Home       Trees       Indices       Help   
w3af homepage
Package core :: Package controllers :: Package basePlugin :: Module baseAuditPlugin :: Class baseAuditPlugin
[hide private]
[frames] | no frames]

Class baseAuditPlugin



This is the base class for audit plugins, all audit plugins should inherit from it and implement the following methods :
  1. _fuzzRequests(...)


Author: Andres Riancho ( andres.riancho@gmail.com )

Instance Methods [hide private]
  __init__(self)
  _analyzeResult(self, mutant, res)
This method analyzes the result of _sendMutant().
  _fuzzRequests(self, freq)
The freq is a fuzzableRequest that is going to be modified and sent.
  _hasNoBug(self, plugin, kbVar, uri, variable)
Verify if a variable name has a reported sql injection vuln ( in the kb ).
  audit(self, fuzzableRequest)
Receives a fuzzableRequest and forwards it to the internal method _fuzzRequests()
  end(self)
This method is called by w3afCore to let the plugin know that it wont be used anymore.
  getType(self)

Inherited from basePlugin.basePlugin: __eq__, getDesc, getLongDesc, getName, getOptionsXML, getPluginDeps, printUniq, setOptions, setUrlOpener

Inherited from basePlugin.basePlugin (private): _sendMutant


Method Details [hide private]

__init__(self)
(Constructor)

 
None
Overrides: basePlugin.basePlugin.__init__

_analyzeResult(self, mutant, res)

 

This method analyzes the result of _sendMutant().

This method MUST be implemented on every plugin.
Parameters:
  • mutant - The mutant that was sent using _sendMutant
  • res - The response of _sendMutant

_fuzzRequests(self, freq)

 

The freq is a fuzzableRequest that is going to be modified and sent.

This method MUST be implemented on every plugin.
Parameters:
  • freq - A fuzzableRequest

_hasNoBug(self, plugin, kbVar, uri, variable)

 
Verify if a variable name has a reported sql injection vuln ( in the kb ).
Parameters:
  • uri - The uri where we should search for bugs.
  • variable - The variable that is queryed for bugs.
Returns:
True if the variable HAS a reported bug.

audit(self, fuzzableRequest)

 
Receives a fuzzableRequest and forwards it to the internal method _fuzzRequests()
Parameters:
  • fuzzableRequest - A fuzzableRequest instance

end(self)

 
This method is called by w3afCore to let the plugin know that it wont be used anymore. This is helpfull to do some final tests, free some structures, etc.

getType(self)

 
None
Overrides: basePlugin.basePlugin.getType

   Home       Trees       Indices       Help   
w3af homepage
Generated by Epydoc 3.0alpha3 on Thu Oct 18 19:36:18 2007 http://epydoc.sourceforge.net