Python URLPartsMutantの例

コード例 #1

ファイル: test_urlparts_mutant.py プロジェクト: johnjohnsp1/w3af

    def test_basics(self):
        divided_path = DataContainer()
        divided_path["start"] = "/"
        divided_path["modified_part"] = "ping!"
        divided_path["end"] = "/bar"

        freq = HTTPQSRequest(URL("http://www.w3af.com/foo/bar"))
        m = URLPartsMutant(freq)
        m.set_mutant_dc(divided_path)
        m.set_var("modified_part")
        self.assertEqual(m.get_url().url_string, u"http://www.w3af.com/ping%21/bar")

        expected_mod_value = 'The sent urlparts is: "/ping!/bar".'
        generated_mod_value = m.print_mod_value()

        self.assertEqual(generated_mod_value, expected_mod_value)

        expected_found_at = (
            '"http://www.w3af.com/ping%21/bar", using HTTP method'
            " GET. The modified parameter was the URL path, with"
            ' value: "ping!".'
        )
        generated_found_at = m.found_at()

        self.assertEqual(generated_found_at, expected_found_at)

コード例 #2

ファイル: test_urlparts_mutant.py プロジェクト: Daisymei/w3af

    def test_basics(self):
        divided_path = URLPartsContainer('/', 'ping!', '/bar')

        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))
        m = URLPartsMutant(freq)
        m.set_dc(divided_path)
        self.assertEqual(m.get_url().url_string,
                         u'http://www.w3af.com/ping%21/bar')

        expected_found_at = '"http://www.w3af.com/ping%21/bar", using HTTP method'\
                            ' GET. The modified parameter was the URL path, with'\
                            ' value: "ping!".'
        generated_found_at = m.found_at()

        self.assertEqual(generated_found_at, expected_found_at)

コード例 #3

ファイル: test_urlparts_mutant.py プロジェクト: Daisymei/w3af

    def test_valid_results_double_encoding(self):
        """
        In this case the number of generated mutants is higher due to the
        encoded and double encoded versions which are returned. In the previous
        case, and given that both the encoded and double encoded versions were
        the same, the number of generated mutants was 4.
        """
        payloads = ['ls - la', 'ping 127.0.0.1 -c 5',
                    'http://127.0.0.1:8015/test/']
        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(freq, payloads, [],
                                                          False,
                                                          self.fuzzer_config)

        expected_urls = ['http://www.w3af.com/ls+-+la/bar',
                         'http://www.w3af.com/ls%2B-%2Bla/bar',
                         'http://www.w3af.com/ping+127.0.0.1+-c+5/bar',
                         'http://www.w3af.com/ping%2B127.0.0.1%2B-c%2B5/bar',
                         'http://www.w3af.com/foo/ls+-+la',
                         'http://www.w3af.com/foo/ls%2B-%2Bla',
                         'http://www.w3af.com/foo/ping+127.0.0.1+-c+5',
                         'http://www.w3af.com/foo/ping%2B127.0.0.1%2B-c%2B5',
                         'http://www.w3af.com/http%3A%2F%2F127.0.0.1%3A8015%2Ftest%2F/bar',
                         'http://www.w3af.com/http%253A%252F%252F127.0.0.1%253A8015%252Ftest%252F/bar',
                         'http://www.w3af.com/foo/http%3A%2F%2F127.0.0.1%3A8015%2Ftest%2F',
                         'http://www.w3af.com/foo/http%253A%252F%252F127.0.0.1%253A8015%252Ftest%252F']

        generated_urls = set([m.get_url().url_string for m in generated_mutants])

        self.assertEqual(set(expected_urls), generated_urls)

コード例 #4

ファイル: test_urlparts_mutant.py プロジェクト: intfrr/Tortazo

    def test_valid_results_double_encoding(self):
        """
        In this case the number of generated mutants is higher due to the
        encoded and double encoded versions which are returned. In the previous
        case, and given that both the encoded and double encoded versions were
        the same, the number of generated mutants was 4.
        """
        payloads = [
            'ls - la', 'ping 127.0.0.1 -c 5', 'http://127.0.0.1:8015/test/'
        ]
        freq = HTTPQSRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(
            freq, payloads, [], False, self.fuzzer_config)

        expected_urls = [
            'http://www.w3af.com/ls+-+la/bar',
            'http://www.w3af.com/ls%2B-%2Bla/bar',
            'http://www.w3af.com/ping+127.0.0.1+-c+5/bar',
            'http://www.w3af.com/ping%2B127.0.0.1%2B-c%2B5/bar',
            'http://www.w3af.com/foo/ls+-+la',
            'http://www.w3af.com/foo/ls%2B-%2Bla',
            'http://www.w3af.com/foo/ping+127.0.0.1+-c+5',
            'http://www.w3af.com/foo/ping%2B127.0.0.1%2B-c%2B5',
            'http://www.w3af.com/http%3A%2F%2F127.0.0.1%3A8015%2Ftest%2F/bar',
            'http://www.w3af.com/http%253A%252F%252F127.0.0.1%253A8015%252Ftest%252F/bar',
            'http://www.w3af.com/foo/http%3A%2F%2F127.0.0.1%3A8015%2Ftest%2F',
            'http://www.w3af.com/foo/http%253A%252F%252F127.0.0.1%253A8015%252Ftest%252F'
        ]

        generated_urls = set(
            [m.get_url().url_string for m in generated_mutants])

        self.assertEqual(set(expected_urls), generated_urls)

