
data/spec/arachni/element/form_spec.rb +210 -187
data/spec/arachni/element/generic_dom_spec.rb +14 -14
data/spec/arachni/element/header_spec.rb +35 -17
data/spec/arachni/element/json_spec.rb +53 -31
data/spec/arachni/element/link/dom_spec.rb +46 -28
data/spec/arachni/element/link_spec.rb +58 -40
data/spec/arachni/element/link_template/dom_spec.rb +47 -29
data/spec/arachni/element/link_template_spec.rb +79 -61
data/spec/arachni/element/path_spec.rb +1 -1
data/spec/arachni/element/server_spec.rb +33 -32
data/spec/arachni/element/ui_form/ui_form_dom_spec.rb +164 -0
data/spec/arachni/element/ui_form_spec.rb +242 -0
data/spec/arachni/element/ui_input/dom_spec.rb +157 -0
data/spec/arachni/element/ui_input_spec.rb +136 -0
data/spec/arachni/element/xml_spec.rb +42 -24
data/spec/arachni/element_filter_spec.rb +49 -48
data/spec/arachni/error_spec.rb +3 -3
data/spec/arachni/framework/parts/audit_spec.rb +64 -63
data/spec/arachni/framework/parts/browser_spec.rb +16 -16
data/spec/arachni/framework/parts/check_spec.rb +3 -3
data/spec/arachni/framework/parts/data_spec.rb +48 -48
data/spec/arachni/framework/parts/platform_spec.rb +3 -3
data/spec/arachni/framework/parts/plugin_spec.rb +7 -6
data/spec/arachni/framework/parts/report_spec.rb +7 -7
data/spec/arachni/framework/parts/scope_spec.rb +16 -16
data/spec/arachni/framework/parts/state_spec.rb +68 -69
data/spec/arachni/framework_spec.rb +39 -31
data/spec/arachni/http/client/dynamic_404_handlers_spec.rb +32 -32
data/spec/arachni/http/client_spec.rb +219 -208
data/spec/arachni/http/cookie_jar_spec.rb +72 -72
data/spec/arachni/http/headers_spec.rb +14 -14
data/spec/arachni/http/proxy_server_spec.rb +43 -42
data/spec/arachni/http/request_spec.rb +105 -103
data/spec/arachni/http/response/scope_spec.rb +24 -24
data/spec/arachni/http/response_spec.rb +50 -49
data/spec/arachni/issue/severity_spec.rb +10 -9
data/spec/arachni/issue_spec.rb +71 -369
data/spec/arachni/option_groups/audit_spec.rb +114 -114
data/spec/arachni/option_groups/browser_cluster_spec.rb +20 -3
data/spec/arachni/option_groups/datastore_spec.rb +6 -6
data/spec/arachni/option_groups/dispatcher_spec.rb +19 -19
data/spec/arachni/option_groups/http_spec.rb +11 -11
data/spec/arachni/option_groups/input_spec.rb +31 -27
data/spec/arachni/option_groups/output_spec.rb +2 -2
data/spec/arachni/option_groups/paths_spec.rb +17 -17
data/spec/arachni/option_groups/rpc_spec.rb +2 -2
data/spec/arachni/option_groups/scope_spec.rb +40 -40
data/spec/arachni/option_groups/session_spec.rb +6 -5
data/spec/arachni/option_groups/snapshot_spec.rb +4 -4
data/spec/arachni/options_spec.rb +46 -45
data/spec/arachni/page/dom/transition_spec.rb +74 -72
data/spec/arachni/page/dom_spec.rb +35 -35
data/spec/arachni/page/scope_spec.rb +15 -15
data/spec/arachni/page_spec.rb +217 -217
data/spec/arachni/parser_spec.rb +106 -104
data/spec/arachni/platform/fingerprinter_spec.rb +17 -14
data/spec/arachni/platform/list_spec.rb +33 -33
data/spec/arachni/platform/manager_spec.rb +67 -64
data/spec/arachni/plugin/base_spec.rb +10 -10
data/spec/arachni/plugin/manager_spec.rb +38 -37
data/spec/arachni/report_spec.rb +43 -40
data/spec/arachni/reporter/base_spec.rb +15 -15
data/spec/arachni/reporter/manager_spec.rb +4 -4
data/spec/arachni/reporter/options_spec.rb +6 -6
data/spec/arachni/rpc/client/base_spec.rb +6 -6
data/spec/arachni/rpc/client/dispatcher_spec.rb +2 -2
data/spec/arachni/rpc/client/instance_spec.rb +6 -6
data/spec/arachni/rpc/server/active_options_spec.rb +11 -8
data/spec/arachni/rpc/server/base_spec.rb +5 -5
data/spec/arachni/rpc/server/checks/manager_spec.rb +8 -8
data/spec/arachni/rpc/server/dispatcher/node_spec.rb +37 -37
data/spec/arachni/rpc/server/dispatcher/service_spec.rb +15 -14
data/spec/arachni/rpc/server/dispatcher_spec.rb +36 -35
data/spec/arachni/rpc/server/framework/distributor_spec.rb +36 -36
data/spec/arachni/rpc/server/framework_multi_spec.rb +340 -336
data/spec/arachni/rpc/server/framework_spec.rb +90 -85
data/spec/arachni/rpc/server/instance_spec.rb +126 -107
