arachni 1.6.1 → 1.6.1.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +8 -0
- data/README.md +6 -1
- data/components/plugins/exec.rb +2 -2
- data/components/reporters/html/default/css/main.css +4 -0
- data/components/reporters/html/default.erb +6 -0
- data/components/reporters/stdout.rb +5 -0
- data/lib/version +1 -1
- data/logs/error-1821117.log +243 -0
- metadata +3 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 98a242080468df426489cea1c37dbc3420ee9b329f04b27fa03163cb8df49de3
|
4
|
+
data.tar.gz: 4afd4d3d17fcbd14fd57f5faec17f2fce8af7f87359de9a969be3b789d983568
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 444dc3e67802214b06dd71f6af65b1dc4a7a119e33b9295af381c54dc3723e6a0f6e3dc255452925c59151daf1fed90eafaac60818de26d8e8e43ed6ce9be5c9
|
7
|
+
data.tar.gz: 69fc119cc27759c4a604293428e954f9d7a85c67503ff0705202ffb12856a6d7dfedec71ae2a2046fe42f206aa13b4b1f737562db776d2f74a7ca3cc5163383a
|
data/CHANGELOG.md
CHANGED
@@ -1,5 +1,13 @@
|
|
1
1
|
# ChangeLog
|
2
2
|
|
3
|
+
## 1.6.1.1 (May 3, 2022)
|
4
|
+
|
5
|
+
- Plugins
|
6
|
+
- `exec` -- Fixed error on empty option.
|
7
|
+
- Reporters
|
8
|
+
- `stdout` -- Inform of Arachni's obsolescence and its successor [Ecsypno SCNR](https://www.ecsypno.com/).
|
9
|
+
- `html` -- Inform of Arachni's obsolescence and its successor [Ecsypno SCNR](https://www.ecsypno.com/).
|
10
|
+
|
3
11
|
## 1.6.1 _(March 20, 2022)_
|
4
12
|
|
5
13
|
- `Browser#eelenium` -- Disable sandbox.
|
data/README.md
CHANGED
@@ -1,9 +1,14 @@
|
|
1
|
+
# Notice
|
2
|
+
|
3
|
+
Arachni is heading towards obsolescence, try out its next-gen successor
|
4
|
+
[Ecsypno](https://www.ecsypno.com/) [SCNR](https://ecsypno.com/scnr-documentation/)!
|
5
|
+
|
1
6
|
# Arachni - Web Application Security Scanner Framework
|
2
7
|
|
3
8
|
<table>
|
4
9
|
<tr>
|
5
10
|
<th>Version</th>
|
6
|
-
<td>1.6.1</td>
|
11
|
+
<td>1.6.1.1</td>
|
7
12
|
</tr>
|
8
13
|
<tr>
|
9
14
|
<th>Homepage</th>
|
data/components/plugins/exec.rb
CHANGED
@@ -51,7 +51,7 @@ class Arachni::Plugins::Exec < Arachni::Plugin::Base
|
|
51
51
|
end
|
52
52
|
|
53
53
|
def exec( stage )
|
54
|
-
return if
|
54
|
+
return if options[stage].to_s.empty?
|
55
55
|
|
56
56
|
if defined?( Arachni::RPC::Server::Framework ) &&
|
57
57
|
framework.is_a?( Arachni::RPC::Server::Framework )
|
@@ -135,7 +135,7 @@ Will result in:
|
|
135
135
|
_Will not work over RPC._
|
136
136
|
},
|
137
137
|
author: 'Tasos "Zapotek" Laskos <tasos.laskos@arachni-scanner.com>',
|
138
|
-
version: '0.1',
|
138
|
+
version: '0.1.1',
|
139
139
|
options: [
|
140
140
|
Options::String.new( :pre,
|
141
141
|
description: 'Executable to be called prior to the scan.'
