RubyGems - arachni - Versions diffs - 1.2.1 → 1.3 - Mend

arachni 1.2.1 → 1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (373) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +66 -0
data/Gemfile +1 -1
data/README.md +16 -5
data/components/checks/active/ldap_injection/errors.txt +1 -0
data/components/checks/active/source_code_disclosure.rb +1 -1
data/components/checks/active/unvalidated_redirect.rb +6 -6
data/components/checks/active/unvalidated_redirect_dom.rb +10 -7
data/components/checks/passive/grep/captcha.rb +14 -5
data/components/checks/passive/grep/form_upload.rb +7 -3
data/components/checks/passive/grep/hsts.rb +3 -3
data/components/checks/passive/grep/html_objects.rb +2 -3
data/components/checks/passive/grep/http_only_cookies.rb +2 -3
data/components/checks/passive/grep/insecure_cookies.rb +1 -1
data/components/checks/passive/grep/password_autocomplete.rb +2 -2
data/components/checks/passive/grep/unencrypted_password_forms.rb +7 -7
data/components/checks/passive/grep/x_frame_options.rb +2 -2
data/components/checks/passive/http_put.rb +2 -3
data/components/path_extractors/comments.rb +3 -3
data/components/path_extractors/scripts.rb +10 -1
data/components/plugins/defaults/autothrottle.rb +27 -18
data/components/plugins/defaults/meta/remedies/discovery.rb +30 -33
data/components/plugins/defaults/meta/remedies/timing_attacks.rb +7 -11
data/components/plugins/login_script.rb +9 -3
data/components/plugins/proxy.rb +4 -3
data/components/reporters/html.rb +11 -14
data/components/reporters/html/default/issue.erb +13 -38
data/components/reporters/html/default/issue/info.erb +1 -1
data/components/reporters/html/default/summary/issues/by_name.erb +3 -3
data/components/reporters/stdout.rb +62 -71
data/components/reporters/xml.rb +26 -40
data/components/reporters/xml/schema.xsd +43 -89
data/lib/arachni/browser.rb +52 -3
data/lib/arachni/browser/javascript.rb +3 -3
data/lib/arachni/browser/javascript/scripts/taint_tracer.js +46 -25
data/lib/arachni/browser_cluster.rb +61 -0
data/lib/arachni/browser_cluster/job.rb +21 -1
data/lib/arachni/browser_cluster/jobs/browser_provider.rb +3 -1
data/lib/arachni/browser_cluster/jobs/resource_exploration.rb +2 -1
data/lib/arachni/browser_cluster/jobs/resource_exploration/event_trigger.rb +2 -1
data/lib/arachni/browser_cluster/jobs/taint_trace.rb +3 -2
data/lib/arachni/browser_cluster/jobs/taint_trace/event_trigger.rb +1 -1
data/lib/arachni/browser_cluster/worker.rb +5 -0
data/lib/arachni/check/auditor.rb +22 -12
data/lib/arachni/data/framework.rb +13 -1
data/lib/arachni/data/issues.rb +9 -25
data/lib/arachni/element/base.rb +9 -3
data/lib/arachni/element/capabilities/analyzable.rb +2 -6
data/lib/arachni/element/capabilities/analyzable/differential.rb +24 -7
data/lib/arachni/element/capabilities/analyzable/{taint.rb → signature.rb} +23 -23
data/lib/arachni/element/capabilities/auditable.rb +0 -6
data/lib/arachni/element/capabilities/dom_only.rb +61 -0
data/lib/arachni/element/capabilities/with_dom.rb +3 -1
data/lib/arachni/element/cookie.rb +35 -5
data/lib/arachni/element/cookie/dom.rb +13 -4
data/lib/arachni/element/{capabilities/auditable/dom.rb → dom.rb} +20 -68
data/lib/arachni/element/dom/capabilities/auditable.rb +29 -0
data/lib/arachni/element/dom/capabilities/inputtable.rb +27 -0
data/lib/arachni/element/dom/capabilities/mutable.rb +21 -0
data/lib/arachni/element/dom/capabilities/submittable.rb +52 -0
data/lib/arachni/element/form.rb +12 -1
data/lib/arachni/element/form/capabilities/mutable.rb +2 -1
data/lib/arachni/element/form/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/form/dom.rb +9 -3
data/lib/arachni/element/header.rb +14 -33
data/lib/arachni/element/header/capabilities/inputtable.rb +29 -0
data/lib/arachni/element/header/capabilities/mutable.rb +51 -0
data/lib/arachni/element/input/dom.rb +71 -0
data/lib/arachni/element/json.rb +2 -0
data/lib/arachni/element/link.rb +3 -0
data/lib/arachni/element/link/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/link/dom.rb +16 -3
data/lib/arachni/element/link/dom/capabilities/submittable.rb +29 -0
data/lib/arachni/element/link_template.rb +3 -5
data/lib/arachni/element/link_template/capabilities/inputtable.rb +5 -0
data/lib/arachni/element/link_template/capabilities/with_dom.rb +0 -1
data/lib/arachni/element/link_template/dom.rb +16 -3
data/lib/arachni/element/link_template/dom/capabilities/submittable.rb +29 -0
