Home       Trees       Indices       Help   
w3af homepage
Package plugins :: Package discovery :: Module ghdb :: Class ghdb
[hide private]
[frames] | no frames]

Class ghdb



This plugin searches google to try to find vulnerabilities.

Author: Andres Riancho ( andres.riancho@gmail.com )

Instance Methods [hide private]
  __init__(self)
  discover(self, fuzzableRequest)
  _updateDb(self)
New versions of the ghdb can be downloaded from:
  _doReverseGHDB(self, domain)
In reverse ghdb, i search for site:domain , fetch every page one by one and try MYSELF to match the query thats on the ghdb with the result.
  _reverseMatch(self, gh, response)
Do a reverse search !
  _createRegexs(gh)
Create a regular expression based on a google search
  _doClasicGHDB(self, domain)
In classic GHDB, i search google for every term in the ghdb.
  _classicWorker(self, gh, search)
  _readGhdb(self)
Reads the ghdb.xml file and returns a list of googleHack objects.
  getOptionsXML(self)
This method returns a XML containing the Options that the plugin has.
  setOptions(self, optionsMap)
This method sets all the options that are configured using the user interface generated by the framework using the result of getOptionsXML().
  getPluginDeps(self)
  getLongDesc(self)

Inherited from core.controllers.basePlugin.baseDiscoveryPlugin.baseDiscoveryPlugin: getType

Inherited from core.controllers.basePlugin.baseDiscoveryPlugin.baseDiscoveryPlugin (private): _createFuzzableRequests

Inherited from core.controllers.basePlugin.basePlugin.basePlugin: __eq__, getDesc, getName, printUniq, setUrlOpener

Inherited from core.controllers.basePlugin.basePlugin.basePlugin (private): _sendMutant


Method Details [hide private]

__init__(self)
(Constructor)

 
None
Overrides: core.controllers.basePlugin.baseDiscoveryPlugin.baseDiscoveryPlugin.__init__

discover(self, fuzzableRequest)

 
Parameters:
  • fuzzableRequest - A fuzzableRequest instance that contains (among other things) the URL to test.
Returns:
A list :
  1. New Url's found by plugin, could be empty when method ends.
Overrides: core.controllers.basePlugin.baseDiscoveryPlugin.baseDiscoveryPlugin.discover

_updateDb(self)

 
New versions of the ghdb can be downloaded from:
  • http://johnny.ihackstuff.com/xml/schema.xml

_doReverseGHDB(self, domain)

 
In reverse ghdb, i search for site:domain , fetch every page one by one and try MYSELF to match the query thats on the ghdb with the result.

_reverseMatch(self, gh, response)

 
Do a reverse search !

_createRegexs(gh)

 
Create a regular expression based on a google search
Returns:
A tuple with ( urlRegex, bodyRegex )

_doClasicGHDB(self, domain)

 
In classic GHDB, i search google for every term in the ghdb.

_classicWorker(self, gh, search)

 
None

_readGhdb(self)

 
Reads the ghdb.xml file and returns a list of googleHack objects.

getOptionsXML(self)

 
This method returns a XML containing the Options that the plugin has. Using this XML the framework will build a window, a menu, or some other input method to retrieve the info from the user. The XML has to validate against the xml schema file located at : w3af/core/ui/userInterface.dtd
Returns:
XML with the plugin options.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getOptionsXML

setOptions(self, optionsMap)

 
This method sets all the options that are configured using the user interface generated by the framework using the result of getOptionsXML().
Parameters:
  • OptionList - A dictionary with the options for the plugin.
Returns:
No value is returned.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.setOptions

getPluginDeps(self)

 
Returns:
A list with the names of the plugins that should be runned before the current one.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getPluginDeps

getLongDesc(self)

 
Returns:
A DETAILED description of the plugin functions and features.
Overrides: core.controllers.basePlugin.basePlugin.basePlugin.getLongDesc

   Home       Trees       Indices       Help   
w3af homepage
Generated by Epydoc 3.0alpha3 on Thu Oct 18 19:40:15 2007 http://epydoc.sourceforge.net