s0md3v/XSStrike
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fixed issue where foundParams are not being checked for in reflected response; added vscode folder to gitignore

Browse Source
This commit is contained in:
JohnPeng47
2018-12-21 11:13:22 -05:00
parent 1e171e48af
commit 21b926bd21
2 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
.gitignore vendored
View File

@@ -102,3 +102,6 @@ venv.bak/
# mypy # mypy
.mypy_cache/ .mypy_cache/
#vscode
.vscode/

3
core/arjun.py
View File

@@ -28,8 +28,7 @@ def arjun(url, GET, headers, delay, timeout):
continue continue
print('%s Heuristics found a potentially valid parameter: %s%s%s. Priortizing it.' % ( print('%s Heuristics found a potentially valid parameter: %s%s%s. Priortizing it.' % (
good, green, foundParam, end)) good, green, foundParam, end))
if foundParam in blindParams: if foundParam not in blindParams:
blindParams.remove(foundParam)
blindParams.insert(0, foundParam) blindParams.insert(0, foundParam)
threadpool = concurrent.futures.ThreadPoolExecutor(max_workers=threadCount) threadpool = concurrent.futures.ThreadPoolExecutor(max_workers=threadCount)
futures = (threadpool.submit(checky, param, paraNames, url, futures = (threadpool.submit(checky, param, paraNames, url,