data/lib/arachni/element/server.rb +3 -5
data/lib/arachni/element/ui_form.rb +106 -0
data/lib/arachni/element/ui_form/dom.rb +107 -0
data/lib/arachni/element/ui_input.rb +62 -0
data/lib/arachni/element/xml.rb +2 -1
data/lib/arachni/framework.rb +7 -5
data/lib/arachni/framework/parts/audit.rb +0 -1
data/lib/arachni/framework/parts/check.rb +1 -0
data/lib/arachni/framework/parts/data.rb +4 -0
data/lib/arachni/framework/parts/state.rb +0 -2
data/lib/arachni/http/client.rb +17 -6
data/lib/arachni/http/proxy_server.rb +52 -5
data/lib/arachni/http/request.rb +1 -1
data/lib/arachni/issue.rb +34 -179
data/lib/arachni/issue/severity.rb +2 -0
data/lib/arachni/option_groups/audit.rb +22 -2
data/lib/arachni/option_groups/browser_cluster.rb +15 -0
data/lib/arachni/page.rb +3 -2
data/lib/arachni/parser.rb +24 -5
data/lib/arachni/platform/manager.rb +1 -2
data/lib/arachni/rpc/server/framework.rb +3 -4
data/lib/arachni/rpc/server/framework/multi_instance.rb +2 -1
data/lib/arachni/session.rb +1 -1
data/lib/arachni/trainer.rb +4 -7
data/lib/arachni/watir/element.rb +12 -1
data/lib/version +1 -1
data/spec/arachni/browser/element_locator_spec.rb +43 -43
data/spec/arachni/browser/javascript/dom_monitor_spec.rb +44 -44
data/spec/arachni/browser/javascript/proxy/stub_spec.rb +17 -14
data/spec/arachni/browser/javascript/proxy_spec.rb +24 -24
data/spec/arachni/browser/javascript/taint_tracer/frame/called_function_spec.rb +11 -11
data/spec/arachni/browser/javascript/taint_tracer/frame_spec.rb +7 -7
data/spec/arachni/browser/javascript/taint_tracer/sink/data_flow_spec.rb +13 -13
data/spec/arachni/browser/javascript/taint_tracer/sink/execution_flow_spec.rb +7 -7
data/spec/arachni/browser/javascript/taint_tracer_spec.rb +568 -558
data/spec/arachni/browser/javascript_spec.rb +73 -63
data/spec/arachni/browser_cluster/job/result_spec.rb +3 -3
data/spec/arachni/browser_cluster/job_spec.rb +68 -48
data/spec/arachni/browser_cluster/jobs/resource_exploration/event_trigger/result_spec.rb +2 -2
data/spec/arachni/browser_cluster/jobs/resource_exploration/event_trigger_spec.rb +5 -4
data/spec/arachni/browser_cluster/jobs/resource_exploration/result_spec.rb +2 -2
data/spec/arachni/browser_cluster/jobs/resource_exploration_spec.rb +5 -5
data/spec/arachni/browser_cluster/worker_spec.rb +87 -70
data/spec/arachni/browser_cluster_spec.rb +64 -39
data/spec/arachni/browser_spec.rb +692 -527
data/spec/arachni/check/auditor_spec.rb +177 -147
data/spec/arachni/check/base_spec.rb +33 -33
data/spec/arachni/check/manager_spec.rb +15 -15
data/spec/arachni/component/base_spec.rb +8 -8
data/spec/arachni/component/manager_spec.rb +100 -99
data/spec/arachni/component/options/address_spec.rb +3 -3
data/spec/arachni/component/options/base_spec.rb +7 -7
data/spec/arachni/component/options/bool_spec.rb +9 -9
data/spec/arachni/component/options/float_spec.rb +6 -6
data/spec/arachni/component/options/int_spec.rb +5 -5
data/spec/arachni/component/options/multiple_choice_spec.rb +12 -12
data/spec/arachni/component/options/object_spec.rb +2 -2
data/spec/arachni/component/options/path_spec.rb +3 -3
data/spec/arachni/component/options/port_spec.rb +5 -5
data/spec/arachni/component/options/string_spec.rb +3 -3
data/spec/arachni/component/options/url_spec.rb +4 -4
data/spec/arachni/component/utilities_spec.rb +2 -2
data/spec/arachni/data/framework/rpc_spec.rb +10 -9
data/spec/arachni/data/framework_spec.rb +65 -46
data/spec/arachni/data/issues_spec.rb +39 -77
data/spec/arachni/data/plugins_spec.rb +11 -11
data/spec/arachni/data/session_spec.rb +6 -6
data/spec/arachni/data_spec.rb +8 -8
data/spec/arachni/element/body_spec.rb +10 -10
data/spec/arachni/element/capabilities/analyzable/differential_spec.rb +39 -21
data/spec/arachni/element/capabilities/analyzable/{taint_spec.rb → signature_spec.rb} +63 -63
data/spec/arachni/element/capabilities/analyzable/timeout_spec.rb +51 -51
data/spec/arachni/element/capabilities/with_scope/scope_spec.rb +5 -5
data/spec/arachni/element/cookie/dom_spec.rb +37 -18
data/spec/arachni/element/cookie_spec.rb +206 -139
data/spec/arachni/element/form/dom_spec.rb +36 -19
data/spec/arachni/element/form_spec.rb +210 -187
data/spec/arachni/element/generic_dom_spec.rb +14 -14
data/spec/arachni/element/header_spec.rb +35 -17
data/spec/arachni/element/json_spec.rb +53 -31
data/spec/arachni/element/link/dom_spec.rb +46 -28
data/spec/arachni/element/link_spec.rb +58 -40