data/spec/arachni/rpc/server/output_spec.rb +1 -1
data/spec/arachni/rpc/server/plugin/manager_spec.rb +6 -6
data/spec/arachni/ruby/array_spec.rb +42 -42
data/spec/arachni/ruby/hash_spec.rb +20 -18
data/spec/arachni/ruby/io_spec.rb +2 -2
data/spec/arachni/ruby/object_spec.rb +1 -1
data/spec/arachni/ruby/set_spec.rb +3 -3
data/spec/arachni/ruby/string_spec.rb +30 -30
data/spec/arachni/ruby/webrick_spec.rb +2 -2
data/spec/arachni/scope_spec.rb +1 -1
data/spec/arachni/session_spec.rb +67 -64
data/spec/arachni/snapshot_spec.rb +15 -15
data/spec/arachni/state/audit_spec.rb +11 -11
data/spec/arachni/state/element_filter_spec.rb +6 -6
data/spec/arachni/state/framework/rpc_spec.rb +12 -12
data/spec/arachni/state/framework_spec.rb +125 -121
data/spec/arachni/state/http_spec.rb +7 -7
data/spec/arachni/state/options_spec.rb +7 -7
data/spec/arachni/state/plugins_spec.rb +8 -8
data/spec/arachni/state_spec.rb +10 -10
data/spec/arachni/support/buffer/autoflush_spec.rb +16 -16
data/spec/arachni/support/buffer/base_spec.rb +39 -39
data/spec/arachni/support/cache/least_cost_replacement_spec.rb +18 -18
data/spec/arachni/support/cache/least_recently_pushed_spec.rb +24 -24
data/spec/arachni/support/cache/least_recently_used_spec.rb +20 -20
data/spec/arachni/support/cache/preference_spec.rb +4 -4
data/spec/arachni/support/cache/random_replacement_spec.rb +8 -8
data/spec/arachni/support/crypto/rsa_aes_cbc_spec.rb +1 -1
data/spec/arachni/support/database/hash_spec.rb +44 -43
data/spec/arachni/support/database/queue_spec.rb +27 -27
data/spec/arachni/support/lookup/hash_set_spec.rb +8 -8
data/spec/arachni/support/lookup/moolb_spec.rb +3 -3
data/spec/arachni/support/mixins/observable_spec.rb +6 -6
data/spec/arachni/support/signature_spec.rb +19 -19
data/spec/arachni/trainer_spec.rb +39 -39
data/spec/arachni/typhoeus/hydra_spec.rb +2 -2
data/spec/arachni/uri/scope_spec.rb +66 -66
data/spec/arachni/uri_spec.rb +107 -105
data/spec/arachni/utilities_spec.rb +40 -40
data/spec/components/checks/active/csrf_spec.rb +8 -8
data/spec/components/checks/active/no_sql_injection_spec.rb +1 -1
data/spec/components/checks/active/sql_injection_spec.rb +16 -16
data/spec/components/checks/active/trainer_spec.rb +4 -4
data/spec/components/checks/active/unvalidated_redirect_dom_spec.rb +4 -2
data/spec/components/checks/active/xpath_injection_spec.rb +1 -1
data/spec/components/checks/active/xss_dom_script_context_spec.rb +51 -21
data/spec/components/checks/active/xss_dom_spec.rb +46 -24
data/spec/components/checks/passive/allowed_methods_spec.rb +1 -1
data/spec/components/checks/passive/grep/cookie_set_for_parent_domain_spec.rb +1 -1
data/spec/components/checks/passive/grep/hsts_spec.rb +2 -2
data/spec/components/checks/passive/grep/http_only_cookies_spec.rb +1 -1
data/spec/components/checks/passive/grep/insecure_cookies_spec.rb +1 -1
data/spec/components/checks/passive/grep/insecure_cors_policy_spec.rb +2 -2
data/spec/components/checks/passive/grep/password_autocomplete_spec.rb +1 -1
data/spec/components/checks/passive/grep/private_ip_spec.rb +3 -3
data/spec/components/checks/passive/grep/unencrypted_password_forms_spec.rb +1 -1
data/spec/components/checks/passive/grep/x_frame_options_spec.rb +2 -2
data/spec/components/checks/passive/interesting_responses_spec.rb +2 -2
data/spec/components/checks/passive/webdav_spec.rb +1 -1
data/spec/components/checks/passive/xst_spec.rb +1 -1
data/spec/components/fingerprinters/servers/apache_spec.rb +2 -2
data/spec/components/path_extractors/comments_spec.rb +5 -1
data/spec/components/path_extractors/scripts_spec.rb +5 -2
data/spec/components/plugins/autologin_spec.rb +22 -22
data/spec/components/plugins/autothrottle_spec.rb +6 -5
data/spec/components/plugins/content_types_spec.rb +4 -4
data/spec/components/plugins/cookie_collector_spec.rb +5 -5
data/spec/components/plugins/exec_spec.rb +12 -12
data/spec/components/plugins/form_dicattack_spec.rb +3 -3
data/spec/components/plugins/headers_collector_spec.rb +8 -8
data/spec/components/plugins/healthmap_spec.rb +3 -3
data/spec/components/plugins/http_dicattack_spec.rb +3 -3