|
@@ -38,6 +38,12 @@
|
|
38
38
|
</h1>
|
39
39
|
</div>
|
40
40
|
|
41
|
+
<div id="scnr-alert" class="alert alert-info">
|
42
|
+
Arachni is heading towards obsolescence, try out its
|
43
|
+
next-gen successor <a href="https://www.ecsypno.com/">Ecsypno</a>
|
44
|
+
<a href="https://ecsypno.com/scnr-documentation/">SCNR</a>!
|
45
|
+
</div>
|
46
|
+
|
41
47
|
<div class="tab-content">
|
42
48
|
<div class="tab-pane active" id="summary">
|
43
49
|
<%= erb :summary %>
|
@@ -154,6 +154,11 @@ class Arachni::Reporters::Stdout < Arachni::Reporter::Base
|
|
154
154
|
print_info "Description: #{report.plugins[name][:description]}"
|
155
155
|
print_line
|
156
156
|
end
|
157
|
+
|
158
|
+
print_line
|
159
|
+
print_info "Arachni is heading towards obsolescence, try out its next-gen successor Ecsypno SCNR:"
|
160
|
+
print_info " https://ecsypno.com/"
|
161
|
+
|
157
162
|
end
|
158
163
|
|
159
164
|
def print_info_issue_details( issue )
|
data/lib/version
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.6.1
|
1
|
+
1.6.1.1
|
@@ -0,0 +1,243 @@
|
|
1
|
+
|
2
|
+
2022-05-03 09:22:04 +0300 --------------------------------------------------------------------------------
|
3
|
+
ENV:
|
4
|
+
---
|
5
|
+
SHELL: "/bin/bash"
|
6
|
+
SESSION_MANAGER: local/ripper:@/tmp/.ICE-unix/23204,unix/ripper:/tmp/.ICE-unix/23204
|
7
|
+
WINDOWID: '54525959'
|
8
|
+
QT_ACCESSIBILITY: '1'
|
9
|
+
COLORTERM: truecolor
|
10
|
+
XDG_CONFIG_DIRS: "/home/zapotek/.config/kdedefaults:/etc/xdg/xdg-plasma:/etc/xdg:/usr/share/kubuntu-default-settings/kf5-settings"
|
11
|
+
XDG_SESSION_PATH: "/org/freedesktop/DisplayManager/Session3"
|
12
|
+
rvm_delete_flag: '0'
|
13
|
+
rvm_prefix: "/usr/share"
|
14
|
+
LANGUAGE: ''
|
15
|
+
LC_ADDRESS: el_GR.UTF-8
|
16
|
+
LC_NAME: el_GR.UTF-8
|
17
|
+
SSH_AUTH_SOCK: "/tmp/ssh-qnF3AgVJFYWd/agent.22776"
|
18
|
+
SHELL_SESSION_ID: 005d9ece3ee3418783dd5680a1d887d7
|
19
|
+
MY_RUBY_HOME: "/usr/share/rvm/rubies/ruby-2.7.5"
|
20
|
+
DESKTOP_SESSION: plasma
|
21
|
+
LC_MONETARY: el_GR.UTF-8
|
22
|
+
SSH_AGENT_PID: '22950'
|
23
|
+
GTK_RC_FILES: "/etc/gtk/gtkrc:/home/zapotek/.gtkrc:/home/zapotek/.config/gtkrc"
|
24
|
+
install_flag: '1'
|
25
|
+
XCURSOR_SIZE: '24'
|
26
|
+
RUBY_VERSION: ruby-2.7.5
|
27
|
+
XDG_SEAT: seat0
|
28
|
+
PWD: "/home/zapotek/workspace/arachni"
|
29
|
+
XDG_SESSION_DESKTOP: KDE
|
30
|
+
LOGNAME: zapotek
|
31
|
+
XDG_SESSION_TYPE: x11
|
32
|
+
rvm_version: 1.29.12 (manual)
|
33
|
+
rvm_pretty_print_flag: auto
|
34
|
+
GPG_AGENT_INFO: "/run/user/1000/gnupg/S.gpg-agent:0:1"
|
35
|
+
SYSTEMD_EXEC_PID: '2599'
|
36
|
+