data/spec/arachni/element/link_template/dom_spec.rb +47 -29
data/spec/arachni/element/link_template_spec.rb +79 -61
data/spec/arachni/element/path_spec.rb +1 -1
data/spec/arachni/element/server_spec.rb +33 -32
data/spec/arachni/element/ui_form/ui_form_dom_spec.rb +164 -0
data/spec/arachni/element/ui_form_spec.rb +242 -0
data/spec/arachni/element/ui_input/dom_spec.rb +157 -0
data/spec/arachni/element/ui_input_spec.rb +136 -0
data/spec/arachni/element/xml_spec.rb +42 -24
data/spec/arachni/element_filter_spec.rb +49 -48
data/spec/arachni/error_spec.rb +3 -3
data/spec/arachni/framework/parts/audit_spec.rb +64 -63
data/spec/arachni/framework/parts/browser_spec.rb +16 -16
data/spec/arachni/framework/parts/check_spec.rb +3 -3
data/spec/arachni/framework/parts/data_spec.rb +48 -48
data/spec/arachni/framework/parts/platform_spec.rb +3 -3
data/spec/arachni/framework/parts/plugin_spec.rb +7 -6
data/spec/arachni/framework/parts/report_spec.rb +7 -7
data/spec/arachni/framework/parts/scope_spec.rb +16 -16
data/spec/arachni/framework/parts/state_spec.rb +68 -69
data/spec/arachni/framework_spec.rb +39 -31
data/spec/arachni/http/client/dynamic_404_handlers_spec.rb +32 -32
data/spec/arachni/http/client_spec.rb +219 -208
data/spec/arachni/http/cookie_jar_spec.rb +72 -72
data/spec/arachni/http/headers_spec.rb +14 -14
data/spec/arachni/http/proxy_server_spec.rb +43 -42
data/spec/arachni/http/request_spec.rb +105 -103
data/spec/arachni/http/response/scope_spec.rb +24 -24
data/spec/arachni/http/response_spec.rb +50 -49
data/spec/arachni/issue/severity_spec.rb +10 -9
data/spec/arachni/issue_spec.rb +71 -369
data/spec/arachni/option_groups/audit_spec.rb +114 -114
data/spec/arachni/option_groups/browser_cluster_spec.rb +20 -3
data/spec/arachni/option_groups/datastore_spec.rb +6 -6
data/spec/arachni/option_groups/dispatcher_spec.rb +19 -19
data/spec/arachni/option_groups/http_spec.rb +11 -11
data/spec/arachni/option_groups/input_spec.rb +31 -27
data/spec/arachni/option_groups/output_spec.rb +2 -2
data/spec/arachni/option_groups/paths_spec.rb +17 -17
data/spec/arachni/option_groups/rpc_spec.rb +2 -2
data/spec/arachni/option_groups/scope_spec.rb +40 -40
data/spec/arachni/option_groups/session_spec.rb +6 -5
data/spec/arachni/option_groups/snapshot_spec.rb +4 -4
data/spec/arachni/options_spec.rb +46 -45
data/spec/arachni/page/dom/transition_spec.rb +74 -72
data/spec/arachni/page/dom_spec.rb +35 -35
data/spec/arachni/page/scope_spec.rb +15 -15
data/spec/arachni/page_spec.rb +217 -217
data/spec/arachni/parser_spec.rb +106 -104
data/spec/arachni/platform/fingerprinter_spec.rb +17 -14
data/spec/arachni/platform/list_spec.rb +33 -33
data/spec/arachni/platform/manager_spec.rb +67 -64
data/spec/arachni/plugin/base_spec.rb +10 -10
data/spec/arachni/plugin/manager_spec.rb +38 -37
data/spec/arachni/report_spec.rb +43 -40
data/spec/arachni/reporter/base_spec.rb +15 -15
data/spec/arachni/reporter/manager_spec.rb +4 -4
data/spec/arachni/reporter/options_spec.rb +6 -6
data/spec/arachni/rpc/client/base_spec.rb +6 -6
data/spec/arachni/rpc/client/dispatcher_spec.rb +2 -2
data/spec/arachni/rpc/client/instance_spec.rb +6 -6
data/spec/arachni/rpc/server/active_options_spec.rb +11 -8
data/spec/arachni/rpc/server/base_spec.rb +5 -5
data/spec/arachni/rpc/server/checks/manager_spec.rb +8 -8
data/spec/arachni/rpc/server/dispatcher/node_spec.rb +37 -37
data/spec/arachni/rpc/server/dispatcher/service_spec.rb +15 -14
data/spec/arachni/rpc/server/dispatcher_spec.rb +36 -35
data/spec/arachni/rpc/server/framework/distributor_spec.rb +36 -36
data/spec/arachni/rpc/server/framework_multi_spec.rb +340 -336
data/spec/arachni/rpc/server/framework_spec.rb +90 -85
data/spec/arachni/rpc/server/instance_spec.rb +126 -107
data/spec/arachni/rpc/server/output_spec.rb +1 -1
data/spec/arachni/rpc/server/plugin/manager_spec.rb +6 -6
data/spec/arachni/ruby/array_spec.rb +42 -42
data/spec/arachni/ruby/hash_spec.rb +20 -18
data/spec/arachni/ruby/io_spec.rb +2 -2
data/spec/arachni/ruby/object_spec.rb +1 -1
data/spec/arachni/ruby/set_spec.rb +3 -3
data/spec/arachni/ruby/string_spec.rb +30 -30
data/spec/arachni/ruby/webrick_spec.rb +2 -2
data/spec/arachni/scope_spec.rb +1 -1
data/spec/arachni/session_spec.rb +67 -64
data/spec/arachni/snapshot_spec.rb +15 -15
data/spec/arachni/state/audit_spec.rb +11 -11
data/spec/arachni/state/element_filter_spec.rb +6 -6
data/spec/arachni/state/framework/rpc_spec.rb +12 -12
