예제 #1
0
파일: Triggers.cs 프로젝트: 0ks3ii/IronWASP
 public void Add(string RequestTrigger, string RequestTriggerDescription, Request Req)
 {
     if (Req != null)
     {
         Trigger T = new Trigger(RequestTrigger, RequestTriggerDescription, Req);
         this.TriggerList.Add(T);
     }
 }
예제 #2
0
파일: Triggers.cs 프로젝트: 0ks3ii/IronWASP
 public void Add(string RequestTrigger, string RequestTriggerDescription, Request Req, string ResponseTrigger, string ResponseTriggerDescription, Response Res)
 {
     if (Req != null || Res != null)
     {
         Trigger T = new Trigger(RequestTrigger, RequestTriggerDescription, Req, ResponseTrigger, ResponseTriggerDescription, Res);
         this.TriggerList.Add(T);
     }
 }
예제 #3
0
파일: IronUI.cs 프로젝트: herotheo/IronWASP
        internal static void DisplayPluginResultsTrigger(int TriggerID)
        {
            ResetPluginResultsFields();
            Trigger SelectedTrigger;
            if (TriggerID == -1)
            {
                if (Finding.CurrentPluginResult.BaseRequest != null && Finding.CurrentPluginResult.BaseResponse != null)
                {
                    SelectedTrigger = new Trigger("", Finding.CurrentPluginResult.BaseRequest, "", Finding.CurrentPluginResult.BaseResponse);
                }
                else
                {
                    return;
                }
            }
            else
            {
                SelectedTrigger = Finding.CurrentPluginResult.Triggers.GetTrigger(TriggerID);
            }
            if (SelectedTrigger.Request != null)
            {
                DisplayPluginResultsRequest(SelectedTrigger.Request);
            }
            if (SelectedTrigger.Response != null)
            {
                DisplayPluginResultsResponse(SelectedTrigger.Response);
            }

            if (SelectedTrigger.Request != null || SelectedTrigger.Response != null)
            {
                UI.ResultsTriggerOptionsPanel.Visible = true;
            }
            if (UI.SelectForDiffTriggersGrid.Rows.Count > 1)
            {
                UI.ResultsTriggersComparePanel.Visible = true;
            }
            if (Finding.CurrentPluginResult.FromActiveScan)
            {
                UI.ResultsScanTracePanel.Visible = true;
            }

            StringBuilder SB = new StringBuilder(@"{\rtf1{\colortbl ;\red0\green77\blue187;\red247\green150\blue70;\red255\green0\blue0;\red0\green200\blue50;}");
            SB.AppendLine(@" \fs20 ");
            SB.AppendLine(Tools.RtfSafe(Finding.GetTriggerHighlighting(SelectedTrigger, Finding.CurrentPluginResult.FinderType, TriggerID == -1)));
            SB.Append(@" \par \par");
            UI.TriggerHighlightRTB.Rtf = SB.ToString();
        }
예제 #4
0
파일: Main.cs 프로젝트: herotheo/IronWASP
        private void DoDiffBtn_Click(object sender, EventArgs e)
        {
            List<int> TriggerIds = new List<int>();
            TriggerIds = new List<int>(Finding.TriggersSelectedForDiff);

            if (TriggerIds.Count == 2)
            {
                SessionsDiffer SD = new SessionsDiffer();
                Trigger A;
                Trigger B;
                if (TriggerIds[0] == 0)
                {
                    A = new Trigger("", Finding.CurrentPluginResult.BaseRequest, "", Finding.CurrentPluginResult.BaseResponse);
                }
                else
                {
                    A = Finding.CurrentPluginResult.Triggers.GetTrigger(TriggerIds[0] - 1);
                }
                if (TriggerIds[1] == 0)
                {
                    B = new Trigger("", Finding.CurrentPluginResult.BaseRequest, "", Finding.CurrentPluginResult.BaseResponse);
                }
                else
                {
                    B = Finding.CurrentPluginResult.Triggers.GetTrigger(TriggerIds[1] - 1);
                }

