Documentation
¶
Index ¶
- func ActiveScanWebSocketConnection(item *db.WebSocketConnection, ...)
- func CreateRequestFromInsertionPoints(history *db.History, builders []InsertionPointBuilder) (*http.Request, error)
- func GetValidInsertionPoints() []string
- func GetValidScanModes() []string
- func IsValidScanMode(mode string) bool
- func SaveInteractionCallback(interaction *server.Interaction)
- type DetectedIssue
- type FullScanOptions
- type FuzzItemOptions
- type HistoryItemScanOptions
- type InsertionPoint
- type InsertionPointBuilder
- type InsertionPointType
- type ScanMode
- type TemplateScanner
- func (f *TemplateScanner) EvaluateDetectionMethod(result TemplateScannerResult, method generation.DetectionMethod) (bool, string, int, error)
- func (f *TemplateScanner) EvaluateResult(result TemplateScannerResult) (bool, string, int, error)
- func (f *TemplateScanner) Run(history *db.History, payloadGenerators []*generation.PayloadGenerator, ...) map[string][]TemplateScannerResult
- type TemplateScannerResult
- type TemplateScannerTask
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ActiveScanWebSocketConnection ¶
func ActiveScanWebSocketConnection(item *db.WebSocketConnection, interactionsManager *integrations.InteractionsManager, payloadGenerators []*generation.PayloadGenerator, options HistoryItemScanOptions)
func GetValidInsertionPoints ¶
func GetValidInsertionPoints() []string
func GetValidScanModes ¶
func GetValidScanModes() []string
func IsValidScanMode ¶
func SaveInteractionCallback ¶
func SaveInteractionCallback(interaction *server.Interaction)
Types ¶
type DetectedIssue ¶
type DetectedIssue struct {
// contains filtered or unexported fields
}
type FullScanOptions ¶
type FullScanOptions struct {
Title string `json:"title" validate:"omitempty,min=1,max=255"`
StartURLs []string `json:"start_urls" validate:"required,dive,url"`
MaxDepth int `json:"max_depth" validate:"min=0"`
MaxPagesToCrawl int `json:"max_pages_to_crawl" validate:"min=0"`
ExcludePatterns []string `json:"exclude_patterns"`
WorkspaceID uint `json:"workspace_id" validate:"required,min=0"`
PagesPoolSize int `json:"pages_pool_size" validate:"min=1,max=100"`
Headers map[string][]string `json:"headers" validate:"omitempty"`
InsertionPoints []string `json:"insertion_points" validate:"omitempty,dive,oneof=parameters urlpath body headers cookies json xml"`
Mode ScanMode `json:"mode" validate:"omitempty,oneof=fast smart fuzz"`
ExperimentalAudits bool `json:"experimental_audits"`
}
type FuzzItemOptions ¶
type HistoryItemScanOptions ¶
type HistoryItemScanOptions struct {
WorkspaceID uint `json:"workspace_id" validate:"required,min=0"`
TaskID uint `json:"task_id" validate:"required,min=0"`
TaskJobID uint `json:"task_job_id" validate:"required,min=0"`
Mode ScanMode `json:"mode" validate:"omitempty,oneof=fast smart fuzz"`
InsertionPoints []string `json:"insertion_points" validate:"omitempty,dive,oneof=parameters urlpath body headers cookies json xml"`
FingerprintTags []string `json:"fingerprint_tags" validate:"omitempty,dive"`
ExperimentalAudits bool `json:"experimental_audits"`
}
func (HistoryItemScanOptions) IsScopedInsertionPoint ¶
func (o HistoryItemScanOptions) IsScopedInsertionPoint(insertionPoint string) bool
type InsertionPoint ¶
type InsertionPoint struct {
Type InsertionPointType
Name string // the name of the parameter/header/cookie
Value string // the current value
ValueType lib.DataType // the type of the value (string, int, float, etc.)
OriginalData string // the original data (URL, header string, body, cookie string) in which this insertion point was found
}
func GetInsertionPoints ¶
func GetInsertionPoints(history *db.History, scoped []string) ([]InsertionPoint, error)
func (*InsertionPoint) String ¶
func (i *InsertionPoint) String() string
type InsertionPointBuilder ¶
type InsertionPointBuilder struct {
Point InsertionPoint
Payload string
}
type InsertionPointType ¶
type InsertionPointType string
const ( InsertionPointTypeParameter InsertionPointType = "parameter" InsertionPointTypeHeader InsertionPointType = "header" InsertionPointTypeBody InsertionPointType = "body" InsertionPointTypeCookie InsertionPointType = "cookie" InsertionPointTypeURLPath InsertionPointType = "urlpath" )
type TemplateScanner ¶
type TemplateScanner struct {
Concurrency int
InteractionsManager *integrations.InteractionsManager
AvoidRepeatedIssues bool
WorkspaceID uint
// contains filtered or unexported fields
}
func (*TemplateScanner) EvaluateDetectionMethod ¶
func (f *TemplateScanner) EvaluateDetectionMethod(result TemplateScannerResult, method generation.DetectionMethod) (bool, string, int, error)
EvaluateDetectionMethod evaluates a detection method and returns a boolean indicating if it matched, a description of the match, the confidence and a possible error
func (*TemplateScanner) EvaluateResult ¶
func (f *TemplateScanner) EvaluateResult(result TemplateScannerResult) (bool, string, int, error)
func (*TemplateScanner) Run ¶
func (f *TemplateScanner) Run(history *db.History, payloadGenerators []*generation.PayloadGenerator, insertionPoints []InsertionPoint, options HistoryItemScanOptions) map[string][]TemplateScannerResult
Run starts the fuzzing job
type TemplateScannerResult ¶
type TemplateScannerResult struct {
Original *db.History
Result *db.History
Response http.Response
ResponseData http_utils.FullResponseData
Err error
Payload generation.Payload
InsertionPoint InsertionPoint
Duration time.Duration
Issue *db.Issue
}
type TemplateScannerTask ¶
type TemplateScannerTask struct {
// contains filtered or unexported fields
}
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.