Logo Search packages:      
Sourcecode: paros version File versions  Download package

org::parosproxy::paros::core::scanner::plugin::TestInjectionCRLF Class Reference

Inheritance diagram for org::parosproxy::paros::core::scanner::plugin::TestInjectionCRLF:

org::parosproxy::paros::core::scanner::AbstractAppParamPlugin org::parosproxy::paros::core::scanner::AbstractAppPlugin org::parosproxy::paros::core::scanner::AbstractPlugin org::parosproxy::paros::core::scanner::Plugin

List of all members.

Detailed Description

To change the template for this generated type comment go to Window - Preferences - Java - Code Generation - Code and Comments

Definition at line 38 of file TestInjectionCRLF.java.

Public Member Functions

int compareTo (Object obj)
void createParamIfNotExist ()
boolean equals (Object obj)
int getCategory ()
String getCodeName ()
Configuration getConfig ()
String[] getDependency ()
String getDescription ()
int getId ()
String getName ()
String getProperty (String key)
String getReference ()
String getSolution ()
void init (HttpMessage msg, HostProcess parent)
void init ()
boolean isEnabled ()
boolean isVisible ()
void notifyPluginCompleted (HostProcess parent)
void run ()
void scan ()
void scan (HttpMessage msg, String param, String value)
void setConfig (Configuration config)
void setEnabled (boolean enabled)
void setProperty (String key, String value)

Static Public Member Functions

static String getHTMLEncode (String msg)
static String getURLDecode (String msg)
static String getURLEncode (String msg)

Protected Member Functions

void bingo (int risk, int reliability, String name, String description, String uri, String param, String otherInfo, String solution, HttpMessage msg)
void bingo (int risk, int reliability, String uri, String param, String otherInfo, HttpMessage msg)
HttpMessage getBaseMsg ()
Kb getKb ()
Log getLog ()
HttpMessage getNewMsg ()
HostProcess getParent ()
boolean isFileExist (HttpMessage msg)
boolean isStop ()
boolean matchBodyPattern (HttpMessage msg, Pattern pattern, StringBuffer sb)
boolean matchHeaderPattern (HttpMessage msg, String header, Pattern pattern)
void sendAndReceive (HttpMessage msg, boolean isFollowRedirect) throws HttpException, IOException
void sendAndReceive (HttpMessage msg) throws HttpException, IOException
String setParameter (HttpMessage msg, String param, String value)
String stripOff (String body, String pattern)
void writeProgress (String msg)

Static Protected Attributes

static final String CRLF = "\r\n"
static final int PATTERN_PARAM = Pattern.CASE_INSENSITIVE | Pattern.MULTILINE

Private Member Functions

boolean checkResult (HttpMessage msg, String query)

Private Attributes

String cookieTamper1 = "Set-cookie: " + randomString
String cookieTamper2a = "any\r\nSet-cookie: " + randomString
String cookieTamper2b = "any?\r\nSet-cookie: " + randomString
String cookieTamper3a = "any\nSet-cookie: " + randomString
String cookieTamper3b = "any?\nSet-cookie: " + randomString
String cookieTamper4a = "any\r\nSet-cookie: " + randomString + "\r\n"
String cookieTamper4b = "any?\r\nSet-cookie: " + randomString + "\r\n"
String[] PARAM_LIST = {cookieTamper1, cookieTamper2a, cookieTamper2b, cookieTamper3a, cookieTamper3b, cookieTamper4a, cookieTamper4b}
Pattern patternCookieTamper = Pattern.compile("\\nSet-cookie: " + randomString, PATTERN_PARAM)
String randomString = "Tamper=" + Long.toString(Math.abs(staticRandomGenerator.nextLong()))

Static Private Attributes

static Random staticRandomGenerator = new Random()

The documentation for this class was generated from the following file:

Generated by  Doxygen 1.6.0   Back to index