Achim,
On Mon, Nov 16, 2009 at 12:37 PM, Achim Hoffmann wrote:
>
>
>
> Viele Gruesse
> Achim
>
> On Sun, 15 Nov 2009, Andres Riancho wrote:
>
> !! > So, identifying length limits, hidden values and constants (i.e. select
> options)
> !! > is a good idea and can be feed to a fuzzer plugin to make
Taras,
On Mon, Nov 16, 2009 at 11:24 PM, Taras wrote:
> Andres,
>
>> My idea is that the parser should return a python form object that
>> looks like this:
> ...
>>
>> Which at the end creates the same mutants... but is a little less "nice" ;)
>>
>> Do you understand my point?
>
> So do you want
Andres,
> > What about complex JavaScript client side checks?
> > Such maxlength check can be made on JavaScript.
> > And I think in most cases such checks will be on JavaScript because
> > simply it more powerful then HTML attributes like maxlength.
>
> Adding support for maxlength field in HTML
Andres,
> My idea is that the parser should return a python form object that
> looks like this:
...
>
> Which at the end creates the same mutants... but is a little less "nice" ;)
>
> Do you understand my point?
So do you want to move form.getVariants() behaviour/action to
createMutants(), don
Viele Gruesse
Achim
On Sun, 15 Nov 2009, Andres Riancho wrote:
!! > So, identifying length limits, hidden values and constants (i.e. select
options)
!! > is a good idea and can be feed to a fuzzer plugin to make more
sophisticated
!! > tests.
...
!! > Does this make sense?
!!
!! Yes, a lot
Taras,
On Sun, Nov 15, 2009 at 12:27 PM, Taras wrote:
> Andres,
>
>> Yes, a lot of sense to me in the case of the fuzzing, but not that
>> much sense on the side of "finding a vulnerability" trying to send a
>> request with maxlength-1 , maxlength, maxlength+1. Why not sending
>> directly maxlen
Andres,
> Yes, a lot of sense to me in the case of the fuzzing, but not that
> much sense on the side of "finding a vulnerability" trying to send a
> request with maxlength-1 , maxlength, maxlength+1. Why not sending
> directly maxlength+whatever and see what happens?
What about complex JavaScr
Achim,
On Wed, Nov 11, 2009 at 2:14 PM, Achim Hoffmann wrote:
> Taras wrote on 11.11.2009 13:06:
>
>> Example with maxlenght is not good.
>> Such validation usually is made on JavaScript.
>> What should do in such situation?
>> My point of view is we do not need to pay so much attention to client
Taras,
On Wed, Nov 11, 2009 at 12:02 AM, Taras wrote:
> Hi, all!
>
> Please read in line.
>> > >>
>> > - Is there a plugin that analyzes HTML code (like input length
>> > fields) and then generates injection strings out of it?
>> > Example: There is a > > maxlength="30">>
Taras wrote on 11.11.2009 13:06:
> Example with maxlenght is not good.
> Such validation usually is made on JavaScript.
> What should do in such situation?
> My point of view is we do not need to pay so much attention to client side
> *security* validation because it is not so trivial but at same
Taras,
The idea is to focus your tests on the information gathered through
the client-side material. For example, if you obtain an input field,
without any other information, you can try multiple input lenghts on
it (the number of tries is arbitrary and could be endless). However,
if you collect cl
Raul,
> Hi Taras,
> I'm not sure if Floyd purpose was this, but it is useful to play
> around the client side contraints, as they can provide a very good
> insight of what the developers implemented on the server side too.
Could you please describe it more because "to play around the client side
Hi Taras,
I'm not sure if Floyd purpose was this, but it is useful to play
around the client side contraints, as they can provide a very good
insight of what the developers implemented on the server side too.
Both contraints, client and server, should be the same, but sometimes
they are out of sync
Floyd,
>>>First of all I think that I don't really understand what more complex
>>>HTML analysis we need in W3AF and needing to take attention in such
>>>things (which are controlled on client side) like HTML tag attribute
>>>maxlength. Floyd could you please describe a bit more it?
>
> I think it
Hey taras and list
>>> > - Is there a plugin that analyzes HTML code (like input length
>>> > fields) and then generates injection strings out of it?
>>> > Example: There is a >> > maxlength="30">> tag and w3af tries to inject strings with lengths
>>> > 29, 30 and 31
Hi, all!
Please read in line.
> > >>
> > - Is there a plugin that analyzes HTML code (like input length fields)
> > and then generates injection strings out of it?
> > Example: There is a >
> > tag and w3af tries to inject strings with lengths 29, 30 and 31
> > >>
> > >>Fo
Floyd,
Please read inline,
On Tue, Nov 10, 2009 at 10:44 AM, Floyd Fuh wrote:
>
> Dear w3af developers
>
> Please read inline
>
> On Tue, Oct 20, 2009, Andres Riancho wrote:
> >>Floyd,
> >>
> >>On Tue, Oct 20, 2009 at 11:29 AM, Floyd Fuh > wrote:
>
> Dear w3af developers
>
>
Dear w3af developers
Please read inline
On Tue, Oct 20, 2009, Andres Riancho wrote:
>>Floyd,
>>
>>On Tue, Oct 20, 2009 at 11:29 AM, Floyd Fuh > wrote:
Dear w3af developers
- Is there a plugin where I can just specify a list of strings, which is
used for every found para
Floyd,
On Tue, Oct 20, 2009 at 11:29 AM, Floyd Fuh wrote:
>
> Dear w3af developers
>
> - Is there a plugin where I can just specify a list of strings, which is used
> for every found parameter (GET, POST)?
> Example: Crawler finds http://www.example.com/index.html?id=5 and fuzzes
> the id pa
19 matches
Mail list logo
