Class: Arachni::Issue

Inherits:

Object

• Object
• Arachni::Issue

Defined in:

lib/arachni/issue.rb

Overview

Represents a detected issue.

Author:

• Tasos “Zapotek” Laskos <tasos.laskos@gmail.com>

Defined Under Namespace

Modules: Severity

Instance Attribute Summary

• #cvssv2 ⇒ String

  The CVSS v2 score.

• #cwe ⇒ String

  The CWE ID number of the issue.

• #cwe_url ⇒ String

  CWE URL of the issue.

• #description ⇒ String

  Brief description of the issue.

• #elem ⇒ String

  Type of the vulnerable type.

• #headers ⇒ Hash<Symbol, Hash>

  ‘:request` and `:response` HTTP headers.

• #id ⇒ String

  The string that verified the issue.

• #injected ⇒ String

  The injected seed that revealed the issue.

• #internal_modname ⇒ Object

  Returns the value of attribute internal_modname.

• #metasploitable ⇒ String

  The Metasploit module that can exploit the vulnerability.

• #method ⇒ String

  HTTP method used.

• #mod_name ⇒ String

  The module that detected the issue.

• #name ⇒ String

  The name of the issue.

• #opts ⇒ Hash

  Audit options associated with the issue.

• #platform ⇒ Symbol

  Name of the vulnerable platform.

• #platform_type ⇒ Symbol

  Type of the vulnerable platform.

• #references ⇒ Hash

  References related to the issue.

• #regexp ⇒ String

  The regexp that identified the issue.

• #regexp_match ⇒ String

  The data that was matched by the regexp.

• #remarks ⇒ Hash

  Remarks about the issue.

• #remedy_code ⇒ String

  A code snippet showing the user how to remedy the Issue.

• #remedy_guidance ⇒ String

  A brief text informing the user how to remedy the Issue.

• #response ⇒ String

  The html response of the attack.

• #severity ⇒ String

  Severity of the issue.

• #tags ⇒ Array<String>

  Tags categorizing the issue.

• #url ⇒ String

  URL of the vulnerable resource.

• #var ⇒ String

  The name of the vulnerable input.

• #variations ⇒ Array<Issue>

  Placeholder variable to be populated by AuditStore#prepare_variations.

• #verification ⇒ Bool

  Is manual verification required?.

Instance Method Summary

• #==(other) ⇒ Object
• #[](k) ⇒ Object
• #[]=(k, v) ⇒ Object
• #add_remark(author, string) ⇒ Object

  Adds a remark as a heads-up to the end user.

• #audit? ⇒ Boolean

  ‘true` if the issue was discovered by manipulating an input, `false` otherwise.

• #digest ⇒ String (also: #_hash)

  A SHA2 hash (of #unique_id) uniquely identifying this issue.

• #each(&block) ⇒ Object
• #each_pair(&block) ⇒ Object
• #eql?(other) ⇒ Boolean
• #hash ⇒ Object
• #initialize(opts = {}) ⇒ Issue constructor

  Sets up the instance attributes.

• #match ⇒ Object
• #recon? ⇒ Boolean

  ‘true` if the issue was discovered passively, `false` otherwise.

• #remove_instance_var(var) ⇒ Object
• #requires_verification? ⇒ Bool

  ‘true` if the issue requires manual verification, `false` otherwise.

• #to_h ⇒ Hash (also: #to_hash)
• #trusted? ⇒ Bool

  ‘true` if the issue can be trusted (doesn’t require manual verification), ‘false` otherwise.

• #unique_id ⇒ String

  A string uniquely identifying this issue.

• #untrusted? ⇒ Boolean

Constructor Details

#initialize(opts = {}) ⇒ Issue

Sets up the instance attributes.

Parameters:

• opts (Hash) (defaults to: {}) —

  Configuration hash. The returned data of a module’s Module::Base.info method merged with a ‘Hash` holding Arachni::Issue attributes.