                Session First = null;
                Session Second = null;
                if (A.Response == null)
                {
                    First = new Session(A.Request);
                }
                else
                {
                    First = new Session(A.Request, A.Response);
                }
                if (B.Response == null)
                {
                    Second = new Session(B.Request);
                }
                else
                {
                    Second = new Session(B.Request, B.Response);
                }
                SD.SetSessions(First, Second);
                SD.Show();
            }
            else
            {
                if (TriggerIds.Count == 0)
                {
                    MessageBox.Show("Select two items before doing a Diff. You have NOT selected any items currently");
                }
                else if (TriggerIds.Count == 1)
                {
                    MessageBox.Show("Select two items before doing a Diff. You have selected only one item currently");
                }
                else if (TriggerIds.Count > 2)
                {
                    MessageBox.Show("Select two items before doing a Diff. You have selected more than two items currently");
                }
            }
        }
예제 #5
0
파일: Finding.cs 프로젝트: 0ks3ii/IronWASP
        public static string GetTriggerHighlighting(Trigger SelectedTrigger, string FinderType, bool IsNormal, bool IncludeDesc)
        {
            if (IsNormal)
            {
                return @"
            IronWASP's scanner identified this vulnerability by sending special payloads to the application and observing how its responded.

            Before sending the payloads the scanner sends a normal request and sees how the server responds to it. You can see this normal request and response in the adjacent tabs.

            Click on the items named <i<cb>>Trigger<i</cb>> (and an ID number) on the left-side to see the Requests containing the special payloads and corresponding Responses.

            Head to the <i<cb>><i<b>>Trigger Analysis Tools<i</b>><i</cb>> tab to:
            1) Do a diff of the normal Request/Response with the Trigger Request/Response or do a diff of two Trigger Request/Response.
            2) View all the payloads, requests and responses associated with the scan that discovered this vulnerability.
            3) Resend any Requests from this section or perform other similar actions

            ";
            }

            bool RequestTriggerPresent = false;
            bool ResponseTriggerPresent = false;
            bool RequestTriggerHighlighted = false;
            bool ResponseTriggerHighlighted = false;

            string HighlightedRequest = "";
            string HighlightedResponse = "";

            if (SelectedTrigger.RequestTrigger.Length > 0)
            {
                RequestTriggerPresent = true;
                if (SelectedTrigger.Request != null)
                {
                    HighlightedRequest = GetRequestTriggerHighlighting(SelectedTrigger.RequestTrigger, SelectedTrigger.Request);
                    if (HighlightedRequest.Contains("<i<hlg>>") && HighlightedRequest.Contains("<i</hlg>>"))
                    {
                        RequestTriggerHighlighted = true;
                    }
                }
            }

            if (SelectedTrigger.ResponseTrigger.Length > 0)
            {
                ResponseTriggerPresent = true;
                if (SelectedTrigger.Response != null)
                {
                    HighlightedResponse = GetResponseTriggerHighlighting(SelectedTrigger.ResponseTrigger, SelectedTrigger.Response);
                    if (HighlightedResponse.Contains("<i<hlg>>") && HighlightedResponse.Contains("<i</hlg>>"))
                    {
                        ResponseTriggerHighlighted = true;
                    }
                }
            }

            StringBuilder SB = new StringBuilder();
            switch (FinderType)
            {
                case ("ActivePlugin"):

                    if (IncludeDesc)
                    {
                        SB.Append("One pair of Request and Response that was helpful in identifing this vulnerability is available in the adjacent tabs.");
                        SB.Append("<i<br>>");
                        SB.Append(GetHighlightDescription(RequestTriggerPresent, ResponseTriggerPresent));
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    if (RequestTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Request sent by Scanner: <i</hh>>");
                        if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedRequest);
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (RequestTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Request sent by Scanner: <i</hh>>");
                            if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Request, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("The scanner reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.RequestTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                        else if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<hh>> Information about the Request sent by Scanner: <i</hh>>");
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>"); SB.Append("<i<br>><i<br>>");
                        }
                    }