data/spec/arachni/state/framework_spec.rb +125 -121
data/spec/arachni/state/http_spec.rb +7 -7
data/spec/arachni/state/options_spec.rb +7 -7
data/spec/arachni/state/plugins_spec.rb +8 -8
data/spec/arachni/state_spec.rb +10 -10
data/spec/arachni/support/buffer/autoflush_spec.rb +16 -16
data/spec/arachni/support/buffer/base_spec.rb +39 -39
data/spec/arachni/support/cache/least_cost_replacement_spec.rb +18 -18
data/spec/arachni/support/cache/least_recently_pushed_spec.rb +24 -24
data/spec/arachni/support/cache/least_recently_used_spec.rb +20 -20
data/spec/arachni/support/cache/preference_spec.rb +4 -4
data/spec/arachni/support/cache/random_replacement_spec.rb +8 -8
data/spec/arachni/support/crypto/rsa_aes_cbc_spec.rb +1 -1
data/spec/arachni/support/database/hash_spec.rb +44 -43
data/spec/arachni/support/database/queue_spec.rb +27 -27
data/spec/arachni/support/lookup/hash_set_spec.rb +8 -8
data/spec/arachni/support/lookup/moolb_spec.rb +3 -3
data/spec/arachni/support/mixins/observable_spec.rb +6 -6
data/spec/arachni/support/signature_spec.rb +19 -19
data/spec/arachni/trainer_spec.rb +39 -39
data/spec/arachni/typhoeus/hydra_spec.rb +2 -2
data/spec/arachni/uri/scope_spec.rb +66 -66
data/spec/arachni/uri_spec.rb +107 -105
data/spec/arachni/utilities_spec.rb +40 -40
data/spec/components/checks/active/csrf_spec.rb +8 -8
data/spec/components/checks/active/no_sql_injection_spec.rb +1 -1
data/spec/components/checks/active/sql_injection_spec.rb +16 -16
data/spec/components/checks/active/trainer_spec.rb +4 -4
data/spec/components/checks/active/unvalidated_redirect_dom_spec.rb +4 -2
data/spec/components/checks/active/xpath_injection_spec.rb +1 -1
data/spec/components/checks/active/xss_dom_script_context_spec.rb +51 -21
data/spec/components/checks/active/xss_dom_spec.rb +46 -24
data/spec/components/checks/passive/allowed_methods_spec.rb +1 -1
data/spec/components/checks/passive/grep/cookie_set_for_parent_domain_spec.rb +1 -1
data/spec/components/checks/passive/grep/hsts_spec.rb +2 -2
data/spec/components/checks/passive/grep/http_only_cookies_spec.rb +1 -1
data/spec/components/checks/passive/grep/insecure_cookies_spec.rb +1 -1
data/spec/components/checks/passive/grep/insecure_cors_policy_spec.rb +2 -2
data/spec/components/checks/passive/grep/password_autocomplete_spec.rb +1 -1
data/spec/components/checks/passive/grep/private_ip_spec.rb +3 -3
data/spec/components/checks/passive/grep/unencrypted_password_forms_spec.rb +1 -1
data/spec/components/checks/passive/grep/x_frame_options_spec.rb +2 -2
data/spec/components/checks/passive/interesting_responses_spec.rb +2 -2
data/spec/components/checks/passive/webdav_spec.rb +1 -1
data/spec/components/checks/passive/xst_spec.rb +1 -1
data/spec/components/fingerprinters/servers/apache_spec.rb +2 -2
data/spec/components/path_extractors/comments_spec.rb +5 -1
data/spec/components/path_extractors/scripts_spec.rb +5 -2
data/spec/components/plugins/autologin_spec.rb +22 -22
data/spec/components/plugins/autothrottle_spec.rb +6 -5
data/spec/components/plugins/content_types_spec.rb +4 -4
data/spec/components/plugins/cookie_collector_spec.rb +5 -5
data/spec/components/plugins/exec_spec.rb +12 -12
data/spec/components/plugins/form_dicattack_spec.rb +3 -3
data/spec/components/plugins/headers_collector_spec.rb +8 -8
data/spec/components/plugins/healthmap_spec.rb +3 -3
data/spec/components/plugins/http_dicattack_spec.rb +3 -3
data/spec/components/plugins/login_script_spec.rb +79 -22
data/spec/components/plugins/meta/remedies/discovery_spec.rb +3 -2
data/spec/components/plugins/meta/remedies/timing_attacks_spec.rb +3 -3
data/spec/components/plugins/meta/uniformity_spec.rb +2 -2
data/spec/components/plugins/restrict_to_dom_state_spec.rb +1 -1
data/spec/components/plugins/script_spec.rb +1 -1
data/spec/components/plugins/uncommon_headers_spec.rb +2 -2
data/spec/components/plugins/vector_collector_spec.rb +2 -2
data/spec/components/plugins/vector_feed_spec.rb +40 -40
data/spec/components/plugins/waf_detector_spec.rb +6 -6
data/spec/components/reporters/json_spec.rb +4 -4
data/spec/components/reporters/marshal_spec.rb +2 -2
data/spec/components/reporters/yaml_spec.rb +3 -2
data/spec/external/wavsep/active/sqli_spec.rb +1 -3
data/spec/spec_helper.rb +4 -0
data/spec/support/factories/element/ui_form.rb +14 -0
data/spec/support/factories/element/ui_input.rb +13 -0
data/spec/support/factories/issue.rb +0 -13
data/spec/support/fixtures/report.afr +0 -0
