pentest-tool-lite 3.9.3 → 3.10.8

package/src/security/GoogleWebRisk.js

@@ -1,58 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const web_risk_1 = require("@google-cloud/web-risk");
-const Test_1 = __importDefault(require("../Test"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://cloud.google.com/web-risk
- * @see https://safebrowsing.google.com
- * @see https://transparencyreport.google.com/safe-browsing/search
- */
-class GoogleWebRisk extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'GoogleWebRisk';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting Google Web Risk test...');
-            const client = new web_risk_1.WebRiskServiceClient();
-            const request = {
-                uri: url,
-                threatTypes: [
-                    web_risk_1.protos.google.cloud.webrisk.v1.ThreatType.MALWARE,
-                    web_risk_1.protos.google.cloud.webrisk.v1.ThreatType.SOCIAL_ENGINEERING,
-                    web_risk_1.protos.google.cloud.webrisk.v1.ThreatType.UNWANTED_SOFTWARE,
-                ],
-            };
-            const response = yield client.searchUris(request);
-            const { threat } = response[0];
-            if (threat !== null) {
-                return {
-                    status: 'ERROR',
-                    title: this.name,
-                    description: `This url contains ${threat.threatTypes.join(', ').toLowerCase()}!`,
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: this.name,
-                description: 'This URL is safe.',
-            };
-        });
-    }
-}
-exports.default = GoogleWebRisk;

package/src/security/HSTS.js

@@ -1,62 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- * HTTP Strict Transport Security
- *
- * Recommended value is at least one year (31536000).
- *
- * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
- * @see https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security
- */
-class HSTS extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'HSTS';
-        this.minValue = 31536000;
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting HSTS test...');
-            const response = yield request_1.default.get(url);
-            if (!Object.prototype.hasOwnProperty.call(response.headers, 'strict-transport-security')) {
-                return {
-                    status: 'ERROR',
-                    title: 'HSTS',
-                    description: 'The strict-transport-security header is not present!',
-                };
-            }
-            const attributes = response.headers['strict-transport-security'].replace(' ', '').split(';');
-            const maxAge = attributes.filter((attribute) => {
-                return attribute.startsWith('max-age');
-            }).shift().replace('max-age=', '');
-            if (parseInt(maxAge, 10) < this.minValue) {
-                return {
-                    status: 'ERROR',
-                    title: 'HSTS',
-                    description: `The value of strict-transport-security header is ${maxAge}. Minimum value is ${this.minValue}!`,
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: 'HSTS',
-                description: `The value of strict-transport-security header is ${maxAge}.`,
-            };
-        });
-    }
-}
-exports.default = HSTS;

package/src/security/HTTPS.js

@@ -1,73 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- * Hypertext Transfer Protocol Secure
- *
- * The script first transform the url to be unsecure
- * and then make the request. The answer has to be
- * redirect to secure version.
- *
- * Some sites requires www (or requires version without wwww)
- * and if the request is not as desired, it first redirects
- * to desired version (without https) and then again redirects
- * to version with https. This is also wrong.
- *
- * @see https://en.wikipedia.org/wiki/HTTPS
- */
-class HTTPS extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'HTTPS';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting HTTPS test...');
-            const unsecureUrl = this.toHttp(url);
-            const response = yield request_1.default.get(unsecureUrl, { redirect: 'manual' });
-            if (!this.isRedirect(response)) {
-                return {
-                    status: 'ERROR',
-                    title: 'HTTPS',
-                    description: `Request to not secure url returned ${response.statusCode}!`,
-                };
-            }
-            if (!this.isRedirectSecure(response)) {
-                return {
-                    status: 'ERROR',
-                    title: 'HTTPS',
-                    description: `Request to not secure url returned non-secure redirect url ${response.headers.location}!`,
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: 'HTTPS',
-                description: `Request to not secure url responded with status code ${response.statusCode} and redirect url ${response.headers.location}.`,
-            };
-        });
-    }
-    isRedirect(response) {
-        return Math.floor(response.statusCode / 100) === 3 && 'location' in response.headers;
-    }
-    isRedirectSecure(response) {
-        return response.headers.location.startsWith('https');
-    }
-    toHttp(url) {
-        return url.replace('https://', 'http://');
-    }
-}
-exports.default = HTTPS;

