Module: Arachni::Framework::Parts::Audit

Includes:: Support::Mixins::Observable

Included in:: Arachni::Framework

Defined in:: lib/arachni/framework/parts/audit.rb

Overview

Provides Page audit functionality and everything related to it, like handling the Session and Trainer.

Author:

Tasos “Zapotek” Laskos <[email protected]>

Instance Attribute Summary collapse

#failures ⇒ Array<String> readonly

Page URLs which elicited no response from the server and were not audited.
#http ⇒ Arachni::HTTP readonly
#session ⇒ Session readonly

Web application session manager.
#trainer ⇒ Trainer readonly

Instance Method Summary collapse

Instance Attribute Details

#failures ⇒ `Array<String>` (readonly)



42
43
44

# File 'lib/arachni/framework/parts/audit.rb', line 42

def failures
  @failures
end

#http ⇒ `Arachni::HTTP` (readonly)



37
38
39

# File 'lib/arachni/framework/parts/audit.rb', line 37

def http
  @http
end

#session ⇒ `Session` (readonly)



34
35
36

# File 'lib/arachni/framework/parts/audit.rb', line 34

def session
  @session
end

#trainer ⇒ `Trainer` (readonly)



30
31
32

# File 'lib/arachni/framework/parts/audit.rb', line 30

def trainer
  @trainer
end

Instance Method Details

#after_page_audit(&block) ⇒ `Object`

27	# File 'lib/arachni/framework/parts/audit.rb', line 27 advertise :after_page_audit

#audit_page(page) ⇒ `Object`

Note:

Will update the HTTP::Client#cookie_jar with Page#cookie_jar.

Note:

It will audit just the given ‘page` and not any subsequent pages discovered by the Trainer – i.e. ignore any new elements that might appear as a result.

Note:

It will pass the ‘page` to the BrowserCluster for analysis if the DOM depth limit has not been reached and push resulting pages to #push_to_page_queue but will not audit those pages either.

# File 'lib/arachni/framework/parts/audit.rb', line 70

def audit_page( page )
    return if !page

    if page.scope.out?
        print_info "Ignoring page due to exclusion criteria: #{page.dom.url}"
        return false
    end

    # Initialize the BrowserCluster.
    browser_cluster

    state.audited_page_count += 1
    add_to_sitemap( page )

    print_line

    if page.response.ok?
        print_status "[HTTP: #{page.code}] #{page.dom.url}"
    else
        print_error "[HTTP: #{page.code}] #{page.dom.url}"
        print_error "[#{page.response.return_code}] #{page.response.return_message}"
    end

    if page.platforms.any?
        print_info "Identified as: #{page.platforms.to_a.join( ', ' )}"
    end

    if crawl?
        pushed = push_paths_from_page( page )
        print_info "Analysis resulted in #{pushed.size} usable paths."
    end

    if host_has_browser?
        print_info "DOM depth: #{page.dom.depth} (Limit: " <<
                       "#{options.scope.dom_depth_limit})"

        if page.dom.transitions.any?
            print_info '  Transitions:'
            page.dom.print_transitions( method(:print_info), '    ' )
        end
    end

    # Aside from plugins and whatnot, the Trainer hooks here to update the
    # ElementFilter so that it'll know if new elements appear during the
    # audit, so it's a big deal.
    notify_on_page_audit( page )

    @current_url = page.dom.url.to_s

    http.update_cookies( page.cookie_jar )

    # Pass the page to the BrowserCluster to explore its DOM and feed
    # resulting pages back to the framework.
    perform_browser_analysis( page )

    run_http = false

    if checks.any?
        # Remove elements which have already passed through here.
        pre_audit_element_filter( page )

        notify_on_effective_page_audit( page )

        # Run checks which **don't** benefit from fingerprinting first, so
        # that we can use the responses of their HTTP requests to fingerprint
        # the webapp platforms, so that the checks which **do** benefit from
        # knowing the remote platforms can run more efficiently.
        run_http = run_checks( @checks.without_platforms, page )
        run_http = true if run_checks( @checks.with_platforms, page )
    end

    notify_after_page_audit( page )

    # Makes it easier on the GC but it is important that it be called
    # **after** all the callbacks have been executed because they may need
    # access to the cached data and there's no sense in re-parsing.
    page.clear_cache

    if Arachni::Check::Auditor.has_timeout_candidates?
        print_line
        print_status "Processing timeout-analysis candidates for: #{page.dom.url}"
        print_info   '-------------------------------------------'
        Arachni::Check::Auditor.timeout_audit_run
        run_http = true
    end

    run_http
end

#initialize ⇒ `Object`

# File 'lib/arachni/framework/parts/audit.rb', line 44

def initialize
    super

    @http = HTTP::Client.instance

    # Holds page URLs which returned no response.
    @failures = []
    @retries  = {}

    @current_url = ''

    reset_session
    reset_trainer
end

#on_effective_page_audit(&block) ⇒ `Object`

24	# File 'lib/arachni/framework/parts/audit.rb', line 24 advertise :on_effective_page_audit

#on_page_audit(&block) ⇒ `Object`

21	# File 'lib/arachni/framework/parts/audit.rb', line 21 advertise :on_page_audit

Module: Arachni::Framework::Parts::Audit

Overview

Instance Attribute Summary collapse

Instance Method Summary collapse

Methods included from Support::Mixins::Observable

Methods included from Utilities

Methods included from UI::Output

Instance Attribute Details

#failures ⇒ Array<String> (readonly)

#http ⇒ Arachni::HTTP (readonly)

#session ⇒ Session (readonly)

#trainer ⇒ Trainer (readonly)

Instance Method Details

#after_page_audit(&block) ⇒ Object

#audit_page(page) ⇒ Object

#initialize ⇒ Object

#on_effective_page_audit(&block) ⇒ Object

#on_page_audit(&block) ⇒ Object

#failures ⇒ `Array<String>` (readonly)

#http ⇒ `Arachni::HTTP` (readonly)

#session ⇒ `Session` (readonly)

#trainer ⇒ `Trainer` (readonly)

#after_page_audit(&block) ⇒ `Object`

#audit_page(page) ⇒ `Object`

#initialize ⇒ `Object`

#on_effective_page_audit(&block) ⇒ `Object`

#on_page_audit(&block) ⇒ `Object`