XAUTHORITY: "/home/zapotek/.Xauthority"
|
37
|
+
GTK2_RC_FILES: "/etc/gtk-2.0/gtkrc:/home/zapotek/.gtkrc-2.0:/home/zapotek/.config/gtkrc-2.0"
|
38
|
+
HOME: "/home/zapotek"
|
39
|
+
IM_CONFIG_PHASE: '1'
|
40
|
+
LC_PAPER: el_GR.UTF-8
|
41
|
+
LANG: en_US.UTF-8
|
42
|
+
LS_COLORS: 'rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.webp=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:'
|
43
|
+
XDG_CURRENT_DESKTOP: KDE
|
44
|
+
KONSOLE_DBUS_SERVICE: ":1.110"
|
45
|
+
KONSOLE_DBUS_SESSION: "/Sessions/1"
|
46
|
+
PROFILEHOME: ''
|
47
|
+
XDG_SEAT_PATH: "/org/freedesktop/DisplayManager/Seat0"
|
48
|
+
KONSOLE_VERSION: '210801'
|
49
|
+
rvm_recommended_ruby: rvm install ruby-2.7.5
|
50
|
+
KDE_SESSION_UID: '1000'
|
51
|
+
rvm_bin_path: "/usr/share/rvm/bin"
|
52
|
+
GEM_PATH: "/usr/share/rvm/gems/ruby-2.7.5@arachni:/usr/share/rvm/gems/ruby-2.7.5@global"
|
53
|
+
GEM_HOME: "/usr/share/rvm/gems/ruby-2.7.5@arachni"
|
54
|
+
LESSCLOSE: "/usr/bin/lesspipe %s %s"
|
55
|
+
XDG_SESSION_CLASS: user
|
56
|
+
TERM: xterm-256color
|
57
|
+
LC_IDENTIFICATION: el_GR.UTF-8
|
58
|
+
LESSOPEN: "| /usr/bin/lesspipe %s"
|
59
|
+
USER: zapotek
|
60
|
+
COLORFGBG: 15;0
|
61
|
+
KDE_SESSION_VERSION: '5'
|
62
|
+
PAM_KWALLET5_LOGIN: "/run/user/1000/kwallet5.socket"
|
63
|
+
DISPLAY: ":0"
|
64
|
+
SHLVL: '1'
|
65
|
+
LC_TELEPHONE: el_GR.UTF-8
|
66
|
+
LC_MEASUREMENT: el_GR.UTF-8
|
67
|
+
XDG_VTNR: '1'
|
68
|
+
XDG_SESSION_ID: '9'
|
69
|
+
rvm_ruby_string: ruby-2.7.5
|
70
|
+
XDG_RUNTIME_DIR: "/run/user/1000"
|
71
|
+
LC_TIME: el_GR.UTF-8
|
72
|
+
QT_AUTO_SCREEN_SCALE_FACTOR: '0'
|
73
|
+
XCURSOR_THEME: breeze_cursors
|
74
|
+
XDG_DATA_DIRS: "/usr/share/plasma:/usr/local/share:/usr/share:/var/lib/snapd/desktop"
|
75
|
+
KDE_FULL_SESSION: 'true'
|
76
|
+
PATH: "/usr/share/rvm/gems/ruby-2.7.5@arachni/bin:/usr/share/rvm/gems/ruby-2.7.5@global/bin:/usr/share/rvm/rubies/ruby-2.7.5/bin:/usr/share/rvm/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin"
|
77
|
+
DBUS_SESSION_BUS_ADDRESS: unix:path=/run/user/1000/bus
|
78
|
+
KDE_APPLICATIONS_AS_SCOPE: '1'
|
79
|
+
IRBRC: "/usr/share/rvm/rubies/ruby-2.7.5/.irbrc"
|
80
|
+
rvm_path: "/usr/share/rvm"
|
81
|
+
LC_NUMERIC: el_GR.UTF-8
|
82
|
+
OLDPWD: "/home/zapotek/workspace/qadron/raktr"
|
83
|
+
_: "./bin/arachni_reporter"
|
84
|
+
BUNDLER_ORIG_BUNDLE_BIN_PATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
85
|
+
BUNDLER_ORIG_BUNDLE_GEMFILE: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
86
|
+
BUNDLER_ORIG_BUNDLER_VERSION: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
87
|
+