# File 'lib/arachni/issue.rb', line 148

def initialize( opts = {} )
    # Make sure we're dealing with UTF-8 data.
    opts = opts.recode

    @verification = false
    @references   = {}
    @opts         = { regexp: '' }

    opts.each do |k, v|
        send( "#{k.to_s.downcase}=", encode( v ) ) rescue nil
    end

    opts[:regexp] = opts[:regexp].to_s if opts[:regexp]
    opts[:issue].each do |k, v|
        send( "#{k.to_s.downcase}=", encode( v ) ) rescue nil
    end if opts[:issue]

    @headers ||= {}
    if opts[:headers] && opts[:headers][:request]
        @headers[:request] = {}.merge( opts[:headers][:request] )
    end
    @headers[:request] ||= {}

    if opts[:headers] && opts[:headers][:response]
        @headers[:response] = {}.merge( opts[:headers][:response] )
    end
    @headers[:response] ||= {}

    @response ||= ''

    @method   = @method.to_s.upcase
    @mod_name = opts[:name]

    @remarks ||= {}

    # remove this block because it won't be able to be serialized
    @opts.delete( :each_mutation )
    @tags ||= []
end

Instance Attribute Details

#cvssv2 ⇒ String

Returns The CVSS v2 score.

Returns:

• (String) —

  The CVSS v2 score.

See Also:

• http://nvd.nist.gov/cvss.cfm

# File 'lib/arachni/issue.rb', line 102

def cvssv2
  @cvssv2
end

#cwe ⇒ String

Returns The CWE ID number of the issue.

Returns:

• (String) —

  The CWE ID number of the issue.

See Also:

• http://cwe.mitre.org/

# File 'lib/arachni/issue.rb', line 89

def cwe
  @cwe
end

#cwe_url ⇒ String

Returns CWE URL of the issue.

Returns:

• (String) —

  CWE URL of the issue

See Also:

• #cwe
• http://cwe.mitre.org/

# File 'lib/arachni/issue.rb', line 94

def cwe_url
  @cwe_url
end

#description ⇒ String

Returns Brief description of the issue.

Returns:

• (String) —

  Brief description of the issue.

# File 'lib/arachni/issue.rb', line 82

def description
  @description
end

#elem ⇒ String

Returns Type of the vulnerable type.

Returns:

• (String) —

  Type of the vulnerable type.

See Also:

• Module::Auditor::OPTIONS

# File 'lib/arachni/issue.rb', line 76

def elem
  @elem
end

#headers ⇒ Hash<Symbol, Hash>

Returns ‘:request` and `:response` HTTP headers.

Returns:

• (Hash<Symbol, Hash>) —

  ‘:request` and `:response` HTTP headers.

# File 'lib/arachni/issue.rb', line 57

def headers
  @headers
end

#id ⇒ String

Returns The string that verified the issue.

Returns:

• (String) —

  The string that verified the issue.

# File 'lib/arachni/issue.rb', line 66

def id
  @id
end

#injected ⇒ String

Returns The injected seed that revealed the issue.

Returns:

• (String) —

  The injected seed that revealed the issue.

# File 'lib/arachni/issue.rb', line 63

def injected
  @injected
end

#internal_modname ⇒ Object

Returns the value of attribute internal_modname.

# File 'lib/arachni/issue.rb', line 131

def internal_modname
  @internal_modname
end

#metasploitable ⇒ String

Returns The Metasploit module that can exploit the vulnerability.

Returns:

• (String) —

  The Metasploit module that can exploit the vulnerability.

# File 'lib/arachni/issue.rb', line 126

def metasploitable
  @metasploitable
end

#method ⇒ String

Returns HTTP method used.

Returns:

• (String) —

  HTTP method used.

# File 'lib/arachni/issue.rb', line 79

def method
  @method
end

#mod_name ⇒ String

Returns The module that detected the issue.

Returns:

• (String) —

  The module that detected the issue.

# File 'lib/arachni/issue.rb', line 40

def mod_name
  @mod_name
end

#name ⇒ String

Returns The name of the issue.

Returns:

• (String) —

  The name of the issue.

# File 'lib/arachni/issue.rb', line 37

def name
  @name
end

#opts ⇒ Hash

Returns Audit options associated with the issue.

Returns:

• (Hash) —

  Audit options associated with the issue.

