def regen_csrf(self): # Regenerate CSRF playload based on selection if self.mainWindow.testerImgGen.isChecked(): url = self.mainWindow.testerCSRFURLEdit.text() htmlresult = CSRFTester.generate_csrf_img( url, self.mainWindow.csrfGenEdit.text()) self.mainWindow.csrfGenEdit.setText(htmlresult)
def tester_populate_csrf(self, response_id): row = self.Data.read_responses_by_id(self.cursor, response_id) if not row: return responseItems = interface.data_row_to_response_items(row) url = responseItems[ResponsesTable.URL] # Are reqHeaders necessary? reqHeaders = str(responseItems[ResponsesTable.REQ_HEADERS], 'utf-8', 'ignore') reqData = str(responseItems[ResponsesTable.REQ_DATA], 'utf-8', 'ignore') # TODO: consider replacement data = reqHeaders + "\n" + reqData # Check to ensure that either a GET or a POST is being used and pass that along to the function # check = re.compile("^(GET|POST)", re.I) # result = check.match(reqHeaders) # if not result: # return() GET = re.compile("^GET", re.I) POST = re.compile("^POST", re.I) if GET.match(reqHeaders): htmlresult = CSRFTester.generate_csrf_html(url, reqData, "get") elif POST.match(reqHeaders): htmlresult = CSRFTester.generate_csrf_html(url, reqData, "post") else: return () # htmlresult = CSRFTester.generate_csrf_html(url, reqData) self.mainWindow.testerCSRFURLEdit.setText(url) self.mainWindow.csrfGenEdit.setText(htmlresult) self.mainWindow.csrfReqEdit.setPlainText(data)
def tester_populate_csrf(self, response_id): row = self.Data.read_responses_by_id(self.cursor, response_id) if not row: return responseItems = interface.data_row_to_response_items(row) url = responseItems[ResponsesTable.URL] # Are reqHeaders necessary? reqHeaders = str(responseItems[ResponsesTable.REQ_HEADERS], "utf-8", "ignore") reqData = str(responseItems[ResponsesTable.REQ_DATA], "utf-8", "ignore") # TODO: consider replacement data = reqHeaders + "\n" + reqData # Check to ensure that either a GET or a POST is being used and pass that along to the function # check = re.compile("^(GET|POST)", re.I) # result = check.match(reqHeaders) # if not result: # return() GET = re.compile("^GET", re.I) POST = re.compile("^POST", re.I) if GET.match(reqHeaders): htmlresult = CSRFTester.generate_csrf_html(url, reqData, "get") elif POST.match(reqHeaders): htmlresult = CSRFTester.generate_csrf_html(url, reqData, "post") else: return () # htmlresult = CSRFTester.generate_csrf_html(url, reqData) self.mainWindow.testerCSRFURLEdit.setText(url) self.mainWindow.csrfGenEdit.setText(htmlresult) self.mainWindow.csrfReqEdit.setPlainText(data)
def regen_csrf(self): # Regenerate CSRF playload based on selection if self.mainWindow.testerImgGen.isChecked(): url = self.mainWindow.testerCSRFURLEdit.text() htmlresult = CSRFTester.generate_csrf_img(url, self.mainWindow.csrfGenEdit.text()) self.mainWindow.csrfGenEdit.setText(htmlresult)