BUNDLER_ORIG_GEM_HOME: "/usr/share/rvm/gems/ruby-2.7.5@arachni"
|
88
|
+
BUNDLER_ORIG_GEM_PATH: "/usr/share/rvm/gems/ruby-2.7.5@arachni:/usr/share/rvm/gems/ruby-2.7.5@global"
|
89
|
+
BUNDLER_ORIG_MANPATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
90
|
+
BUNDLER_ORIG_PATH: "/usr/share/rvm/gems/ruby-2.7.5@arachni/bin:/usr/share/rvm/gems/ruby-2.7.5@global/bin:/usr/share/rvm/rubies/ruby-2.7.5/bin:/usr/share/rvm/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin"
|
91
|
+
BUNDLER_ORIG_RB_USER_INSTALL: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
92
|
+
BUNDLER_ORIG_RUBYLIB: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
93
|
+
BUNDLER_ORIG_RUBYOPT: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
|
94
|
+
BUNDLE_BIN_PATH: "/usr/share/rvm/rubies/ruby-2.7.5/lib/ruby/gems/2.7.0/gems/bundler-2.1.4/libexec/bundle"
|
95
|
+
BUNDLE_GEMFILE: "/home/zapotek/workspace/arachni/Gemfile"
|
96
|
+
BUNDLER_VERSION: 2.1.4
|
97
|
+
RUBYOPT: "-r/usr/share/rvm/rubies/ruby-2.7.5/lib/ruby/2.7.0/bundler/setup"
|
98
|
+
RUBYLIB: ''
|
99
|
+
MANPATH: "/usr/share/rvm/gems/ruby-2.7.5@arachni/gems/kramdown-2.3.1/man"
|
100
|
+
--------------------------------------------------------------------------------
|
101
|
+
OPTIONS:
|
102
|
+
---
|
103
|
+
datastore:
|
104
|
+
report_path:
|
105
|
+
scope:
|
106
|
+
directory_depth_limit: 10
|
107
|
+
auto_redundant_paths: 15
|
108
|
+
redundant_path_patterns: {}
|
109
|
+
dom_depth_limit: 4
|
110
|
+
exclude_file_extensions:
|
111
|
+
- gif
|
112
|
+
- bmp
|
113
|
+
- tif
|
114
|
+
- tiff
|
115
|
+
- jpg
|
116
|
+
- jpeg
|
117
|
+
- jpe
|
118
|
+
- pjpeg
|
119
|
+
- png
|
120
|
+
- ico
|
121
|
+
- psd
|
122
|
+
- xcf
|
123
|
+
- 3dm
|
124
|
+
- max
|
125
|
+
- svg
|
126
|
+
- eps
|
127
|
+
- drw
|
128
|
+
- ai
|
129
|
+
- asf
|
130
|
+
- rm
|
131
|
+
- mpg
|
132
|
+
- mpeg
|
133
|
+
- mpe
|
134
|
+
- 3gp
|
135
|
+
- 3g2
|
136
|
+
- avi
|
137
|
+
- flv
|
138
|
+
- mov
|
139
|
+
- mp4
|
140
|
+
- swf
|
141
|
+
- vob
|
142
|
+
- wmv
|
143
|
+
- aif
|
144
|
+
- mp3
|
145
|
+
- mpa
|
146
|
+
- ra
|
147
|
+
- wav
|
148
|
+
- wma
|
149
|
+
- mid
|
150
|
+
- m4a
|
151
|
+
- ogg
|
152
|
+
- flac
|
153
|
+
- zip
|
154
|
+
- zipx
|
155
|
+
- tar
|
156
|
+
- gz
|
157
|
+
- 7z
|
158
|
+
- rar
|
159
|
+
- bz2
|
160
|
+
- bin
|
161
|
+
- cue
|
162
|
+
- dmg
|
163
|
+
- iso
|
164
|
+
- mdf
|
165
|
+
- vcd
|
166
|
+
- raw
|
167
|
+
- exe
|
168
|
+
- apk
|
169
|
+
- app
|
170
|
+
- jar
|
171
|
+
- pkg
|
172
|
+
- deb
|
173
|
+
- rpm
|
174
|
+
- msi
|
175
|
+
- ttf
|
176
|
+
- otf
|
177
|
+
- woff
|
178
|
+
- woff2
|
