Hello all,
First thanks for your efforts developing such a great tool.
Over the last day or so I began looking into the reporting function,
specifically the xml output.
I was interested in the xml reporting the vulnerability name.
So i checked out the regular svn version 2771
Then I made the following changes locally:
plugins/output/xmlFile.py
Added the following around line 210 :
messageNode.setAttribute("id", str(i.getId()))
messageNode.setAttribute("name", str(i.getName()))
core/data/kb/vuln.py
Added the following :
def getId( self ):
return self._id
def getName( self ):
return self._name
Now the xml reports with a distinct vuln name, in most cases. I was
curious about some vulns that add specific instance details, like
Insecure directory.
Here are some of the example names that I see for Insecure directory:
name="Insecure directory - /./"
name="Insecure directory - /"
name="Insecure directory - /phpmyadmin/"
Is there a better way to report the distinct vuln name?
Thanks so much,
-Robert
------------------------------------------------------------------------------
Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are
powering Web 2.0 with engaging, cross-platform capabilities. Quickly and
easily build your RIAs with Flex Builder, the Eclipse(TM)based development
software that enables intelligent coding and step-through debugging.
Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