data/spec/components/plugins/login_script_spec.rb +79 -22
data/spec/components/plugins/meta/remedies/discovery_spec.rb +3 -2
data/spec/components/plugins/meta/remedies/timing_attacks_spec.rb +3 -3
data/spec/components/plugins/meta/uniformity_spec.rb +2 -2
data/spec/components/plugins/restrict_to_dom_state_spec.rb +1 -1
data/spec/components/plugins/script_spec.rb +1 -1
data/spec/components/plugins/uncommon_headers_spec.rb +2 -2
data/spec/components/plugins/vector_collector_spec.rb +2 -2
data/spec/components/plugins/vector_feed_spec.rb +40 -40
data/spec/components/plugins/waf_detector_spec.rb +6 -6
data/spec/components/reporters/json_spec.rb +4 -4
data/spec/components/reporters/marshal_spec.rb +2 -2
data/spec/components/reporters/yaml_spec.rb +3 -2
data/spec/external/wavsep/active/sqli_spec.rb +1 -3
data/spec/spec_helper.rb +4 -0
data/spec/support/factories/element/ui_form.rb +14 -0
data/spec/support/factories/element/ui_input.rb +13 -0
data/spec/support/factories/issue.rb +0 -13
data/spec/support/fixtures/report.afr +0 -0
data/spec/support/fixtures/{taint_check/taint.rb → signature_check/signature.rb} +2 -2
data/spec/support/helpers/browser_cluster/jobs/taint_tracer.rb +11 -11
data/spec/support/helpers/framework.rb +1 -1
data/spec/support/helpers/pages.rb +2 -2
data/spec/support/servers/arachni/browser.rb +139 -0
data/spec/support/servers/arachni/browser/javascript/taint_tracer.rb +40 -0
data/spec/support/servers/arachni/element/capabilities/analyzable/{taint.rb → signature.rb} +0 -0
data/spec/support/servers/arachni/element/input/input_dom.rb +102 -0
data/spec/support/servers/arachni/element/ui_form/ui_form_dom.rb +238 -0
data/spec/support/servers/checks/active/trainer_check.rb +7 -7
data/spec/support/servers/checks/active/unvalidated_redirect_dom.rb +22 -6
data/spec/support/servers/checks/active/xss_dom.rb +50 -0
data/spec/support/servers/checks/active/xss_dom_script_context.rb +53 -0
data/spec/support/shared/browser/javascript/taint_tracer/sink/base.rb +6 -6
data/spec/support/shared/check.rb +10 -12
data/spec/support/shared/component/options/base.rb +24 -24
data/spec/support/shared/element/base.rb +25 -25
data/spec/support/shared/element/capabilities/auditable.rb +116 -140
data/spec/support/shared/element/capabilities/dom_only.rb +65 -0
data/spec/support/shared/element/capabilities/inputtable.rb +71 -86
data/spec/support/shared/element/capabilities/mutable.rb +122 -111
data/spec/support/shared/element/capabilities/refreshable.rb +10 -10
data/spec/support/shared/element/capabilities/{submitable.rb → submittable.rb} +26 -26
data/spec/support/shared/element/capabilities/with_auditor.rb +10 -10
data/spec/support/shared/element/capabilities/with_dom.rb +8 -8
data/spec/support/shared/element/capabilities/with_node.rb +4 -6
data/spec/support/shared/element/capabilities/with_scope.rb +2 -2
data/spec/support/shared/element/capabilities/with_source.rb +6 -8
data/spec/support/shared/element/dom.rb +144 -0
data/spec/support/shared/element/dom/auditable.rb +42 -0
data/spec/support/shared/element/dom/inputtable.rb +5 -0
data/spec/support/shared/element/dom/mutable.rb +3 -0
data/spec/support/shared/element/dom/submittable.rb +119 -0
data/spec/support/shared/external/wavsep.rb +3 -3
data/spec/support/shared/fingerprinter.rb +2 -2
data/spec/support/shared/framework.rb +1 -1
data/spec/support/shared/http/message.rb +9 -9
data/spec/support/shared/option_group.rb +17 -17
data/spec/support/shared/path_extractor.rb +1 -1
data/spec/support/shared/plugin.rb +2 -2
data/spec/support/shared/support/cache.rb +57 -57
data/spec/support/shared/support/lookup.rb +25 -25
data/ui/cli/framework.rb +22 -11
data/ui/cli/framework/option_parser.rb +15 -0
data/ui/cli/option_parser.rb +8 -1
data/ui/cli/output.rb +2 -1
metadata +54 -20
data/components/checks/active/xss_dom_inputs.rb +0 -236
data/spec/components/checks/active/xss_dom_inputs_spec.rb +0 -30
data/spec/support/servers/checks/active/xss_dom_inputs.rb +0 -59
data/spec/support/shared/element/capabilities/auditable/dom.rb +0 -322

