Corsy/core/tests.py

import time

from core.utils import host
from core.requester import requester

def passive_tests(url, acao_header):
	root = host(url)
	if root:
		if root != host(acao_header):
			return 'Third party allowed'
		elif url.startswith('http://'):
			return 'HTTP origin allowed'
		else:
			return False
	elif acao_header == '*':
		return 'Wildcard value'
	else:
		return 'Invalid value'

def active_tests(url, root, scheme, delay):
	acao_header = requester(url, scheme, 'example.com')
	if acao_header:
		if acao_header == (scheme + 'example.com'):
			return 'Origin reflected'
	time.sleep(delay)
	acao_header = requester(url, scheme, root + '.example.com')
	if acao_header:
		if acao_header == (scheme + root + '.example.com'):
			return 'Post domain wildcard'
	time.sleep(delay)
	acao_header = requester(url, scheme, 'd3v' + root)
	if acao_header:
		if acao_header == (scheme + 'd3v' + root):
			return 'Pre domain wildcard'
	time.sleep(delay)
	acao_header = requester(url, '', 'null')
	if acao_header:
		if acao_header == 'null':
			return 'Null origin allowed'
	time.sleep(delay)
	acao_header = requester(url, scheme, root + '%60.example.com')
	if acao_header:
		if '`.example.com' in acao_header:
			return 'Broken parser'
	time.sleep(delay)
	acao_header = requester(url, 'http', root)
	if acao_header:
		if acao_header.startswith('http://'):
			return 'HTTP origin allowed'
		else:
			return passive_tests(url, acao_header)
Add files via upload 2019-11-24 21:12:10 +05:30			`import time`

			`from core.utils import host`
			`from core.requester import requester`

			`def passive_tests(url, acao_header):`
			`root = host(url)`
			`if root:`
			`if root != host(acao_header):`
			`return 'Third party allowed'`
			`elif url.startswith('http://'):`
			`return 'HTTP origin allowed'`
			`else:`
			`return False`
			`elif acao_header == '*':`
			`return 'Wildcard value'`
			`else:`
			`return 'Invalid value'`

			`def active_tests(url, root, scheme, delay):`
			`acao_header = requester(url, scheme, 'example.com')`
			`if acao_header:`
			`if acao_header == (scheme + 'example.com'):`
			`return 'Origin reflected'`
			`time.sleep(delay)`
			`acao_header = requester(url, scheme, root + '.example.com')`
			`if acao_header:`
			`if acao_header == (scheme + root + '.example.com'):`
			`return 'Post domain wildcard'`
			`time.sleep(delay)`
			`acao_header = requester(url, scheme, 'd3v' + root)`
			`if acao_header:`
			`if acao_header == (scheme + 'd3v' + root):`
			`return 'Pre domain wildcard'`
			`time.sleep(delay)`
			`acao_header = requester(url, '', 'null')`
			`if acao_header:`
			`if acao_header == 'null':`
			`return 'Null origin allowed'`
			`time.sleep(delay)`
			`acao_header = requester(url, scheme, root + '%60.example.com')`
			`if acao_header:`
			if '`.example.com' in acao_header:
			`return 'Broken parser'`
			`time.sleep(delay)`
			`acao_header = requester(url, 'http', root)`
			`if acao_header:`
			`if acao_header.startswith('http://'):`
			`return 'HTTP origin allowed'`
			`else:`
			`return passive_tests(url, acao_header)`