/usr/share/w3af/plugins/evasion/reversedSlashes.py is in w3af-console 1.1svn5547-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 | '''
reversedSlashes.py
Copyright 2006 Andres Riancho
This file is part of w3af, w3af.sourceforge.net .
w3af is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation version 2 of the License.
w3af is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with w3af; if not, write to the Free Software
Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
'''
from core.controllers.basePlugin.baseEvasionPlugin import baseEvasionPlugin
from core.controllers.w3afException import w3afException
from core.data.url.HTTPRequest import HTTPRequest as HTTPRequest
# options
from core.data.options.option import option
from core.data.options.optionList import optionList
class reversedSlashes(baseEvasionPlugin):
'''
Change the slashes from / to \\
@author: Andres Riancho ( andres.riancho@gmail.com )
'''
def __init__(self):
baseEvasionPlugin.__init__(self)
def modifyRequest(self, request ):
'''
Mangles the request
@parameter request: HTTPRequest instance that is going to be modified by the evasion plugin
@return: The modified request
>>> from core.data.parsers.urlParser import url_object
>>> rs = reversedSlashes()
>>> u = url_object('http://www.w3af.com/')
>>> r = HTTPRequest( u )
>>> rs.modifyRequest( r ).url_object.url_string
u'http://www.w3af.com/'
>>> u = url_object('http://www.w3af.com/abc/def.htm')
>>> r = HTTPRequest( u )
>>> rs.modifyRequest( r ).url_object.url_string
u'http://www.w3af.com/abc\\\def.htm'
>>> u = url_object('http://www.w3af.com/abc/123/def.htm')
>>> r = HTTPRequest( u )
>>> rs.modifyRequest( r ).url_object.url_string
u'http://www.w3af.com/abc\\\\123\\\def.htm'
>>> #
>>> # The plugins should not modify the original request
>>> #
>>> u.url_string
u'http://www.w3af.com/abc/123/def.htm'
'''
# We mangle the URL
path = request.url_object.getPath()
path = path.replace('/', '\\' ).replace('\\', '/', 1)
# Finally, we set all the mutants to the request in order to return it
new_url = request.url_object.copy()
new_url.setPath( path )
new_req = HTTPRequest( new_url , request.get_data(),
request.headers, request.get_origin_req_host() )
return new_req
def getOptions( self ):
'''
@return: A list of option objects for this plugin.
'''
ol = optionList()
return ol
def setOptions( self, OptionList ):
'''
This method sets all the options that are configured using the user interface
generated by the framework using the result of getOptions().
@parameter OptionList: A dictionary with the options for the plugin.
@return: No value is returned.
'''
pass
def getPluginDeps( self ):
'''
@return: A list with the names of the plugins that should be run before the
current one.
'''
return []
def getPriority( self ):
'''
This function is called when sorting evasion plugins.
Each evasion plugin should implement this.
@return: An integer specifying the priority. 100 is run first, 0 last.
'''
return 90
def getLongDesc( self ):
'''
@return: A DETAILED description of the plugin functions and features.
'''
return r'''
This evasion plugin changes the slashes from / to \ .
Example:
Input: '/bar/foo.asp'
Output : '\bar\foo.asp'
'''
|