data/lib/arachni/issue/severity.rb CHANGED

@@ -32,3 +32,5 @@ module Severity
 end
 end
 end
+Arachni::Severity = Arachni::Issue::Severity

data/lib/arachni/option_groups/audit.rb CHANGED

@@ -147,6 +147,22 @@ class Audit < Arachni::OptionGroup
     #   Audit XML request inputs.
     attr_accessor :xmls
+    # @note Default is `false`.
+    #
+    # @return    [Bool]
+    #   Audit DOM inputs.
+    attr_accessor :ui_inputs
+    alias :ui_input_doms  :ui_inputs
+    alias :ui_input_doms=  :ui_inputs=
+    # @note Default is `false`.
+    #
+    # @return    [Bool]
+    #   Audit DOM UI forms -- i.e. combination or orphan inputs and buttons.
+    attr_accessor :ui_forms
+    alias :ui_form_doms  :ui_forms
+    alias :ui_form_doms=  :ui_forms=
     set_defaults(
         parameter_values:        true,
         exclude_vector_patterns: [],
@@ -235,6 +251,10 @@ class Audit < Arachni::OptionGroup
     #   * `:forms`
     #   * `:cookies`
     #   * `:headers`
+    #   * `:ui_inputs`
+    #   * `:ui_forms`
+    #   * `:xmls`
+    #   * `:jsons`
     #
     # @return   [Bool]
     #
@@ -250,8 +270,8 @@ class Audit < Arachni::OptionGroup
     [:links, :forms, :cookies, :headers, :cookies_extensively,
      :with_both_http_methods, :link_doms, :form_doms, :cookie_doms,
-     :jsons, :xmls, :parameter_values, :parameter_names, :with_extra_parameter
-    ].each do |attribute|
+     :jsons, :xmls, :ui_inputs, :ui_input_doms, :ui_forms, :ui_form_doms,
+     :parameter_values, :parameter_names, :with_extra_parameter].each do |attribute|
         define_method "#{attribute}?" do
             !!send( attribute )
         end