179
|
+
- fon
|
180
|
+
- fnt
|
181
|
+
- css
|
182
|
+
- js
|
183
|
+
- pdf
|
184
|
+
- docx
|
185
|
+
- xlsx
|
186
|
+
- pptx
|
187
|
+
- odt
|
188
|
+
- odp
|
189
|
+
exclude_path_patterns: []
|
190
|
+
exclude_content_patterns: []
|
191
|
+
include_path_patterns: []
|
192
|
+
restrict_paths: []
|
193
|
+
extend_paths: []
|
194
|
+
url_rewrites: {}
|
195
|
+
input:
|
196
|
+
values: {}
|
197
|
+
default_values:
|
198
|
+
name: arachni_name
|
199
|
+
user: arachni_user
|
200
|
+
usr: arachni_user
|
201
|
+
pass: 5543!%arachni_secret
|
202
|
+
txt: arachni_text
|
203
|
+
num: '132'
|
204
|
+
amount: '100'
|
205
|
+
mail: arachni@email.gr
|
206
|
+
account: '12'
|
207
|
+
id: '1'
|
208
|
+
without_defaults: false
|
209
|
+
force: false
|
210
|
+
audit:
|
211
|
+
parameter_values: true
|
212
|
+
exclude_vector_patterns: []
|
213
|
+
include_vector_patterns: []
|
214
|
+
link_templates: []
|
215
|
+
browser_cluster:
|
216
|
+
local_storage: {}
|
217
|
+
session_storage: {}
|
218
|
+
wait_for_elements: {}
|
219
|
+
wait_for_timers: false
|
220
|
+
pool_size: 4
|
221
|
+
job_timeout: 60
|
222
|
+
worker_time_to_live: 250
|
223
|
+
ignore_images: false
|
224
|
+
screen_width: 1600
|
225
|
+
screen_height: 1200
|
226
|
+
http:
|
227
|
+
user_agent: Mozilla/5.0 (Gecko) Arachni/v1.6.1
|
228
|
+
request_timeout: 20000
|
229
|
+
request_redirect_limit: 5
|
230
|
+
request_concurrency: 10
|
231
|
+
request_queue_size: 50
|
232
|
+
request_headers: {}
|
233
|
+
response_max_size: 500000
|
234
|
+
cookies: {}
|
235
|
+
authentication_type: auto
|
236
|
+
session: {}
|
237
|
+
checks: []
|
238
|
+
platforms: []
|
239
|
+
plugins: {}
|
240
|
+
no_fingerprinting: false
|
241
|
+
authorized_by:
|
242
|
+
--------------------------------------------------------------------------------
|
243
|
+
[2022-05-03 09:22:04 +0300] [ui/cli/reporter/option_parser#validate:67] No report file provided.
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: arachni
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.6.1
|
4
|
+
version: 1.6.1.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Tasos Laskos
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-03
|
11
|
+
date: 2022-05-03 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: awesome_print
|
@@ -1050,6 +1050,7 @@ files:
|
|
1050
1050
|
- lib/arachni/utilities.rb
|
1051
1051
|
- lib/arachni/version.rb
|
1052
1052
|
- lib/version
|
1053
|
+
- logs/error-1821117.log
|
1053
1054
|
- logs/placeholder
|
1054
1055
|
- profiles/placeholder
|
1055
1056
|
- spec/arachni/browser/element_locator_spec.rb
|