Package plugins :: Package audit :: Module LDAPi :: Class LDAPi

Class LDAPi

Find LDAP injection bugs.

Author: Andres Riancho ( andres.riancho@gmail.com )

Instance Methods

[hide private]

__init__(self)

audit(self, freq)
Tests an URL for LDAP injection vulnerabilities.

_get_LDAPi_strings(self)
Gets a list of strings to test against the web app.

_analyzeResult(self, mutant, response)
Analyze results of the _sendMutant method.

end(self)
This method is called when the plugin wont be used anymore.

_findLDAPError(self, response)
This method searches for LDAP errors in html's.

_getLDAPErrors(self)

getOptions(self)
Returns: A list of option objects for this plugin.

setOptions(self, OptionList)
This method sets all the options that are configured using the user interface generated by the framework using the result of getOptions().

getPluginDeps(self)
Returns: A list with the names of the plugins that should be runned before the current one.

getLongDesc(self)
Returns: A DETAILED description of the plugin functions and features.

Inherited from core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin: audit_wrapper, getType

Inherited from core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin (private): _hasNoBug

Inherited from core.controllers.basePlugin.basePlugin.basePlugin: __eq__, getDesc, getName, printUniq, setUrlOpener

Inherited from core.controllers.basePlugin.basePlugin.basePlugin (private): _sendMutant

Method Details

[hide private]

init(self)
(Constructor)

Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin.__init__

audit(self, freq)

Tests an URL for LDAP injection vulnerabilities.

Parameters:

freq - A fuzzableRequest

Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin.audit

_get_LDAPi_strings(self)

Gets a list of strings to test against the web app.

Returns:: A list with all LDAPi strings to test.

_analyzeResult(self, mutant, response)

Analyze results of the _sendMutant method.

Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin._analyzeResult

end(self)

This method is called when the plugin wont be used anymore.

Overrides: core.controllers.basePlugin.basePlugin.basePlugin.end

_findLDAPError(self, response)

This method searches for LDAP errors in html's.

Parameters:

response - The HTTP response object

Returns:

A list of errors found on the page

getOptions(self)

This method returns an optionList containing the options objects that the configurable object has. Using this option list the framework will build a window, a menu, or some other input method to retrieve the info from the user.

This method MUST be implemented on every plugin.

Returns:: A list of option objects for this plugin.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getOptions

setOptions(self, OptionList)

This method sets all the options that are configured using the user interface generated by the framework using the result of getOptions().

Parameters:

OptionList - A dictionary with the options for the plugin.

Returns:

No value is returned.

Overrides: core.controllers.basePlugin.basePlugin.basePlugin.setOptions

getPluginDeps(self)

Returns:: A list with the names of the plugins that should be runned before the current one.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getPluginDeps

getLongDesc(self)

Returns:: A DETAILED description of the plugin functions and features.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getLongDesc

Class LDAPi

__init__(self) (Constructor)

audit(self, freq)

_get_LDAPi_strings(self)

_analyzeResult(self, mutant, response)

end(self)

_findLDAPError(self, response)

getOptions(self)

setOptions(self, OptionList)

getPluginDeps(self)

getLongDesc(self)

init(self)
(Constructor)