data/lib/arachni/option_groups/browser_cluster.rb CHANGED

@@ -13,6 +13,10 @@ module Arachni::OptionGroups
 # @author Tasos "Zapotek" Laskos <tasos.laskos@arachni-scanner.com>
 class BrowserCluster < Arachni::OptionGroup
+    # @return   [Hash]
+    #   Data to be set in the browser's `localStorage`.
+    attr_accessor :local_storage
     # @return   [Hash<Regexp,String>]
     #   When the page URL matched the key `Regexp`, wait until the `String` CSS
     #   selector in the value matches an element.
@@ -43,6 +47,7 @@ class BrowserCluster < Arachni::OptionGroup
     attr_accessor :screen_height
     set_defaults(
+        local_storage:       {},
         wait_for_elements:   {},
         pool_size:           6,
         job_timeout:         25,
@@ -52,6 +57,16 @@ class BrowserCluster < Arachni::OptionGroup
         screen_height:       1200
     )
+    def local_storage=( data )
+        data ||= {}
+        if !data.is_a?( Hash )
+            fail ArgumentError, "Expected data to be Hash, got #{data.class} instead."
+        end
+        @local_storage = data
+    end
     def css_to_wait_for( url )
         wait_for_elements.map do |pattern, css|
             next if !(url =~ pattern)

data/lib/arachni/page.rb CHANGED

@@ -101,7 +101,8 @@ class Page
     end
     ELEMENTS = [
-        :links, :forms, :cookies, :headers, :link_templates, :jsons, :xmls
+        :links, :forms, :cookies, :headers, :link_templates, :jsons, :xmls,
+        :ui_inputs, :ui_forms
     ]
     METADATA = [ :nonce_name, :skip_dom ]
@@ -274,7 +275,7 @@ class Page
         @has_javascript = nil
         clear_cache
-        @body = string.to_s.dup.freeze
+        @body = string.to_s.dup.recode.freeze
     end
     ELEMENTS.each do |type|

data/lib/arachni/parser.rb CHANGED

@@ -244,6 +244,16 @@ class Parser
         @link_vars ||= parsed.rewrite.query_parameters.freeze
     end
+    # Dummy method, only the {Browser#to_page browser} can fill this in.
+    def ui_inputs
+        []
+    end
+    # Dummy method, only the {Browser#to_page browser} can fill this in.
+    def ui_forms
+        []
+    end
     # @return   [Array<Element::Cookie>]
     #   Cookies from HTTP headers and response body.
     def cookies
@@ -320,16 +330,25 @@ class Parser
     #   Paths.
     def run_extractors
         begin
-            self.class.extractors.available.map do |name|
+            unsanitized_paths = Set.new
+            self.class.extractors.available.each do |name|
                 exception_jail false do
-                    self.class.extractors[name].new(
+                    unsanitized_paths.merge self.class.extractors[name].new(
                         document: document,
                         html:     body
                     ).run
                 end
-            end.flatten.uniq.compact.
-                map { |path| to_absolute( path ) }.compact.uniq.
-                reject { |path| skip?( path ) }
+            end
+            sanitized_paths = Set.new
+            unsanitized_paths.map do |path|
+                abs = to_absolute( path )
+                next if !abs || skip?( abs )
+                sanitized_paths << abs
+            end
+            sanitized_paths.to_a
         rescue => e
             print_exception e
             []

