Class: Arachni::Session

Inherits:

Object

• Object
• Arachni::Session

Includes:

UI::Output, Utilities

Defined in:

lib/arachni/session.rb

Overview

Session management class

Handles logins, provided log-out detection, stores and executes login sequences and provided general webapp session related helpers.

Author:

• Tasos “Zapotek” Laskos <tasos.laskos@gmail.com>

Instance Attribute Summary

• #login_check(&block) ⇒ Block

  A block used to check whether or not we’re logged in to the webapp.

• #login_form ⇒ Element::Form

  Sets a login form and generates a login sequence from it.

• #login_sequence(&block) ⇒ Block

  A block used to login to the webapp.

• #opts ⇒ Options readonly

  Options.

Instance Method Summary

• #can_login? ⇒ Bool

  true if there is log-in capability, false otherwise.

• #cookie(&block) ⇒ Object

  Tries to find the main session (login/ID) cookie.

• #cookies ⇒ Array<Element::Cookie>

  Session cookies.

• #ensure_logged_in ⇒ Bool^?

  true if logged-in, false otherwise, nil if there’s no log-in capability.

• #find_login_form(opts = {}, &block) ⇒ Object

  Finds a login forms based on supplied location, collection and criteria.

• #has_login_check? ⇒ Bool

  true if a login check exists, false otherwise.

• #has_login_sequence? ⇒ Bool

  true if a login sequence exists, false otherwise.

• #http ⇒ HTTP

  Http interface.

• #initialize(opts = Arachni::Options.instance) ⇒ Session constructor

  A new instance of Session.

• #logged_in?(http_opts = {}, &block) ⇒ Bool^?

  Uses the block in #login_check to check in we’re logged in to the webapp.

• #login ⇒ Bool^?

  Uses the block in #login_sequence to login to the webapp.

• #set_login_check(url, pattern) ⇒ Object

  Sets a login check using the provided url and regexp.

Methods included from Utilities

#cookie_encode, #cookies_from_document, #cookies_from_file, #cookies_from_response, #exception_jail, #exclude_path?, #extract_domain, #form_decode, #form_encode, #form_parse_request_body, #forms_from_document, #forms_from_response, #get_path, #hash_keys_to_str, #html_decode, #html_encode, #include_path?, #links_from_document, #links_from_response, #normalize_url, #page_from_response, #page_from_url, #parse_query, #parse_set_cookie, #parse_url_vars, #path_in_domain?, #path_too_deep?, #remove_constants, #seed, #skip_path?, #to_absolute, #uri_decode, #uri_encode, #uri_parse, #uri_parser, #url_sanitize

Methods included from UI::Output

#debug?, #debug_off, #debug_on, #disable_only_positives, #flush_buffer, #mute, #muted?, old_reset_output_options, #only_positives, #only_positives?, #print_bad, #print_debug, #print_debug_backtrace, #print_debug_pp, #print_error, #print_error_backtrace, #print_info, #print_line, #print_ok, #print_status, #print_verbose, #reroute_to_file, #reroute_to_file?, reset_output_options, #set_buffer_cap, #uncap_buffer, #unmute, #verbose, #verbose?

Constructor Details

#initialize(opts = Arachni::Options.instance) ⇒ Session

Returns a new instance of Session.

# File 'lib/arachni/session.rb', line 78

def initialize( opts = Arachni::Options.instance )
    @opts = opts
end

Instance Attribute Details

#login_check(&block) ⇒ Block

A block used to check whether or not we’re logged in to the webapp.

The block should return true on success, false on failure.

The proc should expect 2 parameters, the first one being a hash of HTTP options and the second one an optional block.

If a block has been set, the check should work async and pass the result to the block, otherwise it should simply return the result.

The result of the check should be true or false.

A good example of this can be found in #set_login_check.

Returns:

• (Block)

See Also:

• #set_login_check

# File 'lib/arachni/session.rb', line 63

def login_check
  @login_check
end

#login_form ⇒ Element::Form

Sets a login form and generates a login sequence from it.

The form must be kosher, best be generated by one of the Element::Form helpers, Parser or #find_login_form.

Once you get the right form you need to update it with the appropriate values before passing it to this accessor.

Returns:

• (Element::Form)

# File 'lib/arachni/session.rb', line 76

def login_form
  @login_form
end

#login_sequence(&block) ⇒ Block

A block used to login to the webapp.

The block should log the framework into the webapp and return true on success, false on failure.

Parameters:

• block (Block) —

  if a block has been given it will be set as the login sequence

Returns:

• (Block)

# File 'lib/arachni/session.rb', line 42

def login_sequence
  @login_sequence
end

#opts ⇒ Options (readonly)

Returns options.

Returns:

• (Options) —

  options

# File 'lib/arachni/session.rb', line 32

def opts
  @opts
end

Instance Method Details

#can_login? ⇒ Bool

Returns true if there is log-in capability, false otherwise.

Returns:

• (Bool) —

  true if there is log-in capability, false otherwise

# File 'lib/arachni/session.rb', line 158

def can_login?
    @login_sequence && @login_check
end

#cookie(&block) ⇒ Object

Tries to find the main session (login/ID) cookie.