コード例 #5

ファイル: test_urlparts_mutant.py プロジェクト: johnjohnsp1/w3af

    def test_config_true(self):
        fuzzer_config = {"fuzz_url_parts": True}
        freq = HTTPQSRequest(URL("http://www.w3af.com/foo/bar"))

        generated_mutants = URLPartsMutant.create_mutants(freq, self.payloads, [], False, fuzzer_config)

        self.assertNotEqual(len(generated_mutants), 0, generated_mutants)

コード例 #6

ファイル: test_urlparts_mutant.py プロジェクト: intfrr/Tortazo

    def test_config_true(self):
        fuzzer_config = {'fuzz_url_parts': True}
        freq = HTTPQSRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(
            freq, self.payloads, [], False, fuzzer_config)

        self.assertNotEqual(len(generated_mutants), 0, generated_mutants)

コード例 #7

ファイル: test_urlparts_mutant.py プロジェクト: Daisymei/w3af

    def test_config_false(self):
        fuzzer_config = {'fuzz_url_parts': False}
        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(
            freq, self.payloads, [],
            False, fuzzer_config)

        self.assertEqual(len(generated_mutants), 0, generated_mutants)

コード例 #8

ファイル: test_urlparts_mutant.py プロジェクト: Daisymei/w3af

    def test_valid_results(self):
        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(
            freq, self.payloads, [],
            False, self.fuzzer_config)

        self.assertEqual(len(generated_mutants), 4, generated_mutants)

        expected_urls = [URL('http://www.w3af.com/abc/bar'),
                         URL('http://www.w3af.com/def/bar'),
                         URL('http://www.w3af.com/foo/abc'),
                         URL('http://www.w3af.com/foo/def')]

        generated_urls = [m.get_url() for m in generated_mutants]

        self.assertEqual(expected_urls, generated_urls)

コード例 #9

    def test_valid_results(self):
        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))

        generated_mutants = URLPartsMutant.create_mutants(
                freq, self.payloads, [],
                False, self.fuzzer_config)

        self.assertEqual(len(generated_mutants), 4, generated_mutants)

        expected_urls = [URL('http://www.w3af.com/abc/bar'),
                         URL('http://www.w3af.com/def/bar'),
                         URL('http://www.w3af.com/foo/abc'),
                         URL('http://www.w3af.com/foo/def')]

        generated_urls = [m.get_url() for m in generated_mutants]

        self.assertEqual(expected_urls, generated_urls)

コード例 #10

ファイル: test_urlparts_mutant.py プロジェクト: intfrr/Tortazo

    def test_basics(self):
        divided_path = DataContainer()
        divided_path['start'] = '/'
        divided_path['modified_part'] = 'ping!'
        divided_path['end'] = '/bar'

        freq = HTTPQSRequest(URL('http://www.w3af.com/foo/bar'))
        m = URLPartsMutant(freq)
        m.set_mutant_dc(divided_path)
        m.set_var('modified_part')
        self.assertEqual(m.get_url().url_string,
                         u'http://www.w3af.com/ping%21/bar')

        expected_mod_value = 'The sent urlparts is: "/ping!/bar".'
        generated_mod_value = m.print_mod_value()

        self.assertEqual(generated_mod_value, expected_mod_value)

        expected_found_at = '"http://www.w3af.com/ping%21/bar", using HTTP method'\
                            ' GET. The modified parameter was the URL path, with'\
                            ' value: "ping!".'
        generated_found_at = m.found_at()

        self.assertEqual(generated_found_at, expected_found_at)

コード例 #11

    def test_forced_url_parts(self):
        freq = FuzzableRequest(URL('http://www.w3af.com/static/foo/bar.ext'))
        freq.set_force_fuzzing_url_parts([('/static/', False), ('foo', True),
                                          ('/bar.', False), ('ext', True)])

        generated_mutants = URLPartsMutant.create_mutants(
            freq, self.payloads, [], False, self.fuzzer_config)

        expected_urls = [
            'http://www.w3af.com/static/abc/bar.ext',
            'http://www.w3af.com/static/def/bar.ext',
            'http://www.w3af.com/static/foo/bar.abc',
            'http://www.w3af.com/static/foo/bar.def'
        ]

        generated_urls = set(
            [m.get_url().url_string for m in generated_mutants])

        self.assertEqual(set(expected_urls), generated_urls)

コード例 #12

    def test_basics(self):
        divided_path = URLPartsContainer('/', 'ping!', '/bar')

        freq = FuzzableRequest(URL('http://www.w3af.com/foo/bar'))
        m = URLPartsMutant(freq)
        m.set_dc(divided_path)
        self.assertEqual(m.get_url().url_string,
                         u'http://www.w3af.com/ping%21/bar')

        expected_found_at = '"http://www.w3af.com/ping%21/bar", using HTTP method'\
                            ' GET. The modified parameter was the URL path, with'\
                            ' value: "ping!".'
        generated_found_at = m.found_at()

        self.assertEqual(generated_found_at, expected_found_at)

コード例 #13

ファイル: filename_mutant.py プロジェクト: intfrr/Tortazo

 def __init__(self, freq):
     URLPartsMutant.__init__(self, freq)

コード例 #14

ファイル: filename_mutant.py プロジェクト: masterapocalyptic/Tortazo-spanishtranslate

 def __init__(self, freq):
     URLPartsMutant.__init__(self, freq)