private void button1_Click(object sender, EventArgs e)
{
AutomatedVulnerabilityDetectorVersion2.GUIs.SharedVariables.myTestingForm=new GUIs.TestingForm(1,true);
AutomatedVulnerabilityDetectorVersion2.GUIs.SharedVariables.myTestingForm.Show();
XssAttack xss = new XssAttack(1);
xss.attackEachInputfield(textBox1.Text);
}
public void attack()
{
DB.PagesManager pagesManager = new DB.PagesManager();
SqlInjectionAttack sql = new SqlInjectionAttack(this._profileID);
XssAttack xss = new XssAttack(this._profileID);
RfiAttack rfi = new RfiAttack(this._profileID);
//xss
if (this._xssTest)
{
if (!this.deepScan) // normal mode
{
xss.attackAllInputfields(this._url);
xss.attackAllQueryStrings(this._url);
}
else // deep scan mode
{
xss.attackEachInputfield(this._url);
xss.attackEachQueryString(this._url);
}
pagesManager.setHasXSSed(true, this._url);
}
// sql injection
if (this._sqlTest)
{
if (!this.deepScan)
{
sql.attackAllInputfields(this._url);
sql.attackAllQueryStrings(this._url);
}
else
{
sql.attackEachInputfield(this._url);
sql.attackEachQueryString(this._url);
}
pagesManager.setHasSQLInjection(true, this._url);
}
// rfi
if (this._rfiTest)
{
if (!this.deepScan)
{
rfi.attackAllInputfields(this._url);
rfi.attackAllQueryStrings(this._url);
}
else
{
rfi.attackEachInputfield(this._url);
rfi.attackEachQueryString(this._url);
}
pagesManager.setHasRFIed(true, this._url);
}
// update gui
GUIs.SharedVariables.myTestingForm.refreshExploits();
}