data/spec/support/fixtures/{taint_check/taint.rb → signature_check/signature.rb} +2 -2
data/spec/support/helpers/browser_cluster/jobs/taint_tracer.rb +11 -11
data/spec/support/helpers/framework.rb +1 -1
data/spec/support/helpers/pages.rb +2 -2
data/spec/support/servers/arachni/browser.rb +139 -0
data/spec/support/servers/arachni/browser/javascript/taint_tracer.rb +40 -0
data/spec/support/servers/arachni/element/capabilities/analyzable/{taint.rb → signature.rb} +0 -0
data/spec/support/servers/arachni/element/input/input_dom.rb +102 -0
data/spec/support/servers/arachni/element/ui_form/ui_form_dom.rb +238 -0
data/spec/support/servers/checks/active/trainer_check.rb +7 -7
data/spec/support/servers/checks/active/unvalidated_redirect_dom.rb +22 -6
data/spec/support/servers/checks/active/xss_dom.rb +50 -0
data/spec/support/servers/checks/active/xss_dom_script_context.rb +53 -0
data/spec/support/shared/browser/javascript/taint_tracer/sink/base.rb +6 -6
data/spec/support/shared/check.rb +10 -12
data/spec/support/shared/component/options/base.rb +24 -24
data/spec/support/shared/element/base.rb +25 -25
data/spec/support/shared/element/capabilities/auditable.rb +116 -140
data/spec/support/shared/element/capabilities/dom_only.rb +65 -0
data/spec/support/shared/element/capabilities/inputtable.rb +71 -86
data/spec/support/shared/element/capabilities/mutable.rb +122 -111
data/spec/support/shared/element/capabilities/refreshable.rb +10 -10
data/spec/support/shared/element/capabilities/{submitable.rb → submittable.rb} +26 -26
data/spec/support/shared/element/capabilities/with_auditor.rb +10 -10
data/spec/support/shared/element/capabilities/with_dom.rb +8 -8
data/spec/support/shared/element/capabilities/with_node.rb +4 -6
data/spec/support/shared/element/capabilities/with_scope.rb +2 -2
data/spec/support/shared/element/capabilities/with_source.rb +6 -8
data/spec/support/shared/element/dom.rb +144 -0
data/spec/support/shared/element/dom/auditable.rb +42 -0
data/spec/support/shared/element/dom/inputtable.rb +5 -0
data/spec/support/shared/element/dom/mutable.rb +3 -0
data/spec/support/shared/element/dom/submittable.rb +119 -0
data/spec/support/shared/external/wavsep.rb +3 -3
data/spec/support/shared/fingerprinter.rb +2 -2
data/spec/support/shared/framework.rb +1 -1
data/spec/support/shared/http/message.rb +9 -9
data/spec/support/shared/option_group.rb +17 -17
data/spec/support/shared/path_extractor.rb +1 -1
data/spec/support/shared/plugin.rb +2 -2
data/spec/support/shared/support/cache.rb +57 -57
data/spec/support/shared/support/lookup.rb +25 -25
data/ui/cli/framework.rb +22 -11
data/ui/cli/framework/option_parser.rb +15 -0
data/ui/cli/option_parser.rb +8 -1
data/ui/cli/output.rb +2 -1
metadata +54 -20
data/components/checks/active/xss_dom_inputs.rb +0 -236
data/spec/components/checks/active/xss_dom_inputs_spec.rb +0 -30
data/spec/support/servers/checks/active/xss_dom_inputs.rb +0 -59
data/spec/support/shared/element/capabilities/auditable/dom.rb +0 -322

data/components/reporters/html/default/issue/info.erb CHANGED

@@ -3,7 +3,7 @@
 %>
 <%= erb 'issue/remarks.erb', issue: issue %>
-<%= erb 'issue/platform.erb', issue: parent_issue %>
+<%= erb 'issue/platform.erb', issue: issue %>
 <% if (issue.vector.respond_to?(:seed) && issue.vector.seed) || issue.signature || issue.proof %>
 <table class="table table-condensed table-fixed">

data/components/reporters/html/default/summary/issues/by_name.erb CHANGED

@@ -38,7 +38,7 @@
                                 </th>
                             <% end %>
-                            <% if group.first.variations.first.request %>
+                            <% if group.first.request %>
                                 <th>
                                     HTTP method
                                 </th>
@@ -69,9 +69,9 @@
                                     </td>
                                 <% end %>
-                                <% if issue.variations.first.request %>
+                                <% if issue.request %>
                                     <td>
-                                        <code><%= issue.variations.first.request.method.to_s.upcase %></code>
+                                        <code><%= issue.request.method.to_s.upcase %></code>
                                     </td>
                                 <% end %>

data/components/reporters/stdout.rb CHANGED