Parameters:

• block (Block) —

  block to be passed the cookie

# File 'lib/arachni/session.rb', line 92

def cookie( &block )
    return block.call( @session_cookie ) if @session_cookie
    fail 'No login-check has been configured.' if !has_login_check?

    cookies.each do |cookie|
        logged_in?( cookies: { cookie.name => '' } ) do |bool|
            next if bool
            block.call( @session_cookie = cookie )
        end
    end
end

#cookies ⇒ Array<Element::Cookie>

Returns session cookies.

Returns:

• (Array<Element::Cookie>) —

  session cookies

# File 'lib/arachni/session.rb', line 83

def cookies
    http.cookies.select{ |c| c.session? }
end

#ensure_logged_in ⇒ Bool^?

Returns true if logged-in, false otherwise, nil if there’s no log-in capability.

Returns:

• (Bool, nil) —

  true if logged-in, false otherwise, nil if there’s no log-in capability

# File 'lib/arachni/session.rb', line 164

def ensure_logged_in
    return if !can_login?
    return true if logged_in?

    print_bad 'The scanner has been logged out.'
    print_info 'Trying to re-login...'

    login

    if !logged_in?
        print_bad 'Could not re-login.'
        false
    else
        print_ok 'Logged-in successfully.'
        true
    end
end

#find_login_form(opts = {}, &block) ⇒ Object

Finds a login forms based on supplied location, collection and criteria.

Parameters:

• opts (Hash) (defaults to: {})
• block (Block) —

  if a block and a :url are given, the request will run async and the block will be called with the result of this method.

Options Hash (opts):

• :requires_password (Bool) —

  Does the login form include a password field? (Defaults to true)

• :action (Array, Regexp) —

  Regexp to match or String to compare against the form action.

• :inputs (String, Array, Hash, Symbol) —

  Inputs that the form must contain.

• :forms (Array<Element::Form>) —

  Collection of forms to look through.

• :pages (Page, Array<Page>) —

  Pages to look through.

• :url (String) —

  URL to fetch and look for forms.

# File 'lib/arachni/session.rb', line 119

def find_login_form( opts = {}, &block )
    async = block_given?

    requires_password = (opts[:requires_password].nil? ? true : opts[:requires_password])

    find = proc do |cforms|
        cforms.select do |f|
            next if requires_password && !f.requires_password?

            oks   = []

            if action = opts[:action]
                oks << !!(action.is_a?( Regexp ) ? f.action =~ action : f.action == action)
            end

            if inputs = opts[:inputs]
                oks << f.has_inputs?( inputs )
            end

            oks.count( true ) == oks.size
        end.first
    end

    forms = if opts[:pages]
                [opts[:pages]].flatten.map { |p| p.forms }.flatten
            elsif opts[:forms]
                opts[:forms]
            elsif url = opts[:url]
                if async
                    page_from_url( url ) { |p| block.call find.call( p.forms ) }
                else
                    page_from_url( url ).forms
                end
            end

    find.call( forms || [] ) if !async
end

#has_login_check? ⇒ Bool

Returns true if a login check exists, false otherwise.

Returns:

• (Bool) —

  true if a login check exists, false otherwise

# File 'lib/arachni/session.rb', line 215

def has_login_check?
    !!login_check
end

#has_login_sequence? ⇒ Bool

Returns true if a login sequence exists, false otherwise.

Returns:

• (Bool) —

  true if a login sequence exists, false otherwise

# File 'lib/arachni/session.rb', line 193

def has_login_sequence?
    !!login_sequence
end

#http ⇒ HTTP

Returns http interface.

Returns:

• (HTTP) —

  http interface

# File 'lib/arachni/session.rb', line 274

def http
    HTTP
end

#logged_in?(http_opts = {}, &block) ⇒ Bool^?

Uses the block in #login_check to check in we’re logged in to the webapp.

Parameters:

• http_opts (Hash) (defaults to: {}) —

  extra HTTP options to use for the check

• block (Block) —

  if a block has been provided the check will be async and the result will be passed to it, otherwise the method will return the result.

Returns:

• (Bool, nil) —

  true if we’re logged-in, false if not, nil if no #login_sequence has been set.

# File 'lib/arachni/session.rb', line 210

def logged_in?( http_opts = {}, &block )
    login_check.call( http_opts, block ) if has_login_check?
end

#login ⇒ Bool^?

Uses the block in #login_sequence to login to the webapp.

Returns:

• (Bool, nil) —

  true if login was successful, false if not, nil if no #login_sequence has been set.

# File 'lib/arachni/session.rb', line 188

def login
    login_sequence.call if has_login_sequence?
end

#set_login_check(url, pattern) ⇒ Object

Sets a login check using the provided url and regexp.

Parameters:

• url (String, #to_s) —

  URL to request

• pattern (String, Regexp) —

  pattern to match against the body of the response

# File 'lib/arachni/session.rb', line 261

def set_login_check( url, pattern )
    login_check do |opts, block|
        bool = nil
        http.get( url.to_s, opts.merge( async: !!block ) ) do |res|
            bool = !!res.body.match( pattern )
            block.call( bool ) if block
        end

        bool
    end
end