data/lib/arachni/platform/manager.rb CHANGED

@@ -167,7 +167,7 @@ class Manager
         rack:     'Rack',
         django:   'Django',
         cakephp:  'CakePHP',
-        nette:  'Nette Framework',
+        nette:    'Nette',
         symfony:  'Symfony',
         rails:    'Ruby on Rails',
         aspx_mvc: 'ASP.NET MVC',
@@ -175,7 +175,6 @@ class Manager
         cherrypy: 'CherryPy'
     }
-    # Amount of
     PLATFORM_CACHE_SIZE = 1000
     def self.synchronize( &block )

data/lib/arachni/rpc/server/framework.rb CHANGED

@@ -206,12 +206,11 @@ class Framework < ::Arachni::Framework
     end
     # @return  [Array<Hash>]
-    #   First variations of all discovered issues with generic info filled in
-    #   from the parent as {Arachni::Issue#to_rpc_data RPC data}.
+    #   Issues as {Arachni::Issue#to_rpc_data RPC data}.
     #
     # @private
     def issues
-        Data.issues.map { |issue| issue.variations.first.to_solo( issue ).to_rpc_data }
+        Data.issues.sort.map(&:to_rpc_data)
     end
     # @return   [Array<Hash>]
@@ -219,7 +218,7 @@ class Framework < ::Arachni::Framework
     #
     # @see #issues
     def issues_as_hash
-        Data.issues.map { |issue| issue.variations.first.to_solo( issue ).to_h }
+        Data.issues.sort.map(&:to_h)
     end
     # @return   [String]

data/lib/arachni/rpc/server/framework/multi_instance.rb CHANGED

@@ -100,7 +100,8 @@ module MultiInstance
         data = {
             status: status,
-            busy:   running?
+            busy:   running?,
+            seed:   Utilities.random_seed
         }
         if include_issues

data/lib/arachni/session.rb CHANGED

@@ -278,7 +278,7 @@ class Session
         http.get( Options.session.check_url, http_options ) do |response|
             bool = !!response.body.match( Options.session.check_pattern )
-            print_debug "Login check done: #{bool}"
+            print_debug "Login check done: #{bool}\n#{response}"
             block.call( bool ) if block
         end

data/lib/arachni/trainer.rb CHANGED

@@ -127,18 +127,15 @@ class Trainer
         [ :forms, :links ].each { |type| has_new_elements ||= has_new?( incoming_page, type ) }
+        incoming_page.paths.each do |path|
+            @framework.push_to_url_queue( path )
+        end
         if has_new_elements
             @trainings_per_url[incoming_page.url] += 1
             notify_on_new_page incoming_page
             @framework.push_to_page_queue( incoming_page )
-        # If the page is pushed, paths will be extracted eventually, if not, we
-        # need to do it now.
-        else
-            incoming_page.paths.each do |path|
-                @framework.push_to_url_queue( path )
-            end
         end
         incoming_page.clear_cache

data/lib/arachni/watir/element.rb CHANGED

@@ -10,7 +10,18 @@ module Watir
 class Element
     def opening_tag
-        html.match( /<#{tag_name}.*?>/im )[0]
+        browser.execute_script(
+            %Q[
+                var s = '<' + arguments[0].tagName.toLowerCase();
+                var attrs = arguments[0].attributes;
+                for( var l = 0; l < attrs.length; ++l ) {
+                    s += ' ' + attrs[l].name + '="' + attrs[l].value.replace( '"', '\"' ) + '"';
+                }
+                s += '>'
+                return s;
+            ],
+            self
+        )
     end
     def events

