Home       Trees       Indices       Help   
w3af homepage
Package plugins :: Package audit :: Module mxInjection :: Class mxInjection
[hide private]
[frames] | no frames]

Class mxInjection



This plugin tests for MX injection vulnerabilities.

Author: Andres Riancho ( andres.riancho@gmail.com )

Instance Methods [hide private]
  __init__(self)
  _fuzzRequests(self, freq)
Tests an URL for mx injection vulnerabilities.
  _analyzeResult(self, mutant, response)
Analyze results of the _sendMutant method.
  end(self)
This method is called when the plugin wont be used anymore.
  _getmxInjectionStrings(self)
Gets a list of strings to test against the web app.
  _findmxError(self, htmlString)
This method searches for mx errors in html's.
  _getmxErrors(self)
  getOptionsXML(self)
This method returns a XML containing the Options that the plugin has.
  setOptions(self, OptionList)
This method sets all the options that are configured using the user interface generated by the framework using the result of getOptionsXML().
  getPluginDeps(self)
  getLongDesc(self)

Inherited from core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin: audit, getType

Inherited from core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin (private): _hasNoBug

Inherited from core.controllers.basePlugin.basePlugin.basePlugin: __eq__, getDesc, getName, printUniq, setUrlOpener

Inherited from core.controllers.basePlugin.basePlugin.basePlugin (private): _sendMutant


Method Details [hide private]

__init__(self)
(Constructor)

 
None
Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin.__init__

_fuzzRequests(self, freq)

 
Tests an URL for mx injection vulnerabilities.
Parameters:
  • freq - A fuzzableRequest
Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin._fuzzRequests

_analyzeResult(self, mutant, response)

 
Analyze results of the _sendMutant method.
Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin._analyzeResult

end(self)

 
This method is called when the plugin wont be used anymore.
Overrides: core.controllers.basePlugin.baseAuditPlugin.baseAuditPlugin.end

_getmxInjectionStrings(self)

 
Gets a list of strings to test against the web app.
Returns:
A list with all mxInjection strings to test. Example: [ '"','f00000']

_findmxError(self, htmlString)

 
This method searches for mx errors in html's.
Parameters:
  • htmlString - The html string where the method searches for mx errors
Returns:
True if a mx was found on the site, False otherwise.

_getmxErrors(self)

 
None

getOptionsXML(self)

 
This method returns a XML containing the Options that the plugin has. Using this XML the framework will build a window, a menu, or some other input method to retrieve the info from the user. The XML has to validate against the xml schema file located at : w3af/core/ui/userInterface.dtd
Returns:
XML with the plugin options.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getOptionsXML

setOptions(self, OptionList)

 
This method sets all the options that are configured using the user interface generated by the framework using the result of getOptionsXML().
Parameters:
  • OptionList - A dictionary with the options for the plugin.
Returns:
No value is returned.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.setOptions

getPluginDeps(self)

 
Returns:
A list with the names of the plugins that should be runned before the current one.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getPluginDeps

getLongDesc(self)

 
Returns:
A DETAILED description of the plugin functions and features.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getLongDesc

   Home       Trees       Indices       Help   
w3af homepage
Generated by Epydoc 3.0alpha3 on Thu Oct 18 19:38:57 2007 http://epydoc.sourceforge.net