                    if (ResponseTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Response from the Server: <i</hh>>");
                        if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedResponse);
                        SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (ResponseTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Response from the Server: <i</hh>>");
                            if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Response, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("The scanner reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.ResponseTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                        else if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<hh>> Information about the Response from the Server: <i</hh>>");
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>"); SB.Append("<i<br>><i<br>>");
                        }
                        else
                        {
                            if (SelectedTrigger.Response != null)
                            {
                                SB.Append(string.Format("<i<hh>> The Response from the Server came back in {0} milli seconds <i</hh>>", SelectedTrigger.Response.RoundTrip));
                            }
                        }
                    }
                    break;

                case ("PassivePlugin"):
                    if (IncludeDesc)
                    {
                        SB.Append("One pair of Request and Response that was analyzed to identify this vulnerability is available in the adjacent tabs.");
                        SB.Append("<i<br>>");
                        SB.Append(GetHighlightDescription(RequestTriggerPresent, ResponseTriggerPresent));
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    if (RequestTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Analyzed Request: <i</hh>>");
                        if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedRequest);
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (RequestTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Analyzed Request: <i</hh>>");
                            if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Request, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("IronWASP's Passive Analyzer reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.RequestTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                        else if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<hh>> Information about the Analyzed Request: <i</hh>>");
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>"); SB.Append("<i<br>><i<br>>");
                        }

                    }

                    if (ResponseTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Analyzed Response: <i</hh>>");
                        if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedResponse);
                        SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (ResponseTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Analyzed Response: <i</hh>>");
                            if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Response, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("IronWASP's Passive Analyzer reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.ResponseTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                        else if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<hh>> Information about the Analyzed Response: <i</hh>>");
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>"); SB.Append("<i<br>><i<br>>");
                        }
                    }
                    break;

                default:
                    if (IncludeDesc)
                    {
                        SB.Append("One pair of Request and Response that is associated with this vulnerability is available in the adjacent tabs.");
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(GetHighlightDescription(RequestTriggerPresent, ResponseTriggerPresent));
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    if (RequestTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Associated Request: <i</hh>>");
                        if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedRequest);
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (RequestTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Associated Request: <i</hh>>");
                            if (SelectedTrigger.RequestTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.RequestTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Request, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("The component that identified this vulnerability reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.RequestTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                    }

                    if (ResponseTriggerHighlighted)
                    {
                        SB.Append("<i<hh>> Associated Response: <i</hh>>");
                        if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                        }
                        SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        SB.Append(HighlightedResponse);
                        SB.Append("<i<br>>");
                    }
                    else
                    {
                        if (ResponseTriggerPresent)
                        {
                            SB.Append("<i<hh>> Interesting part of Associated Response: <i</hh>>");
                            if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                            {
                                SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>");
                            }
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append("IronWASP is not able to automatically highlight the interesting section of the Response, you would have to identify it manually.");
                            SB.Append("<i<br>>");
                            SB.Append("The component that identified this vulnerability reported the following text as being of interest in this case:");
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                            SB.Append(GetInterestingTextWrap(SelectedTrigger.ResponseTrigger));
                            SB.Append("<i<br>>"); SB.Append("<i<br>>");
                        }
                        else if (SelectedTrigger.ResponseTriggerDescription.Trim().Length > 0)
                        {
                            SB.Append("<i<hh>> Information about the Associated Response: <i</hh>>");
                            SB.Append("<i<br>><i<br>>"); SB.Append("<i<cb>>"); SB.Append(SelectedTrigger.ResponseTriggerDescription); SB.Append("<i</cb>>"); SB.Append("<i<br>><i<br>>");
                        }
                    }
                    break;
            }
            return SB.ToString();
        }
예제 #6
0
파일: Finding.cs 프로젝트: 0ks3ii/IronWASP
 public static string GetTriggerHighlighting(Trigger SelectedTrigger, string FinderType, bool IsNormal)
 {
     return GetTriggerHighlighting(SelectedTrigger, FinderType, IsNormal, true);
 }