Added browser validation

core/browserEngine.py

@@ -0,0 +1,35 @@
+import re
+import os
+import sys
+from core.config import xsschecker
+from core.utils import writer
+from selenium import webdriver
+from selenium.webdriver.firefox.options import Options
+from selenium.common.exceptions import UnexpectedAlertPresentException
+from selenium.webdriver.support import expected_conditions as EC
+
+
+def browserEngine(response):
+    options = Options()
+    options.add_argument('--headless')
+    browser = webdriver.Firefox(options=options)
+    response = re.sub(r'<script.*?src=.*?>', '<script src=#>', response, re.I)
+    response = re.sub(r'href=.*?>', 'href=#>', response, re.I)
+    writer(response, 'test.html')
+    browser.get('file://' + sys.path[0] + '/test.html')
+    os.remove('test.html')
+    popUp = False
+    actions = webdriver.ActionChains(browser)
+
+    try:
+        actions.move_by_offset(2, 2)
+        actions.perform()
+        if EC.alert_is_present():
+            popUp = True
+        browser.quit()
+
+
+    except UnexpectedAlertPresentException:
+        popUp = True
+        browser.quit()
+    return popUp

modes/scan.py

@@ -3,6 +3,7 @@ import re
 from urllib.parse import urlparse, quote, unquote
 
 from core.arjun import arjun
+from core.browserEngine import browserEngine
 from core.checker import checker
 from core.colors import good, bad, end, info, green, red, que
 import core.config
@@ -94,30 +95,18 @@ def scan(target, paramData, encoding, headers, delay, timeout, skipDOM, find, sk
             for vect in vects:
                 if core.config.globalVariables['path']:
                     vect = vect.replace('/', '%2F')
-                loggerVector = vect
                 progress += 1
                 logger.run('Progress: %i/%i\r' % (progress, total))
                 if not GET:
                     vect = unquote(vect)
-                efficiencies = checker(
-                    url, paramsCopy, headers, GET, delay, vect, positions, timeout, encoding)
-                if not efficiencies:
-                    for i in range(len(occurences)):
-                        efficiencies.append(0)
-                bestEfficiency = max(efficiencies)
-                if bestEfficiency == 100 or (vect[0] == '\\' and bestEfficiency >= 95):
-                    logger.red_line()
-                    logger.good('Payload: %s' % loggerVector)
-                    logger.info('Efficiency: %i' % bestEfficiency)
-                    logger.info('Confidence: %i' % confidence)
+                logger.info('Validating in Browser')
+                response = requester(url, paramsCopy, headers, GET, delay, timeout).text
+                success = browserEngine(response)
+                if success:
+                    logger.info('Payload: %s' % vect)
+                    logger.info('Browser Validated: %s' % success)
                     if not skip:
-                        choice = input(
-                            '%s Would you like to continue scanning? [y/N] ' % que).lower()
+                        choice = input('%s Would you like to continue scanning? [y/N] ' % que).lower()
                         if choice != 'y':
                             quit()
-                elif bestEfficiency > minEfficiency:
-                    logger.red_line()
-                    logger.good('Payload: %s' % loggerVector)
-                    logger.info('Efficiency: %i' % bestEfficiency)
-                    logger.info('Confidence: %i' % confidence)
         logger.no_format('')