Documentation ¶
Index ¶
- func ActiveScanWebSocketConnection(item *db.WebSocketConnection, ...)
- func CreateRequestFromInsertionPoints(history *db.History, builders []InsertionPointBuilder) (*http.Request, error)
- func GetValidInsertionPoints() []string
- func GetValidScanModes() []string
- func IsValidScanMode(mode string) bool
- func SaveInteractionCallback(interaction *server.Interaction)
- type DetectedIssue
- type FullScanOptions
- type FuzzItemOptions
- type HistoryItemScanOptions
- type InsertionPoint
- type InsertionPointBuilder
- type InsertionPointType
- type ScanMode
- type TemplateScanner
- func (f *TemplateScanner) EvaluateDetectionMethod(result TemplateScannerResult, method generation.DetectionMethod) (bool, string, int, error)
- func (f *TemplateScanner) EvaluateResult(result TemplateScannerResult) (bool, string, int, error)
- func (f *TemplateScanner) Run(history *db.History, payloadGenerators []*generation.PayloadGenerator, ...) map[string][]TemplateScannerResult
- type TemplateScannerResult
- type TemplateScannerTask
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ActiveScanWebSocketConnection ¶
func ActiveScanWebSocketConnection(item *db.WebSocketConnection, interactionsManager *integrations.InteractionsManager, payloadGenerators []*generation.PayloadGenerator, options HistoryItemScanOptions)
func GetValidInsertionPoints ¶
func GetValidInsertionPoints() []string
func GetValidScanModes ¶
func GetValidScanModes() []string
func IsValidScanMode ¶
func SaveInteractionCallback ¶
func SaveInteractionCallback(interaction *server.Interaction)
Types ¶
type DetectedIssue ¶
type DetectedIssue struct {
// contains filtered or unexported fields
}
type FullScanOptions ¶
type FullScanOptions struct { Title string `json:"title" validate:"omitempty,min=1,max=255"` StartURLs []string `json:"start_urls" validate:"required,dive,url"` MaxDepth int `json:"max_depth" validate:"min=0"` MaxPagesToCrawl int `json:"max_pages_to_crawl" validate:"min=0"` ExcludePatterns []string `json:"exclude_patterns"` WorkspaceID uint `json:"workspace_id" validate:"required,min=0"` PagesPoolSize int `json:"pages_pool_size" validate:"min=1,max=100"` Headers map[string][]string `json:"headers" validate:"omitempty"` InsertionPoints []string `json:"insertion_points" validate:"omitempty,dive,oneof=parameters urlpath body headers cookies json xml"` Mode ScanMode `json:"mode" validate:"omitempty,oneof=fast smart fuzz"` ExperimentalAudits bool `json:"experimental_audits"` }
type FuzzItemOptions ¶
type HistoryItemScanOptions ¶
type HistoryItemScanOptions struct { WorkspaceID uint `json:"workspace_id" validate:"required,min=0"` TaskID uint `json:"task_id" validate:"required,min=0"` TaskJobID uint `json:"task_job_id" validate:"required,min=0"` Mode ScanMode `json:"mode" validate:"omitempty,oneof=fast smart fuzz"` InsertionPoints []string `json:"insertion_points" validate:"omitempty,dive,oneof=parameters urlpath body headers cookies json xml"` FingerprintTags []string `json:"fingerprint_tags" validate:"omitempty,dive"` ExperimentalAudits bool `json:"experimental_audits"` }
func (HistoryItemScanOptions) IsScopedInsertionPoint ¶
func (o HistoryItemScanOptions) IsScopedInsertionPoint(insertionPoint string) bool
type InsertionPoint ¶
type InsertionPoint struct { Type InsertionPointType Name string // the name of the parameter/header/cookie Value string // the current value ValueType lib.DataType // the type of the value (string, int, float, etc.) OriginalData string // the original data (URL, header string, body, cookie string) in which this insertion point was found }
func GetInsertionPoints ¶
func GetInsertionPoints(history *db.History, scoped []string) ([]InsertionPoint, error)
func (*InsertionPoint) String ¶
func (i *InsertionPoint) String() string
type InsertionPointBuilder ¶
type InsertionPointBuilder struct { Point InsertionPoint Payload string }
type InsertionPointType ¶
type InsertionPointType string
const ( InsertionPointTypeParameter InsertionPointType = "parameter" InsertionPointTypeHeader InsertionPointType = "header" InsertionPointTypeBody InsertionPointType = "body" InsertionPointTypeCookie InsertionPointType = "cookie" InsertionPointTypeURLPath InsertionPointType = "urlpath" )
type TemplateScanner ¶
type TemplateScanner struct { Concurrency int InteractionsManager *integrations.InteractionsManager AvoidRepeatedIssues bool WorkspaceID uint // contains filtered or unexported fields }
func (*TemplateScanner) EvaluateDetectionMethod ¶
func (f *TemplateScanner) EvaluateDetectionMethod(result TemplateScannerResult, method generation.DetectionMethod) (bool, string, int, error)
EvaluateDetectionMethod evaluates a detection method and returns a boolean indicating if it matched, a description of the match, the confidence and a possible error
func (*TemplateScanner) EvaluateResult ¶
func (f *TemplateScanner) EvaluateResult(result TemplateScannerResult) (bool, string, int, error)
func (*TemplateScanner) Run ¶
func (f *TemplateScanner) Run(history *db.History, payloadGenerators []*generation.PayloadGenerator, insertionPoints []InsertionPoint, options HistoryItemScanOptions) map[string][]TemplateScannerResult
Run starts the fuzzing job
type TemplateScannerResult ¶
type TemplateScannerResult struct { Original *db.History Result *db.History Response http.Response ResponseData http_utils.FullResponseData Err error Payload generation.Payload InsertionPoint InsertionPoint Duration time.Duration Issue *db.Issue }
type TemplateScannerTask ¶
type TemplateScannerTask struct {
// contains filtered or unexported fields
}
Source Files ¶
Click to show internal directories.
Click to hide internal directories.