cms_scanner 0.0.6 → 0.0.7

data/spec/app/models/headers_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::Headers do
-
   subject(:file) { described_class.new(url) }
   let(:url)      { 'http://example.com/' }
   let(:fixtures) { File.join(FIXTURES, 'interesting_files', 'headers') }

data/spec/app/models/interesting_file_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::InterestingFile do
-
   it_behaves_like CMSScanner::Finders::Finding
 
   subject(:file) { described_class.new(url, opts) }
@@ -47,5 +46,4 @@ describe CMSScanner::InterestingFile do
       end
     end
   end
-
 end

data/spec/app/models/robots_txt_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::RobotsTxt do
-
   subject(:file) { described_class.new(url) }
   let(:url)      { 'http://example.com/robots.txt' }
   let(:fixtures) { File.join(FIXTURES, 'interesting_files', 'robots_txt') }

data/spec/app/models/version_spec.rb

@@ -0,0 +1,23 @@
+require 'spec_helper'
+
+describe CMSScanner::Version do
+  it_behaves_like CMSScanner::Finders::Finding
+
+  subject(:version) { described_class.new(number, opts) }
+  let(:opts)        { {} }
+  let(:number)      { '1.0' }
+
+  describe '#==' do
+    context 'when same @number' do
+      it 'returns true' do
+        expect(version == described_class.new(number)).to be true
+      end
+    end
+
+    context 'when not the same @number' do
+      it 'returns false' do
+        expect(version == described_class.new('3.0')).to be false
+      end
+    end
+  end
+end

data/spec/app/models/xml_rpc_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::XMLRPC do
-
   subject(:xml_rpc) { described_class.new(url) }
   let(:url)      { 'http://example.com/xmlrpc' }
 

data/spec/app/views_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe 'App::Views' do
-
   let(:target_url) { 'http://ex.lo/' }
   let(:fixtures)   { File.join(SPECS, 'output') }
 
@@ -9,7 +8,6 @@ describe 'App::Views' do
   # in the expected output.
   [:JSON, :CliNoColour].each do |formatter|
     context "when #{formatter}" do
-
       it_behaves_like 'App::Views::Core'
       it_behaves_like 'App::Views::InterestingFiles'
 

data/spec/dummy_finding.rb

@@ -0,0 +1,21 @@
+module CMSScanner
+  # Dummy Finding
+  class DummyFinding
+    include Finders::Finding
+
+    attr_reader :r
+
+    def initialize(r, opts = {})
+      @r = r
+      parse_finding_options(opts)
+    end
+
+    def ==(other)
+      r == other.r
+    end
+
+    def eql?(other)
+      r == other.r && confidence == other.confidence && found_by == other.found_by
+    end
+  end
+end

data/spec/dummy_independent_finders.rb

@@ -0,0 +1,25 @@
+require 'dummy_finding'
+
+module CMSScanner
+  module Finders
+    module Independent
+      # Dummy Test Finder
+      class DummyFinder < Finder
+        def passive(_opts = {})
+          DummyFinding.new('test', found_by: found_by)
+        end
+
+        def aggressive(_opts = {})
+          DummyFinding.new('test', confidence: 100, found_by: 'override')
+        end
+      end
+
+      # No aggressive result finder
+      class NoAggressiveResult < Finder
+        def passive(_opts = {})
+          DummyFinding.new('spotted', confidence: 10, found_by: found_by)
+        end
+      end
+    end
+  end
+end

data/spec/dummy_unique_finders.rb

@@ -0,0 +1,32 @@
+require 'dummy_finding'
+
+module CMSScanner
+  module Finders
+    module Unique
+      # Dummy Test Finder
+      class Dummy < Finder
+        def passive(_opts = {})
+          DummyFinding.new('v1', found_by: found_by)
+        end
+
+        def aggressive(_opts = {})
+          DummyFinding.new('v1', confidence: 100, found_by: 'override')
+        end
+      end
+
+      # No aggressive result
+      class NoAggressive < Finder
+        def passive(_opts = {})
+          DummyFinding.new('v2', confidence: 10, found_by: found_by)
+        end
+      end
+
+      # Dummy2
+      class Dummy2 < Finder
+        def aggressive(_opts = {})
+          DummyFinding.new('v1', confidence: 90)
+        end
+      end
+    end
+  end
+end

data/spec/lib/browser_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::Browser do
-
   it_behaves_like described_class::Actions
 
   subject(:browser) { described_class.instance(options) }

data/spec/lib/cache/file_store_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::Cache::FileStore do
-
   let(:cache_dir) { File.join(CACHE, 'cache_file_store') }
   subject(:cache) { described_class.new(cache_dir) }
 

data/spec/lib/cache/typhoeus_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::Cache::Typhoeus do
-
   subject(:cache) { described_class.new(cache_dir) }
 
