XSStrike/core/checker.py

import copy
from fuzzywuzzy import fuzz
import re
from urllib.parse import unquote

from core.config import xsschecker
from core.requester import requester
from core.utils import replaceValue, fillHoles


def checker(url, params, headers, GET, delay, payload, positions, timeout, encoding):
    checkString = 'st4r7s' + payload + '3nd'
    if encoding:
        checkString = encoding(unquote(checkString))
    response = requester(url, replaceValue(
        params, xsschecker, checkString, copy.deepcopy), headers, GET, delay, timeout).text.lower()
    reflectedPositions = []
    for match in re.finditer('st4r7s', response):
        reflectedPositions.append(match.start())
    filledPositions = fillHoles(positions, reflectedPositions)
    #  Itretating over the reflections
    num = 0
    efficiencies = []
    for position in filledPositions:
        allEfficiencies = []
        try:
            reflected = response[reflectedPositions[num]
                :reflectedPositions[num]+len(checkString)]
            efficiency = fuzz.partial_ratio(reflected, checkString.lower())
            allEfficiencies.append(efficiency)
        except IndexError:
            pass
        if position:
            reflected = response[position:position+len(checkString)]
            if encoding:
                checkString = encoding(checkString.lower())
            efficiency = fuzz.partial_ratio(reflected, checkString)
            if reflected[:-2] == ('\\%s' % checkString.replace('st4r7s', '').replace('3nd', '')):
                efficiency = 90
            allEfficiencies.append(efficiency)
            efficiencies.append(max(allEfficiencies))
        else:
            efficiencies.append(0)
        num += 1
    return list(filter(None, efficiencies))
Add files via upload 2018-10-27 18:58:52 +05:30			`import copy`
			`from fuzzywuzzy import fuzz`
Fixed HTML comment context handling + Refactor 2018-11-15 15:41:01 +05:30			`import re`
			`from urllib.parse import unquote`

Add files via upload 2018-10-27 18:58:52 +05:30			`from core.config import xsschecker`
			`from core.requester import requester`
optimized utilities 2018-11-18 22:46:31 +01:00			`from core.utils import replaceValue, fillHoles`
Add files via upload 2018-10-27 18:58:52 +05:30
Documentation and pep8 compilance 2018-11-16 21:13:45 +05:30
Ability to encode payloads, Fixed a bug in bruteforcer 2018-11-13 16:47:00 +05:30			`def checker(url, params, headers, GET, delay, payload, positions, timeout, encoding):`
Add files via upload 2018-11-11 14:56:19 +05:30			`checkString = 'st4r7s' + payload + '3nd'`
Ability to encode payloads, Fixed a bug in bruteforcer 2018-11-13 16:47:00 +05:30			`if encoding:`
			`checkString = encoding(unquote(checkString))`
optimized utilities 2018-11-18 22:46:31 +01:00			`response = requester(url, replaceValue(`
			`params, xsschecker, checkString, copy.deepcopy), headers, GET, delay, timeout).text.lower()`
Handle dynamic number of reflections (Fixes #78) 2018-10-30 16:28:56 +05:30			`reflectedPositions = []`
			`for match in re.finditer('st4r7s', response):`
			`reflectedPositions.append(match.start())`
			`filledPositions = fillHoles(positions, reflectedPositions)`
Fixed HTML comment context handling + Refactor 2018-11-15 15:41:01 +05:30			`# Itretating over the reflections`
Add files via upload 2018-11-11 14:56:19 +05:30			`num = 0`
Add files via upload 2018-10-27 18:58:52 +05:30			`efficiencies = []`
Add files via upload 2018-11-11 14:56:19 +05:30			`for position in filledPositions:`
			`allEfficiencies = []`
			`try:`
Documentation and pep8 compilance 2018-11-16 21:13:45 +05:30			`reflected = response[reflectedPositions[num]`
			`:reflectedPositions[num]+len(checkString)]`
Add files via upload 2018-11-11 14:56:19 +05:30			`efficiency = fuzz.partial_ratio(reflected, checkString.lower())`
			`allEfficiencies.append(efficiency)`
			`except IndexError:`
			`pass`
Handle dynamic number of reflections (Fixes #78) 2018-10-30 16:28:56 +05:30			`if position:`
			`reflected = response[position:position+len(checkString)]`
Ability to encode payloads, Fixed a bug in bruteforcer 2018-11-13 16:47:00 +05:30			`if encoding:`
			`checkString = encoding(checkString.lower())`
			`efficiency = fuzz.partial_ratio(reflected, checkString)`
Add files via upload 2018-11-11 14:56:19 +05:30			`if reflected[:-2] == ('\\%s' % checkString.replace('st4r7s', '').replace('3nd', '')):`
			`efficiency = 90`
			`allEfficiencies.append(efficiency)`
			`efficiencies.append(max(allEfficiencies))`
Handle dynamic number of reflections (Fixes #78) 2018-10-30 16:28:56 +05:30			`else:`
			`efficiencies.append(0)`
Add files via upload 2018-11-11 14:56:19 +05:30			`num += 1`
Clearer argument handling, pep8, import order, less unused vars (#123) * Proposal for less redundant argument handling, autopep8, sorted imports, etc. * dest labels in sync with local target vars and safe names * only one special handling before transfer of values to local vars (headers prompt) * some initial comments - there was a quest for help on documentation ;-) * few oneliners from if else variable setters * left the simple script style as is (might be a preference for author and users) * Adapted code for static checks and removed unused mports sys and requests, many unused variables remain 2018-11-15 10:37:38 +01:00			`return list(filter(None, efficiencies))`