data/lib/version CHANGED

	@@ -1 +1 @@
1	- 1.~~2.1~~
1	+ 1.3

data/spec/arachni/browser/element_locator_spec.rb CHANGED

@@ -25,7 +25,7 @@ describe Arachni::Browser::ElementLocator do
     subject { described_class.new options }
     it "supports #{Arachni::RPC::Serializer}" do
-        subject.should == Arachni::RPC::Serializer.deep_clone( subject )
+        expect(subject).to eq(Arachni::RPC::Serializer.deep_clone( subject ))
     end
     describe '#to_rpc_data' do
@@ -33,7 +33,7 @@ describe Arachni::Browser::ElementLocator do
         %w(tag_name attributes).each do |attribute|
             it "includes '#{attribute}'" do
-                data[attribute].should == subject.send( attribute )
+                expect(data[attribute]).to eq(subject.send( attribute ))
             end
         end
     end
@@ -44,7 +44,7 @@ describe Arachni::Browser::ElementLocator do
         %w(tag_name attributes).each do |attribute|
             it "restores '#{attribute}'" do
-                restored.send( attribute ).should == subject.send( attribute )
+                expect(restored.send( attribute )).to eq(subject.send( attribute ))
             end
         end
     end
@@ -52,10 +52,10 @@ describe Arachni::Browser::ElementLocator do
     describe '.from_html' do
         it 'fills in locator data from HTML code' do
             l = described_class.from_html( '<a href="/test/">Click me</a>' )
-            l.tag_name.should == :a
-            l.attributes.should == {
+            expect(l.tag_name).to eq(:a)
+            expect(l.attributes).to eq({
                 'href' => '/test/'
-            }
+            })
         end
     end
@@ -64,27 +64,27 @@ describe Arachni::Browser::ElementLocator do
             l = described_class.from_node(
                 Nokogiri::HTML.fragment( '<a href="/test/">Click me</a>' ).children.first
             )
-            l.tag_name.should == :a
-            l.attributes.should == {
+            expect(l.tag_name).to eq(:a)
+            expect(l.attributes).to eq({
                 'href' => '/test/'
-            }
+            })
         end
     end
     describe '#initialize' do
         describe :tag_name do
             it 'sets #tag_name' do
-                described_class.new( tag_name: :a ).tag_name.should == :a
+                expect(described_class.new( tag_name: :a ).tag_name).to eq(:a)
             end
             it 'converts it to a Sybmol' do
-                described_class.new( tag_name: 'a' ).tag_name.should == :a
+                expect(described_class.new( tag_name: 'a' ).tag_name).to eq(:a)
             end
         end
         describe :attributes do
             it 'sets #attributes' do
-                described_class.new( attributes: attributes ).attributes.should == attributes
+                expect(described_class.new( attributes: attributes ).attributes).to eq(attributes)
             end
         end
     end
@@ -95,14 +95,14 @@ describe Arachni::Browser::ElementLocator do
             l = described_class.new( tag_name: :a, attributes: { href: '#stuff'} )
             element = l.locate( browser )
-            element.should be_kind_of Watir::HTMLElement
-            element.exists?.should be_true
+            expect(element).to be_kind_of Watir::HTMLElement
+            expect(element.exists?).to be_truthy
         end
         context 'when the element cannot be located' do
             it "returns a #{Watir} locator" do
                 browser.load "#{url}/digest"
-                subject.locate( browser ).exists?.should be_false
+                expect(subject.locate( browser ).exists?).to be_falsey
             end
         end
     end
@@ -110,30 +110,30 @@ describe Arachni::Browser::ElementLocator do
     describe '#css' do
         context 'when there are no attributes' do
             it 'returns a CSS locator with just the tag name' do
-                described_class.new( tag_name: :a ).css.should == 'a'
+                expect(described_class.new( tag_name: :a ).css).to eq('a')
             end
         end
         context 'when there is an attribute' do
             it 'returns a CSS locator with the attribute' do
-                described_class.new(
+                expect(described_class.new(
                     tag_name: :a,
                     attributes: {
                         stuff: 'blah'
                     }
-                ).css.should == 'a[stuff="blah"]'
+                ).css).to eq('a[stuff="blah"]')
             end
         end
         context 'when there are multiple attributes' do
             it 'returns a CSS locator with the attributes' do
-                described_class.new(
+                expect(described_class.new(
                     tag_name: :a,
                     attributes: {
                         stuff:  'blah',
                         stuff2: 'blah2'
                     }
-                ).css.should == 'a[stuff="blah"][stuff2="blah2"]'
+                ).css).to eq('a[stuff="blah"][stuff2="blah2"]')
             end
         end
     end