   let(:cache_dir) { File.join(CACHE, 'typhoeus_cache') }
@@ -26,5 +25,4 @@ describe CMSScanner::Cache::Typhoeus do
       cache.set(request, response)
     end
   end
-
 end

data/spec/lib/cms_scanner_spec.rb

@@ -12,7 +12,6 @@ module CMSScanner
 end
 
 describe CMSScanner::Scan do
-
   subject(:scanner) { described_class.new }
   let(:controller)  { CMSScanner::Controller }
 

data/spec/lib/controller_spec.rb

@@ -1,7 +1,6 @@
 require 'spec_helper'
 
 describe CMSScanner::Controller do
-
   subject(:controller) { described_class::Base.new }
 
   context 'when parsed_options' do
@@ -20,5 +19,4 @@ describe CMSScanner::Controller do
       end
     end
   end
-
 end

data/spec/lib/controllers_spec.rb

@@ -8,7 +8,6 @@ module CMSScanner
 end
 
 describe CMSScanner::Controllers do
-
   subject(:controllers)  { described_class.new }
   let(:controller_mod) { CMSScanner::Controller }
 
@@ -46,5 +45,4 @@ describe CMSScanner::Controllers do
       controllers.run
     end
   end
-
 end

data/spec/lib/finders/findings_spec.rb

@@ -1,8 +1,7 @@
 require 'spec_helper'
-require 'dummy_finders'
+require 'dummy_finding'
 
 describe CMSScanner::Finders::Findings do
-
   subject(:findings) { described_class.new }
   let(:dummy)        { CMSScanner::DummyFinding }
 
@@ -45,5 +44,4 @@ describe CMSScanner::Finders::Findings do
       @expected = %w(test1 test2)
     end
   end
-
 end

data/spec/lib/finders/independent_finders_spec.rb

@@ -1,8 +1,7 @@
 require 'spec_helper'
-require 'dummy_finders'
+require 'dummy_independent_finders'
 
 describe CMSScanner::Finders::IndependentFinders do
-
   subject(:finders) { described_class.new }
 
   describe '#run' do
@@ -18,11 +17,11 @@ describe CMSScanner::Finders::IndependentFinders do
 
     before do
       finders <<
-        CMSScanner::Finders::DummyFinder.new(target) <<
-        CMSScanner::Finders::NoAggressiveResult.new(target)
+        CMSScanner::Finders::Independent::DummyFinder.new(target) <<
+        CMSScanner::Finders::Independent::NoAggressiveResult.new(target)
     end
 
-    describe 'method call orders' do
+    describe 'method calls order' do
       after { finders.run(mode: mode) }
 
       [:passive, :aggressive].each do |current_mode|
@@ -130,5 +129,4 @@ describe CMSScanner::Finders::IndependentFinders do
       expect(finders.findings).to be_a CMSScanner::Finders::Findings
     end
   end
-
 end

data/spec/lib/finders/unique_finder_spec.rb

@@ -0,0 +1,24 @@
+require 'spec_helper'
+
+module CMSScanner
+  module Finders
+    # Dummy Class to test the module
+    class VersionFinderSpec
+      include UniqueFinder
+
+      def initialize(_target)
+      end
+    end
+  end
+end
+
+describe CMSScanner::Finders::VersionFinderSpec do
+  it_behaves_like CMSScanner::Finders::IndependentFinder do
+    let(:expected_finders) { [] }
+    let(:expected_finders_class) { CMSScanner::Finders::UniqueFinders }
+  end
+
+  subject(:version) { described_class.new(target) }
+  let(:target)      { CMSScanner::Target.new(url) }
+  let(:url)         { 'http://example.com/' }
+end