package/src/security/HTTPVersion.js

@@ -1,64 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://en.wikipedia.org/wiki/HTTP/2
- * @see https://en.wikipedia.org/wiki/HTTP/3
- */
-class HTTPVersion extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'HTTP Version';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting HTTPVersion test...');
-            const response = yield request_1.default.get(url);
-            if (Object.prototype.hasOwnProperty.call(response.headers, 'upgrade')) {
-                const attributes = response.headers['upgrade'].replace(' ', '').split(',');
-                const h2 = attributes.indexOf('h2') > -1;
-                if (h2) {
-                    return {
-                        status: 'WARNING',
-                        title: 'HTTP/2',
-                        description: 'The current HTTP version is 2. Can be upgraded to 3.',
-                    };
-                }
-            }
-            if (Object.prototype.hasOwnProperty.call(response.headers, 'alt-svc')) {
-                const attributes = response.headers['alt-svc'].replace(' ', '').split(',');
-                const h3 = attributes.find(a => a.includes('h3'));
-                if (typeof h3 !== 'undefined') {
-                    if (h3) {
-                        return {
-                            status: 'SUCCESS',
-                            title: 'HTTP/3',
-                            description: 'The value of HTTP/3 header is present.',
-                        };
-                    }
-                }
-            }
-            return {
-                status: 'ERROR',
-                title: 'HTTP/1',
-                description: 'The current HTTP version is 1. Should be upgraded at least to 2!',
-            };
-        });
-    }
-}
-exports.default = HTTPVersion;

package/src/security/PermissionsPolicy.js

@@ -1,67 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Feature-Policy
- */
-class PermissionsPolicy extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'Permissions-Policy';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting PermissionsPolicy test...');
-            const response = yield request_1.default.get(url);
-            if (!Object.prototype.hasOwnProperty.call(response.headers, 'permissions-policy')) {
-                return {
-                    status: 'ERROR',
-                    title: 'Permissions-Policy',
-                    description: 'Response headers does not contain permissions-policy header!',
-                };
-            }
-            const permissionsArray = ['accelerometer', 'geolocation', 'midi', 'notifications', 'push', 'sync-xhr',
-                'microphone', 'camera', 'magnetometer', 'gyroscope', 'speaker', 'vibrate', 'fullscreen', 'payment', 'usb'];
-            const attributesList = response.headers['permissions-policy'];
-            const subChecks = this.checkPermissions(permissionsArray, attributesList);
-            return {
-                status: subChecks.some(check => check.status === 'WARNING') ? 'WARNING' : 'SUCCESS',
-                title: 'Permissions-Policy',
-                description: '',
-                results: subChecks,
-            };
-        });
-    }
-    checkPermissions(permissions, attributes) {
-        return permissions.map((permission) => {
-            if (!attributes.includes(permission)) {
-                return {
-                    status: 'WARNING',
-                    title: permission,
-                    description: `Permission ${permission} is missing.`,
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: permission,
-                description: `Permission ${permission} is present.`,
-            };
-        });
-    }
-}
-exports.default = PermissionsPolicy;

package/src/security/ReferrerPolicy.js

@@ -1,46 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
- */
-class ReferrerPolicy extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'Referrer-Policy';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting ReferrerPolicy test...');
-            const response = yield request_1.default.get(url);
-            if (!Object.prototype.hasOwnProperty.call(response.headers, 'referrer-policy')) {
-                return {
-                    status: 'WARNING',
-                    title: 'Referrer-Policy',
-                    description: 'Response headers does not contain referrer-policy header!',
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: 'Referrer-Policy',
-                description: `The value of referrer-policy header is ${response.headers['referrer-policy']}.`,
-            };
-        });
-    }
-}
-exports.default = ReferrerPolicy;

package/src/security/RobotsTXT.js

@@ -1,42 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-class RobotsTXT extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'Robots.txt';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting robotstxt test...');
-            const response = yield request_1.default.get(url + '/robots.txt');
-            if (response !== null && response.statusCode === 200) {
-                return {
-                    status: 'SUCCESS',
-                    title: 'Robots.txt',
-                    description: 'Site does contain robots.txt',
-                };
-            }
-            return {
-                status: 'ERROR',
-                title: 'Robots.txt',
-                description: 'Site does not contain robots.txt',
-            };
-        });
-    }
-}
-exports.default = RobotsTXT;