@@ -142,13 +142,13 @@ describe Arachni::Browser::ElementLocator do
         it 'sets #tag_name' do
             l = described_class.new
             l.tag_name = tag_name
-            l.tag_name.should == tag_name
+            expect(l.tag_name).to eq(tag_name)
         end
         it 'converts the arguments to a Symbol' do
             l = described_class.new
             l.tag_name = tag_name.to_s
-            l.tag_name.should == tag_name.to_sym
+            expect(l.tag_name).to eq(tag_name.to_sym)
         end
     end
@@ -156,71 +156,71 @@ describe Arachni::Browser::ElementLocator do
         it 'sets #attributes' do
             l = described_class.new
             l.attributes = attributes
-            l.attributes.should == attributes
+            expect(l.attributes).to eq(attributes)
         end
         it 'converts the keys and values to strings' do
             l = described_class.new
             l.attributes = attributes.
                 inject({}) { |h, (k,v)| h[k.to_sym] = v.to_sym; h }
-            l.attributes.should == attributes
+            expect(l.attributes).to eq(attributes)
         end
         it 'freezes the keys and values' do
             l = described_class.new
             l.attributes = attributes
             l.attributes.each do |k, v|
-                k.should be_frozen
-                v.should be_frozen
+                expect(k).to be_frozen
+                expect(v).to be_frozen
             end
         end
         it 'freezes the hash' do
             l = described_class.new
             l.attributes = attributes
-            l.attributes.should be_frozen
+            expect(l.attributes).to be_frozen
         end
     end
     describe '#locatable_attributes' do
         it 'returns attributes that can be used to locate the element' do
-            described_class.new(
+            expect(described_class.new(
                 tag_name: :a,
                 attributes: attributes.merge(
                     'custom-attr' => 'blah',
                     'data-id' => 'blah'
                 )
-            ).locatable_attributes.should == { id: 'my-id', data_id: 'blah' }
+            ).locatable_attributes).to eq({ id: 'my-id', data_id: 'blah' })
         end
     end
     describe '#to_s' do
         it 'converts it to an HTML opening tag' do
-            subject.to_s.should == '<a id="my-id" class="my-class">'
-            described_class.new( tag_name: tag_name ).to_s.should == '<a>'
+            expect(subject.to_s).to eq('<a id="my-id" class="my-class">')
+            expect(described_class.new( tag_name: tag_name ).to_s).to eq('<a>')
         end
     end
     describe '#inspect' do
         it 'is aliased to #to_s' do
-            subject.to_s.should == subject.inspect
+            expect(subject.to_s).to eq(subject.inspect)
         end
     end
     describe '#to_hash' do
         it 'converts it to a Hash' do
-            subject.to_hash.should == options
+            expect(subject.to_hash).to eq(options)
         end
         it 'is aliased to #to_h' do
-            subject.to_h.should == subject.to_hash
+            expect(subject.to_h).to eq(subject.to_hash)
         end
     end
     describe '#dup' do
         it 'duplicates self' do
-            subject.dup.should == subject
-            subject.dup.object_id.should_not == subject.object_id
+            expect(subject.dup).to eq(subject)
+            expect(subject.dup.object_id).not_to eq(subject.object_id)
         end
     end
@@ -228,20 +228,20 @@ describe Arachni::Browser::ElementLocator do
         context 'when the #tag_name changes' do
             it 'changes' do
                 hash = subject.hash
-                hash.should == subject.hash
+                expect(hash).to eq(subject.hash)
                 subject.tag_name = 'stuff'
-                hash.should_not == subject.hash
+                expect(hash).not_to eq(subject.hash)
             end
         end
         context 'when the #attributes change' do
             it 'changes' do
                 hash = subject.hash
-                hash.should == subject.hash
+                expect(hash).to eq(subject.hash)
                 subject.attributes = { 1 => 2 }
-                hash.should_not == subject.hash
+                expect(hash).not_to eq(subject.hash)
             end
         end
     end
@@ -249,8 +249,8 @@ describe Arachni::Browser::ElementLocator do
     describe '#==' do
         context 'when the objects are equal' do
             it 'returns true' do
-                subject.should == subject
-                subject.dup.should == subject
+                expect(subject).to eq(subject)
+                expect(subject.dup).to eq(subject)
             end
         end
@@ -258,7 +258,7 @@ describe Arachni::Browser::ElementLocator do
             it 'returns false' do
                 dup = subject.dup
                 dup.tag_name = 'stuff'
-                dup.should_not == subject
+                expect(dup).not_to eq(subject)
             end
         end
     end