data/spec/lib/finders/unique_finders_spec.rb

@@ -0,0 +1,133 @@
+require 'spec_helper'
+require 'dummy_unique_finders'
+
+describe CMSScanner::Finders::UniqueFinders do
+  subject(:finders) { described_class.new }
+
+  describe '#run' do
+    let(:target)         { 'target' }
+    let(:finding)        { CMSScanner::DummyFinding }
+    let(:unique_finders) { CMSScanner::Finders::Unique }
+    let(:opts)           { {} }
+
+    before do
+      finders <<
+        unique_finders::Dummy.new(target) <<
+        unique_finders::NoAggressive.new(target) <<
+        unique_finders::Dummy2.new(target)
+    end
+
+    after do
+      result = finders.run(opts)
+
+      expect(result).to be_a finding
+      expect(result).to eql @expected
+    end
+
+    # Used to be able to test the calls order and returned result at the same time
+    let(:dummy_passive)     { unique_finders::Dummy.new(target).passive(opts) }
+    let(:dummy_aggresssive) { unique_finders::Dummy.new(target).aggressive(opts) }
+    let(:noaggressive)      { unique_finders::NoAggressive.new(target).passive(opts) }
+    let(:dummy2_aggressive) { unique_finders::Dummy2.new(target).aggressive }
+
+    context 'when :confidence_threshold <= 0' do
+      let(:opts) { super().merge(confidence_threshold: 0) }
+
+      context 'when :mixed mode' do
+        let(:opts) { super().merge(mode: :mixed) }
+
+        it 'calls all #passive then #aggressive on finders and returns the best result' do
+          # Maybe there is a way to factorise this
+          expect(finders[0]).to receive(:passive).ordered.and_return(dummy_passive)
+          expect(finders[1]).to receive(:passive).ordered.and_return(noaggressive)
+          expect(finders[2]).to receive(:passive).ordered
+          expect(finders[0]).to receive(:aggressive).ordered.and_return(dummy_aggresssive)
+          expect(finders[1]).to receive(:aggressive).ordered
+          expect(finders[2]).to receive(:aggressive).ordered.and_return(dummy2_aggressive)
+
+          @expected = finding.new('v1', confidence: 100, found_by: 'Dummy (passive detection)')
+          @expected.confirmed_by << finding.new('v1', confidence: 100, found_by: 'override')
+          @expected.confirmed_by << finding.new('v1', confidence: 90)
+        end
+      end
+
+      context 'when :passive mode' do
+        let(:opts) { super().merge(mode: :passive) }
+
+        it 'calls #passive on all finders and returns the best result' do
+          expect(finders[0]).to receive(:passive).ordered.and_return(dummy_passive)
+          expect(finders[1]).to receive(:passive).ordered.and_return(noaggressive)
+          expect(finders[2]).to receive(:passive).ordered
+
+          finders.each { |f| expect(f).to_not receive(:aggressive) }
+
+          @expected = finding.new('v2', confidence: 10,
+                                        found_by: 'NoAggressive (passive detection)')
+        end
+      end
+
+      context 'when :aggressive mode' do
+        let(:opts) { super().merge(mode: :aggressive) }
+
+        it 'calls #aggressive on all finders and returns the best result' do
+          finders.each { |f| expect(f).to_not receive(:passive) }
+
+          expect(finders[0]).to receive(:aggressive).ordered.and_return(dummy_aggresssive)
+          expect(finders[1]).to receive(:aggressive).ordered
+          expect(finders[2]).to receive(:aggressive).ordered.and_return(dummy2_aggressive)
+
+          @expected = finding.new('v1', confidence: 100, found_by: 'override')
+          @expected.confirmed_by << finding.new('v1', confidence: 90)
+        end
+      end
+    end
+
+    context 'when :confidence_threshold = 100 (default)' do
+      context 'when :mixed mode' do
+        let(:opts) { super().merge(mode: :mixed) }
+
+        it 'calls all #passive then #aggressive methods on finders and returns the '\
+           'result which reaches 100% confidence during the process' do
+          expect(finders[0]).to receive(:passive).ordered.and_return(dummy_passive)
+          expect(finders[1]).to receive(:passive).ordered.and_return(noaggressive)
+          expect(finders[2]).to receive(:passive).ordered
+          expect(finders[0]).to receive(:aggressive).ordered.and_return(dummy_aggresssive)
+          expect(finders[1]).to_not receive(:aggressive)
+          expect(finders[2]).to_not receive(:aggressive)
+
+          @expected = finding.new('v1', confidence: 100, found_by: 'Dummy (passive detection)')
+          @expected.confirmed_by << finding.new('v1', confidence: 100, found_by: 'override')
+        end
+      end
+
+      context 'when :passive mode' do
+        let(:opts) { super().merge(mode: :passive) }
+
+        it 'calls all #passive and returns the best result' do
+          expect(finders[0]).to receive(:passive).ordered.and_return(dummy_passive)
+          expect(finders[1]).to receive(:passive).ordered.and_return(noaggressive)
+          expect(finders[2]).to receive(:passive).ordered
+
+          finders.each { |f| expect(f).to_not receive(:aggressive) }
+
+          @expected = finding.new('v2', confidence: 10,
+                                        found_by: 'NoAggressive (passive detection)')
+        end
+      end
+
+      context 'when :aggressive mode' do
+        let(:opts) { super().merge(mode: :aggressive) }
+
+        it 'calls all #aggressive and returns the result which reaches 100% confidence' do
+          finders.each { |f| expect(f).to_not receive(:passive) }
+
+          expect(finders[0]).to receive(:aggressive).ordered.and_return(dummy_aggresssive)
+          expect(finders[1]).to_not receive(:aggressive)
+          expect(finders[2]).to_not receive(:aggressive)
+
+          @expected = finding.new('v1', confidence: 100, found_by: 'override')
+        end
+      end
+    end
+  end
+end