def regen_csrf(self):
# Regenerate CSRF playload based on selection
if self.mainWindow.testerImgGen.isChecked():
url = self.mainWindow.testerCSRFURLEdit.text()
htmlresult = CSRFTester.generate_csrf_img(
url, self.mainWindow.csrfGenEdit.text())
self.mainWindow.csrfGenEdit.setText(htmlresult)
def tester_populate_csrf(self, response_id):
row = self.Data.read_responses_by_id(self.cursor, response_id)
if not row:
return
responseItems = interface.data_row_to_response_items(row)
url = responseItems[ResponsesTable.URL]
# Are reqHeaders necessary?
reqHeaders = str(responseItems[ResponsesTable.REQ_HEADERS], 'utf-8',
'ignore')
reqData = str(responseItems[ResponsesTable.REQ_DATA], 'utf-8',
'ignore') # TODO: consider replacement
data = reqHeaders + "\n" + reqData
# Check to ensure that either a GET or a POST is being used and pass that along to the function
# check = re.compile("^(GET|POST)", re.I)
# result = check.match(reqHeaders)
# if not result:
# return()
GET = re.compile("^GET", re.I)
POST = re.compile("^POST", re.I)
if GET.match(reqHeaders):
htmlresult = CSRFTester.generate_csrf_html(url, reqData, "get")
elif POST.match(reqHeaders):
htmlresult = CSRFTester.generate_csrf_html(url, reqData, "post")
else:
return ()
# htmlresult = CSRFTester.generate_csrf_html(url, reqData)
self.mainWindow.testerCSRFURLEdit.setText(url)
self.mainWindow.csrfGenEdit.setText(htmlresult)
self.mainWindow.csrfReqEdit.setPlainText(data)
def tester_populate_csrf(self, response_id):
row = self.Data.read_responses_by_id(self.cursor, response_id)
if not row:
return
responseItems = interface.data_row_to_response_items(row)
url = responseItems[ResponsesTable.URL]
# Are reqHeaders necessary?
reqHeaders = str(responseItems[ResponsesTable.REQ_HEADERS], "utf-8", "ignore")
reqData = str(responseItems[ResponsesTable.REQ_DATA], "utf-8", "ignore") # TODO: consider replacement
data = reqHeaders + "\n" + reqData
# Check to ensure that either a GET or a POST is being used and pass that along to the function
# check = re.compile("^(GET|POST)", re.I)
# result = check.match(reqHeaders)
# if not result:
# return()
GET = re.compile("^GET", re.I)
POST = re.compile("^POST", re.I)
if GET.match(reqHeaders):
htmlresult = CSRFTester.generate_csrf_html(url, reqData, "get")
elif POST.match(reqHeaders):
htmlresult = CSRFTester.generate_csrf_html(url, reqData, "post")
else:
return ()
# htmlresult = CSRFTester.generate_csrf_html(url, reqData)
self.mainWindow.testerCSRFURLEdit.setText(url)
self.mainWindow.csrfGenEdit.setText(htmlresult)
self.mainWindow.csrfReqEdit.setPlainText(data)
def regen_csrf(self):
# Regenerate CSRF playload based on selection
if self.mainWindow.testerImgGen.isChecked():
url = self.mainWindow.testerCSRFURLEdit.text()
htmlresult = CSRFTester.generate_csrf_img(url, self.mainWindow.csrfGenEdit.text())
self.mainWindow.csrfGenEdit.setText(htmlresult)