package/src/security/SSL.js

@@ -1,50 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const ssl_checker_1 = __importDefault(require("ssl-checker"));
-const Test_1 = __importDefault(require("../Test"));
-const logger_1 = __importDefault(require("../logger"));
-class SSL extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'SSL';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting SSL test...');
-            const hostname = (new URL(url)).hostname;
-            const sslDetails = yield (0, ssl_checker_1.default)(hostname);
-            if (!sslDetails.valid) {
-                return {
-                    status: 'ERROR',
-                    title: this.name,
-                    description: 'SSL certificate is not valid!',
-                };
-            }
-            if (sslDetails.daysRemaining <= 7) {
-                return {
-                    status: 'WARNING',
-                    title: this.name,
-                    description: 'SSL certificate is valid for 7 or less days!',
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: this.name,
-                description: `SSL certificate is valid until ${sslDetails.validTo}.`,
-            };
-        });
-    }
-}
-exports.default = SSL;

package/src/security/XFrameOptions.js

@@ -1,46 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
- */
-class XFrameOptions extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'X-Frame-Options';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting X-Frame-Options test...');
-            const response = yield request_1.default.get(url);
-            if (!Object.prototype.hasOwnProperty.call(response.headers, 'x-frame-options')) {
-                return {
-                    status: 'ERROR',
-                    title: 'X-Frame-Options',
-                    description: 'Response headers does not contain x-frame-options header!',
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: 'X-Frame-Options',
-                description: `The value of x-frame-options header is ${response.headers['x-frame-options']}.`,
-            };
-        });
-    }
-}
-exports.default = XFrameOptions;

package/src/security/XXSSProtection.js

@@ -1,46 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const Test_1 = __importDefault(require("../Test"));
-const request_1 = __importDefault(require("../request"));
-const logger_1 = __importDefault(require("../logger"));
-/**
- *
- * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection
- */
-class XXSSProtection extends Test_1.default {
-    constructor() {
-        super(...arguments);
-        this.name = 'X-XSS-Protection';
-    }
-    test(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ url }) {
-            logger_1.default.info('Starting X-XSS-Protection test...');
-            const response = yield request_1.default.get(url);
-            if (!Object.prototype.hasOwnProperty.call(response.headers, 'x-xss-protection')) {
-                return {
-                    status: 'ERROR',
-                    title: 'X-XSS-Protection',
-                    description: 'Response headers does not contain x-xss-protection header!',
-                };
-            }
-            return {
-                status: 'SUCCESS',
-                title: 'X-XSS-Protection',
-                description: `The value of x-xss-protection header is ${response.headers['x-xss-protection']}.`,
-            };
-        });
-    }
-}
-exports.default = XXSSProtection;

package/src/security/__TESTS__/XFrameOptions.test.js

@@ -1,44 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const XFrameOptions_1 = __importDefault(require("../XFrameOptions"));
-const request_1 = __importDefault(require("../../request"));
-test('X-Frame-Options test with correct header', () => __awaiter(void 0, void 0, void 0, function* () {
-    const pentest = new XFrameOptions_1.default();
-    const mock = jest.spyOn(request_1.default, 'get').mockImplementation(() => __awaiter(void 0, void 0, void 0, function* () {
-        return new Promise((resolve) => {
-            resolve({
-                headers: {
-                    'x-frame-options': 'deny',
-                },
-            });
-        });
-    }));
-    const result = yield pentest.run({ url: 'https://juffalow.com' });
-    expect(result.status).toEqual('SUCCESS');
-    mock.mockRestore();
-}));
-test('X-Frame-Options test with missing X-Frame-Options header', () => __awaiter(void 0, void 0, void 0, function* () {
-    const pentest = new XFrameOptions_1.default();
-    const mock = jest.spyOn(request_1.default, 'get').mockImplementation(() => __awaiter(void 0, void 0, void 0, function* () {
-        return new Promise((resolve) => {
-            resolve({
-                headers: {}
-            });
-        });
-    }));
-    const result = yield pentest.run({ url: 'https://juffalow.com' });
-    expect(result.status).toEqual('ERROR');
-    mock.mockRestore();
-}));