def setUp(self):
self.loop = asyncio.new_event_loop()
asyncio.set_event_loop(self.loop)
self.handler = cmd_exec.CmdExecEmulator()
self.handler.helper.host_image = "busybox:latest"
self.sess = mock.Mock()
self.sess.sess_uuid.hex = "e86d20b858224e239d3991c1a2650bc7"
def __init__(self, base_dir, db_name, loop=None):
self.emulator_enabled = TannerConfig.get_section('EMULATOR_ENABLED')
self.emulators = {
'rfi':
rfi.RfiEmulator(base_dir, loop)
if self.emulator_enabled['rfi'] else None,
'lfi':
lfi.LfiEmulator() if self.emulator_enabled['lfi'] else None,
'xss':
xss.XssEmulator() if self.emulator_enabled['xss'] else None,
'sqli':
sqli.SqliEmulator(db_name, base_dir)
if self.emulator_enabled['sqli'] else None,
'cmd_exec':
cmd_exec.CmdExecEmulator()
if self.emulator_enabled['cmd_exec'] else None,
'php_code_injection':
php_code_injection.PHPCodeInjection(loop)
if self.emulator_enabled['php_code_injection'] else None,
'crlf':
crlf.CRLFEmulator() if self.emulator_enabled['crlf'] else None
}
self.get_emulators = [
'sqli', 'rfi', 'lfi', 'xss', 'php_code_injection', 'cmd_exec',
'crlf'
]
self.post_emulators = [
'sqli', 'rfi', 'lfi', 'xss', 'php_code_injection', 'cmd_exec',
'crlf'
]
self.cookie_emulators = ['sqli']
def __init__(self, base_dir, db_name, loop=None):
self.emulators = {
'rfi': rfi.RfiEmulator(base_dir, loop) if TannerConfig.get('EMULATOR_ENABLED', 'rfi') else None,
'lfi': lfi.LfiEmulator() if TannerConfig.get('EMULATOR_ENABLED', 'lfi') else None,
'xss': xss.XssEmulator() if TannerConfig.get('EMULATOR_ENABLED', 'xss') else None,
'sqli': sqli.SqliEmulator(db_name, base_dir) if TannerConfig.get('EMULATOR_ENABLED', 'sqli') else None,
'cmd_exec': cmd_exec.CmdExecEmulator() if TannerConfig.get('EMULATOR_ENABLED', 'cmd_exec') else None
}
self.get_emulators = ['sqli', 'rfi', 'lfi', 'xss', 'cmd_exec']
self.post_emulators = ['sqli', 'rfi', 'lfi', 'xss', 'cmd_exec']
self.cookie_emulators = ['sqli']
def __init__(self, base_dir, db_name, loop=None):
self.emulator_enabled = {
'rfi': TannerConfig.get('EMULATOR_ENABLED', 'rfi'),
'sqli': TannerConfig.get('EMULATOR_ENABLED', 'sqli'),
'lfi': TannerConfig.get('EMULATOR_ENABLED', 'lfi'),
'xss': TannerConfig.get('EMULATOR_ENABLED', 'xss'),
'cmd_exec': TannerConfig.get('EMULATOR_ENABLED', 'cmd_exec'),
'php_code_injection': TannerConfig.get('EMULATOR_ENABLED', 'php_code_injection'),
'php_object_injection': TannerConfig.get('EMULATOR_ENABLED', 'php_object_injection'),
'crlf': TannerConfig.get('EMULATOR_ENABLED', 'crlf'),
'xxe_injection': TannerConfig.get('EMULATOR_ENABLED', 'xxe_injection'),
'template_injection': TannerConfig.get('EMULATOR_ENABLED', 'template_injection')
}
self.emulators = {
'rfi': rfi.RfiEmulator(base_dir, loop=loop, allow_insecure=TannerConfig.get("RFI", 'allow_insecure'))
if self.emulator_enabled['rfi'] else None,
'lfi': lfi.LfiEmulator() if self.emulator_enabled['lfi'] else None,
'xss': xss.XssEmulator() if self.emulator_enabled['xss'] else None,
'sqli': sqli.SqliEmulator(db_name, base_dir) if self.emulator_enabled['sqli'] else None,
'cmd_exec': cmd_exec.CmdExecEmulator() if self.emulator_enabled['cmd_exec'] else None,
