Module: Yawast

Defined in:

lib/util.rb,
lib/yawast.rb,
lib/version.rb,
lib/scanner/cms.rb,
lib/scanner/iis.rb,
lib/scanner/php.rb,
lib/scanner/ssl.rb,
lib/shared/http.rb,
lib/commands/cms.rb,
lib/commands/ssl.rb,
lib/scanner/core.rb,
lib/commands/head.rb,
lib/commands/scan.rb,
lib/scanner/nginx.rb,
lib/commands/utils.rb,
lib/scanner/apache.rb,
lib/scanner/generic.rb,
lib/scanner/ssl_labs.rb,
lib/scanner/obj_presence.rb

Defined Under Namespace

Modules: Commands, Scanner, Shared Classes: Utilities

Constant Summary

DESCRIPTION =

'The YAWAST Antecedent Web Application Security Toolkit'

HTTP_UA =

"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_4) AppleWebKit/537.36 (KHTML, like Gecko) Yawast/#{VERSION} Chrome/52.0.2743.24 Safari/537.36"

VERSION =

'0.2.1'

Class Method Summary

• .header ⇒ Object
• .set_openssl_options ⇒ Object

Class Method Details

.header ⇒ Object

# File 'lib/yawast.rb', line 29

def self.header
  puts '__   _____  _    _  ___   _____ _____ '
  puts '\ \ / / _ \| |  | |/ _ \ /  ___|_   _|'
  puts ' \ V / /_\ \ |  | / /_\ \\\ `--.  | |  '
  puts '  \ /|  _  | |/\| |  _  | `--. \ | |  '
  puts '  | || | | \  /\  / | | |/\__/ / | |  '
  puts '  \_/\_| |_/\/  \/\_| |_/\____/  \_/  '
  puts ''
  puts "YAWAST v#{VERSION} - #{DESCRIPTION}"
  puts ' Copyright (c) 2013-2016 Adam Caudill <adam@adamcaudill.com>'
  puts ' Support & Documentation: https://github.com/adamcaudill/yawast'
  puts " Ruby #{RUBY_VERSION}-p#{RUBY_PATCHLEVEL}; #{OpenSSL::OPENSSL_VERSION} (#{RUBY_PLATFORM})"
  puts ''
end

.set_openssl_options ⇒ Object

# File 'lib/yawast.rb', line 44

def self.set_openssl_options
  #change certain defaults, to make things work better
  #we prefer RSA, to avoid issues with small DH keys
  OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:ciphers] = "RSA:ALL:COMPLEMENTOFALL"
  OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:verify_mode] = OpenSSL::SSL::VERIFY_NONE
  OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:options] = OpenSSL::SSL::OP_ALL
end