@@ -10,7 +10,6 @@
 # All UIs must have a default report.
 #
 # @author Tasos "Zapotek" Laskos <tasos.laskos@arachni-scanner.com>
-# @version 0.3.1
 class Arachni::Reporters::Stdout < Arachni::Reporter::Base
     def run
@@ -42,12 +41,14 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
         print_info "User agent: #{report.options[:http][:user_agent]}"
         print_line
         print_status 'Audited elements: '
-        print_info '* Links'    if report.options[:audit][:links]
-        print_info '* Forms'    if report.options[:audit][:forms]
-        print_info '* Cookies'  if report.options[:audit][:cookies]
-        print_info '* Headers'  if report.options[:audit][:headers]
-        print_info '* XMLs'     if report.options[:audit][:xmls]
-        print_info '* JSONs'    if report.options[:audit][:jsons]
+        print_info '* Links'     if report.options[:audit][:links]
+        print_info '* Forms'     if report.options[:audit][:forms]
+        print_info '* Cookies'   if report.options[:audit][:cookies]
+        print_info '* Headers'   if report.options[:audit][:headers]
+        print_info '* XMLs'      if report.options[:audit][:xmls]
+        print_info '* JSONs'     if report.options[:audit][:jsons]
+        print_info '* UI inputs' if report.options[:audit][:ui_inputs]
+        print_info '* UI forms'  if report.options[:audit][:ui_forms]
         print_line
         print_status "Checks: #{report.options[:checks].join( ', ' )}"
@@ -97,33 +98,20 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
         print_line
         report.issues.each_with_index do |issue, i|
-            print_ok "[#{i+1}] #{issue.name}"
+            trusted = issue.trusted? ? 'Trusted' : 'Untrusted'
+            print_ok "[#{i+1}] #{issue.name} (#{trusted})"
             print_info '~~~~~~~~~~~~~~~~~~~~'
             print_info "Digest:     #{issue.digest}"
             print_info "Severity:   #{issue.severity.to_s.capitalize}"
-            print_line
-            print_info "URL:        #{issue.vector.action}"
-            print_info "Element:    #{issue.vector.type}"
-            if issue.active?
-                print_info "Method:     #{issue.vector.method.to_s.upcase}"
-                print_info "Input name: #{issue.affected_input_name}"
-            end
-            if issue.vector.respond_to? :inputs
-                print_info "All inputs: #{issue.vector.inputs.keys.join(', ')}"
-            end
-            print_line
-            print_info "Tags: #{issue.tags.join(', ')}" if issue.tags.is_a?( Array )
-            print_line
             print_info 'Description: '
             print_info issue.description
+            print_info "Tags: #{issue.tags.join(', ')}" if issue.tags.is_a?( Array )
             if issue.cwe_url
                 print_line
-                print_info issue.cwe_url
+                print_info "CWE: #{issue.cwe_url}"
             end
             if issue.references
@@ -131,7 +119,20 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
                 issue.references.each{ |ref| print_info "  #{ref[0]} - #{ref[1]}" }
             end
-            print_info_variations issue
+            print_line
+            print_info "URL:        #{issue.vector.action}"
+            print_info "Element:    #{issue.vector.type}"
+            if issue.vector.respond_to? :inputs
+                print_info "All inputs: #{issue.vector.inputs.keys.join(', ')}"
+            end
+            if issue.active?
+                print_info "Method:     #{issue.vector.method.to_s.upcase}"
+                print_info "Input name: #{issue.affected_input_name}"
+            end
+            print_info_issue_details issue
             print_line
         end
@@ -154,61 +155,51 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
         end
     end
-    def print_info_variations( issue )
+    def print_info_issue_details( issue )
         print_line
-        print_status 'Variations'
-        print_info '----------'
-        issue.variations.each_with_index do |var, i|
-            print_line
-            trusted = var.trusted? ? 'Trusted' : 'Untrusted'
-            print_info "Variation #{i+1} (#{trusted}):"
-            if var.active?
-                if var.vector.respond_to? :seed
-                    print_info "Seed:      #{var.vector.seed.inspect}"
-                end
-                print_info "Injected:  #{var.vector.affected_input_value.inspect}"
+        if issue.active?
+            if issue.vector.respond_to? :seed
+                print_info "Seed:      #{issue.vector.seed.inspect}"
             end
-            print_info "Signature: #{var.signature}"     if var.signature
-            print_info "Proof:     #{var.proof.inspect}" if var.proof
+            print_info "Injected:  #{issue.vector.affected_input_value.inspect}"
+        end
-            print_line
-            print_info "Referring page: #{var.referring_page.dom.url}"
-            if var.referring_page.dom.transitions.any?