'php_code_injection': php_code_injection.PHPCodeInjection(loop) if self.emulator_enabled[
'php_code_injection'] else None,
'php_object_injection': php_object_injection.PHPObjectInjection(loop) if self.emulator_enabled[
'php_object_injection'] else None,
'crlf': crlf.CRLFEmulator() if self.emulator_enabled['crlf'] else None,
'xxe_injection': xxe_injection.XXEInjection(loop) if self.emulator_enabled['xxe_injection'] else None,
'template_injection': template_injection.TemplateInjection(loop) if
self.emulator_enabled['template_injection'] else None
}
self.get_emulators = ['sqli', 'rfi', 'lfi', 'xss', 'php_code_injection', 'php_object_injection',
'cmd_exec', 'crlf', 'xxe_injection', 'template_injection']
self.post_emulators = ['sqli', 'rfi', 'lfi', 'xss', 'php_code_injection', 'php_object_injection',
'cmd_exec', 'crlf', 'xxe_injection', 'template_injection']
self.cookie_emulators = ['sqli', 'php_object_injection']
def __init__(self, base_dir, db_name, loop=None):
self.emulator_enabled = {
"rfi":
TannerConfig.get("EMULATOR_ENABLED", "rfi"),
"sqli":
TannerConfig.get("EMULATOR_ENABLED", "sqli"),
"lfi":
TannerConfig.get("EMULATOR_ENABLED", "lfi"),
"xss":
TannerConfig.get("EMULATOR_ENABLED", "xss"),
"cmd_exec":
TannerConfig.get("EMULATOR_ENABLED", "cmd_exec"),
"php_code_injection":
TannerConfig.get("EMULATOR_ENABLED", "php_code_injection"),
"php_object_injection":
TannerConfig.get("EMULATOR_ENABLED", "php_object_injection"),
"crlf":
TannerConfig.get("EMULATOR_ENABLED", "crlf"),
"xxe_injection":
TannerConfig.get("EMULATOR_ENABLED", "xxe_injection"),
"template_injection":
TannerConfig.get("EMULATOR_ENABLED", "template_injection"),
}
self.emulators = {
"rfi":
rfi.RfiEmulator(base_dir,
loop=loop,
allow_insecure=TannerConfig.get(
"RFI", "allow_insecure"))
if self.emulator_enabled["rfi"] else None,
"lfi":
lfi.LfiEmulator() if self.emulator_enabled["lfi"] else None,
"xss":
xss.XssEmulator() if self.emulator_enabled["xss"] else None,
"sqli":
sqli.SqliEmulator(db_name, base_dir)
if self.emulator_enabled["sqli"] else None,
"cmd_exec":
cmd_exec.CmdExecEmulator()
if self.emulator_enabled["cmd_exec"] else None,
"php_code_injection":
php_code_injection.PHPCodeInjection(loop)
if self.emulator_enabled["php_code_injection"] else None,
"php_object_injection":
php_object_injection.PHPObjectInjection(loop)
if self.emulator_enabled["php_object_injection"] else None,
"crlf":
crlf.CRLFEmulator() if self.emulator_enabled["crlf"] else None,
"xxe_injection":
xxe_injection.XXEInjection(loop)
if self.emulator_enabled["xxe_injection"] else None,
"template_injection":
template_injection.TemplateInjection(loop)
if self.emulator_enabled["template_injection"] else None,
}
self.get_emulators = [
"sqli",
"rfi",
"lfi",
"xss",
"php_code_injection",
"php_object_injection",
"cmd_exec",
"crlf",
"xxe_injection",
"template_injection",
]
self.post_emulators = [
"sqli",
"rfi",
"lfi",
"xss",
"php_code_injection",
"php_object_injection",
"cmd_exec",
"crlf",
"xxe_injection",
"template_injection",
]
self.cookie_emulators = ["sqli", "php_object_injection"]