# File 'lib/arachni/issue.rb', line 129

def opts
  @opts
end

#platform ⇒ Symbol

Returns Name of the vulnerable platform.

Returns:

• (Symbol) —

  Name of the vulnerable platform.

See Also:

• Platform::Manager

# File 'lib/arachni/issue.rb', line 44

def platform
  @platform
end

#platform_type ⇒ Symbol

Returns Type of the vulnerable platform.

Returns:

• (Symbol) —

  Type of the vulnerable platform.

See Also:

• Platform::Manager

# File 'lib/arachni/issue.rb', line 48

def platform_type
  @platform_type
end

#references ⇒ Hash

Returns References related to the issue.

Returns:

• (Hash) —

  References related to the issue.

# File 'lib/arachni/issue.rb', line 85

def references
  @references
end

#regexp ⇒ String

Returns The regexp that identified the issue.

Returns:

• (String) —

  The regexp that identified the issue.

# File 'lib/arachni/issue.rb', line 69

def regexp
  @regexp
end

#regexp_match ⇒ String

Returns The data that was matched by the regexp.

Returns:

• (String) —

  The data that was matched by the regexp.

# File 'lib/arachni/issue.rb', line 72

def regexp_match
  @regexp_match
end

#remarks ⇒ Hash

Returns Remarks about the issue. Key is the name of the entity which made the remark, value is an ‘Array` of remarks.

Returns:

• (Hash) —

  Remarks about the issue. Key is the name of the entity which made the remark, value is an ‘Array` of remarks.

# File 'lib/arachni/issue.rb', line 139

def remarks
  @remarks
end

#remedy_code ⇒ String

Returns A code snippet showing the user how to remedy the Issue.

Returns:

• (String) —

  A code snippet showing the user how to remedy the Issue.

# File 'lib/arachni/issue.rb', line 110

def remedy_code
  @remedy_code
end

#remedy_guidance ⇒ String

Returns A brief text informing the user how to remedy the Issue.

Returns:

• (String) —

  A brief text informing the user how to remedy the Issue.

# File 'lib/arachni/issue.rb', line 106

def remedy_guidance
  @remedy_guidance
end

#response ⇒ String

Returns The html response of the attack.

Returns:

• (String) —

  The html response of the attack.

# File 'lib/arachni/issue.rb', line 60

def response
  @response
end

#severity ⇒ String

Returns Severity of the issue.

Returns:

• (String) —

  Severity of the issue.

See Also:

• Severity

# File 'lib/arachni/issue.rb', line 98

def severity
  @severity
end

#tags ⇒ Array<String>

Returns Tags categorizing the issue.

Returns:

• (Array<String>) —

  Tags categorizing the issue.

# File 'lib/arachni/issue.rb', line 134

def tags
  @tags
end

#url ⇒ String

Returns URL of the vulnerable resource.

Returns:

• (String) —

  URL of the vulnerable resource.

# File 'lib/arachni/issue.rb', line 54

def url
  @url
end

#var ⇒ String

Returns The name of the vulnerable input.

Returns:

• (String) —

  The name of the vulnerable input.

# File 'lib/arachni/issue.rb', line 51

def var
  @var
end

#variations ⇒ Array<Issue>

Placeholder variable to be populated by AuditStore#prepare_variations

Returns:

• (Array<Issue>) —

  Variations of this issue.

See Also:

• AuditStore#prepare_variations

# File 'lib/arachni/issue.rb', line 119

def variations
  @variations
end

#verification ⇒ Bool

Returns Is manual verification required?.

Returns:

• (Bool) —

  Is manual verification required?

# File 'lib/arachni/issue.rb', line 122

def verification
  @verification
end

Instance Method Details

#==(other) ⇒ Object

# File 'lib/arachni/issue.rb', line 329

def ==( other )
    hash == other.hash
end

#[](k) ⇒ Object

# File 'lib/arachni/issue.rb', line 279

def []( k )
    send( "#{k}" )
rescue
    instance_variable_get( "@#{k.to_s}".to_sym )
end

#[]=(k, v) ⇒ Object

# File 'lib/arachni/issue.rb', line 285

def []=( k, v )
    v = encode( v )
    begin
        send( "#{k.to_s}=", v )
    rescue
        instance_variable_set( "@#{k.to_s}".to_sym, v )
    end
end

#add_remark(author, string) ⇒ Object

Adds a remark as a heads-up to the end user.