-                print_info 'DOM transitions:'
-                var.referring_page.dom.print_transitions( method(:print_info), '    ' )
-            end
+        print_info "Signature: #{issue.signature}"     if issue.signature
+        print_info "Proof:     #{issue.proof.inspect}" if issue.proof
-            print_line
-            print_info "Affected page:  #{var.page.dom.url}"
+        print_line
+        print_info "Referring page: #{issue.referring_page.dom.url}"
+        if issue.referring_page.dom.transitions.any?
+            print_info 'DOM transitions:'
+            issue.referring_page.dom.print_transitions( method(:print_info), '    ' )
+        end
-            if !var.request.to_s.empty?
-                print_info "HTTP request\n#{var.request}"
-            end
+        print_line
+        print_info "Affected page:  #{issue.page.dom.url}"
-            if var.page.dom.transitions.any?
-                print_info 'DOM transitions:'
-                var.page.dom.print_transitions( method(:print_info), '    ' )
-            end
+        if !issue.request.to_s.empty?
+            print_info "HTTP request\n#{issue.request}"
+        end
-            next if var.remarks.empty?
+        if issue.page.dom.transitions.any?
+            print_info 'DOM transitions:'
+            issue.page.dom.print_transitions( method(:print_info), '    ' )
+        end
-            print_line
-            print_info 'Remarks'
-            print_info '-------'
-            var.remarks.each do |logger, remarks|
-                print_info "  By #{logger}:"
-                remarks.each do |remark|
-                    print_info "    *  #{word_wrap remark}"
-                end
-            end
+        return if issue.remarks.empty?
-            print_line
+        print_line
+        print_info 'Remarks'
+        print_info '-------'
+        issue.remarks.each do |logger, remarks|
+            print_info "  By #{logger}:"
+            remarks.each do |remark|
+                print_info "    *  #{word_wrap remark}"
+            end
         end
+        print_line
     end
     # Stolen from Rails.
@@ -225,7 +216,7 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
             name:        'Stdout',
             description: %q{Prints the results to standard output.},
             author:      'Tasos "Zapotek" Laskos <tasos.laskos@arachni-scanner.com>',
-            version:     '0.3.1'
+            version:     '0.3.2'
         }
     end

data/components/reporters/xml.rb CHANGED

@@ -73,60 +73,46 @@ class Arachni::Reporters::XML < Arachni::Reporter::Base
                                     xml.source vector.source
                                 end
+                                if vector.respond_to? :seed
+                                    xml.seed vector.seed
+                                end
                                 if issue.active?
                                     xml.method_ vector.method
                                 end
-                                if issue.variations.first.vector.respond_to? :affected_input_name
-                                    xml.affected_input_name issue.variations.first.vector.affected_input_name
+                                if vector.respond_to? :affected_input_name
+                                    xml.affected_input_name vector.affected_input_name
                                 end
                                 if vector.respond_to? :inputs
                                     add_inputs( xml, vector.inputs )
                                 end
-                            }
-                            xml.variations {
-                                issue.variations.each do |variation|
-                                    xml.variation {
-                                        vector = variation.vector
-                                        xml.vector {
-                                            if issue.active?
-                                                xml.method_ vector.method
-                                            end
-                                            if vector.respond_to? :seed
-                                                xml.seed vector.seed
-                                            end
-                                            if vector.respond_to? :inputs
-                                                add_inputs( xml, vector.inputs )
-                                            end
-                                        }
+                                if vector.respond_to? :default_inputs
+                                    add_inputs( xml, vector.default_inputs, :default_inputs  )
+                                end
+                            }
-                                        xml.remarks {
-                                            variation.remarks.each do |commenter, remarks|
-                                                remarks.each do |remark|
-                                                    xml.remark {
-                                                        xml.commenter commenter
-                                                        xml.text_ remark
-                                                    }
-                                                end
-                                            end
+                            xml.remarks {
+                                issue.remarks.each do |commenter, remarks|
+                                    remarks.each do |remark|
+                                        xml.remark {
+                                            xml.commenter commenter
+                                            xml.text_ remark
                                         }
-                                        add_page( xml, variation.page )
-                                        add_page( xml, variation.referring_page, :referring_page )
-                                        xml.signature variation.signature
-                                        xml.proof variation.proof
-                                        xml.trusted variation.trusted
-                                        xml.platform_type variation.platform_type
-                                        xml.platform_name variation.platform_name
-                                    }
+                                    end
                                 end
                             }
+                            add_page( xml, issue.page )
+                            add_page( xml, issue.referring_page, :referring_page )
+                            xml.signature issue.signature
+                            xml.proof issue.proof
+                            xml.trusted issue.trusted
+                            xml.platform_type issue.platform_type
+                            xml.platform_name issue.platform_name
                         }
                     end
                 }

data/components/reporters/xml/schema.xsd CHANGED

@@ -387,10 +387,6 @@
         </xs:sequence>
     </xs:complexType>
-    <!--
-        Holds generic information about the logged issue, while providing
-        details as "issuevariations" via the "variations" attribute.