Parameters:

• author (String, Symbol) —

  Component which made the remark.

• string (String) —

  Remark.

# File 'lib/arachni/issue.rb', line 194

def add_remark( author, string )
    fail ArgumentError, 'Author cannot be blank.' if author.to_s.empty?
    fail ArgumentError, 'String cannot be blank.' if string.to_s.empty?

    (@remarks[author] ||= []) << string
end

#audit? ⇒ Boolean

Returns ‘true` if the issue was discovered by manipulating an input, `false` otherwise.

Returns:

• (Boolean) —

  ‘true` if the issue was discovered by manipulating an input, `false` otherwise.

See Also:

• #recon?

# File 'lib/arachni/issue.rb', line 207

def audit?
    !!@var
end

#digest ⇒ String Also known as: _hash

Returns A SHA2 hash (of #unique_id) uniquely identifying this issue.

Returns:

• (String) —

  A SHA2 hash (of #unique_id) uniquely identifying this issue.

See Also:

• #unique_id

# File 'lib/arachni/issue.rb', line 324

def digest
    Digest::SHA2.hexdigest( unique_id )
end

#each(&block) ⇒ Object

# File 'lib/arachni/issue.rb', line 294

def each( &block )
    to_h.each( &block )
end

#each_pair(&block) ⇒ Object

# File 'lib/arachni/issue.rb', line 298

def each_pair( &block )
    to_h.each_pair( &block )
end

#eql?(other) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/arachni/issue.rb', line 337

def eql?( other )
    hash == other.hash
end

#hash ⇒ Object

# File 'lib/arachni/issue.rb', line 333

def hash
    unique_id.hash
end

#match ⇒ Object

See Also:

• #regexp_match

# File 'lib/arachni/issue.rb', line 221

def match
    self.regexp_match
end

#recon? ⇒ Boolean

Returns ‘true` if the issue was discovered passively, `false` otherwise.

Returns:

• (Boolean) —

  ‘true` if the issue was discovered passively, `false` otherwise.

See Also:

• #audit?

# File 'lib/arachni/issue.rb', line 216

def recon?
    !audit?
end

#remove_instance_var(var) ⇒ Object

# File 'lib/arachni/issue.rb', line 341

def remove_instance_var( var )
    remove_instance_variable( var )
end

#requires_verification? ⇒ Bool

Returns ‘true` if the issue requires manual verification, `false` otherwise.

Returns:

• (Bool) —

  ‘true` if the issue requires manual verification, `false` otherwise.

See Also:

• #verification

# File 'lib/arachni/issue.rb', line 229

def requires_verification?
    !!@verification
end

#to_h ⇒ Hash Also known as: to_hash

Returns:

• (Hash)

# File 'lib/arachni/issue.rb', line 303

def to_h
    h = {}
    self.instance_variables.each do |var|
        h[normalize_name( var )] = instance_variable_get( var )
    end
    h[:digest] = h[:_hash] = digest
    h[:hash]  = hash
    h[:unique_id] = unique_id
    h
end

#trusted? ⇒ Bool

Returns ‘true` if the issue can be trusted (doesn’t require manual verification), ‘false` otherwise.

Returns:

• (Bool) —

  ‘true` if the issue can be trusted (doesn’t require manual verification), ‘false` otherwise.

See Also:

• #requires_verification?

# File 'lib/arachni/issue.rb', line 238

def trusted?
    !requires_verification?
end

#unique_id ⇒ String

Returns A string uniquely identifying this issue.

Returns:

• (String) —

  A string uniquely identifying this issue.

# File 'lib/arachni/issue.rb', line 316

def unique_id
    "#{@mod_name}::#{@elem}::#{@var}::#{@url.split( '?' ).first}"
end

#untrusted? ⇒ Boolean

Returns:

• (Boolean)

See Also:

• #trusted?

# File 'lib/arachni/issue.rb', line 243

def untrusted?
    !trusted?
end