-    -->
     <xs:complexType name="issue">
         <xs:all>
             <xs:element name="name" type="xs:string"/>
@@ -403,8 +399,45 @@
             <xs:element name="cwe" type="xs:integer" minOccurs="0"/>
             <xs:element name="vector" type="vector"/>
             <xs:element name="digest" type="xs:integer"/>
-            <xs:element name="variations" type="issuevariations"/>
             <xs:element name="check" type="check"/>
+            <!--
+                Page which displays the logged issue.
+            -->
+            <xs:element name="page" type="page"/>
+            <xs:element name="referring_page" type="page"/>
+            <!--
+                Signature used to identify the issue. Its match will be the
+                "proof".
+            -->
+            <xs:element name="signature" type="xs:string" minOccurs="0"/>
+            <!--
+                String proving the existence of the issue.
+            -->
+            <xs:element name="proof" type="xs:string"/>
+            <!--
+                Some issues may be logged even though the system doesn't
+                have 100% confidence in them, in that case they will be
+                marked as not trusted.
+            -->
+            <xs:element name="trusted" type="xs:boolean"/>
+            <xs:element name="remarks" type="remarks"/>
+            <!--
+                Type of the platform affected by this issue.
+                "db", "os", etc.
+            -->
+            <xs:element name="platform_type" type="xs:string"/>
+            <!--
+                Name of the platform affected by this issue.
+                "mysql", "linux", etc.
+            -->
+            <xs:element name="platform_name" type="xs:string"/>
         </xs:all>
     </xs:complexType>
@@ -421,18 +454,6 @@
         </xs:all>
     </xs:complexType>
-    <!--
-        Issues have 1 or more variations.
-        Currently, active checks only have 1 variation while passive ones
-        can have multiple.
-    -->
-    <xs:complexType name="issuevariations">
-        <xs:sequence>
-            <xs:element name="variation" type="issuevariation"
-                        minOccurs="1" maxOccurs="unbounded"/>
-        </xs:sequence>
-    </xs:complexType>
     <!--
         Input vector information, in essence, the element affected
         by the logged issue.
@@ -481,56 +502,11 @@
             <xs:element name="affected_input_name" type="xs:string"
                         minOccurs="0"/>
+            <xs:element name="default_inputs" type="inputs" minOccurs="0"/>
             <xs:element name="inputs" type="inputs" minOccurs="0"/>
-        </xs:all>
-    </xs:complexType>
-    <!--
-        Details about the logged issue, each variation represents a
-        situation where the same issue has been identified albeit in
-        different ways.
-    -->
-    <xs:complexType name="issuevariation">
-        <xs:all>
-            <xs:element name="vector" type="variationvector"/>
-            <!--
-                Page which displays the logged issue.
-            -->
-            <xs:element name="page" type="page"/>
-            <xs:element name="referring_page" type="page"/>
-            <!--
-                Signature used to identify the issue. Its match will be the
-                "proof".
-            -->
-            <xs:element name="signature" type="xs:string" minOccurs="0"/>
-            <!--
-                String proving the existence of the issue.
-            -->
-            <xs:element name="proof" type="xs:string"/>
-            <!--
-                Some issues may be logged even though the system doesn't
-                have 100% confidence in them, in that case they will be
-                marked as not trusted.
-            -->
-            <xs:element name="trusted" type="xs:boolean"/>
-            <xs:element name="remarks" type="remarks"/>
-            <!--
-                Type of the platform affected by this issue.
-                "db", "os", etc.
-            -->
-            <xs:element name="platform_type" type="xs:string"/>
-            <!--
-                Name of the platform affected by this issue.
-                "mysql", "linux", etc.
-            -->
-            <xs:element name="platform_name" type="xs:string"/>
+            <xs:element name="seed" type="xs:string" minOccurs="0"
+                        maxOccurs="1"/>
         </xs:all>
     </xs:complexType>
@@ -576,30 +552,6 @@
         </xs:all>
     </xs:complexType>
-    <!--
-        This is details on the state of the logged vector when
-        an "issuevariation" was identified.
-        Merged with "vector" it forms the full vector mutation.
-    -->
-    <xs:complexType name="variationvector">
-        <xs:sequence>
-            <!--
-                HTTP method used to submit the vector. Can be different
-                from the "vector" one because the fuzzed version could
-                have been submitted with a different method.
-            -->
-            <xs:element name="method" type="xs:string" minOccurs="0"
-                        maxOccurs="1"/>
-            <xs:element name="seed" type="xs:string" minOccurs="0"
-                        maxOccurs="1"/>
-            <xs:element name="inputs" type="inputs" minOccurs="0"
-                        maxOccurs="1"/>
-        </xs:sequence>
-    </xs:complexType>
     <xs:complexType name="page">
         <xs:all>
             <xs:element name="body" type="xs:string"/>
@@ -801,6 +753,8 @@
             <xs:enumeration value="Arachni::Element::GenericDOM" />
             <xs:enumeration value="Arachni::Element::JSON" />
             <xs:enumeration value="Arachni::Element::XML" />
+            <xs:enumeration value="Arachni::Element::UIForm::DOM" />
+            <xs:enumeration value="Arachni::Element::UIInput::DOM" />
         </xs:restriction>
     </xs:simpleType>