s0md3v/XSStrike
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
429 Commits 1 Branch 0 Tags
7cd06e02f84bc3e234f1ce5c0b63015c7e682ba8
Commit Graph

429 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
whitesource-bolt-for-github[bot]
7cd06e02f8 Initial WhiteSource configuration file 2019-05-05 15:49:26 +00:00
Somdev Sangwan
0010a900b6 +3 vulnerable libraries 2019-05-02 00:02:52 +05:30
Somdev Sangwan
0e8a75bcc4 Added browser validation for 0 false positives 2019-05-01 22:07:33 +05:30
Devin Stokes
8e00a32511 Move browser initialization out of browserEngine and put it in to scan.py 2019-05-01 09:11:52 -07:00
Devin Stokes
1d22590cd5 Removed extra logging from scan.py 2019-05-01 07:28:12 -07:00
Devin Stokes
2c3b1e1676 Removed logging from browserEngine 2019-05-01 07:27:08 -07:00
Devin Stokes
16e0dd25b5 Updated naming in browserEngine.py 
Refactored methods in browserEngine to be more readable

Fixed logging methods used when adding the browserEngine (ie. info/debug/good/etc)
 2019-04-30 19:19:00 -07:00
Devin Stokes
b20c24a438 update travis 2019-04-30 18:17:13 -07:00
Devin Stokes
c03c085eeb Removed browser quit arguments and made a method out of it to be called externally 2019-04-30 18:09:30 -07:00
Devin Stokes
dada14f3e8 make the browser static so we don't have to initialize it each execution. 2019-04-30 17:52:44 -07:00
Devin Stokes
0c66cd94cb Added geckodriver to travis.yml 2019-04-30 17:44:41 -07:00
Devin Stokes
4b9776c641 Added selenium to requirements.txt 2019-04-30 14:49:23 -07:00
Devin Stokes
186cb9077d Added browser validation 2019-04-30 14:44:19 -07:00
Somdev Sangwan
5a6d77370b fixed a crawler bug 2019-04-30 22:09:40 +05:30
Somdev Sangwan
d28d553179 my cat ran across my keyboard 2019-04-30 22:07:29 +05:30
Somdev Sangwan
3e3b719157 fixed a crawler bug 2019-04-30 22:00:52 +05:30
Somdev Sangwan
d923cb99e3 remove generic HTTP response code 2019-04-28 11:44:48 +05:30
Somdev Sangwan
4e61317095 handle flag like parameters 2019-04-20 13:19:45 +05:30
Somdev Sangwan
7de71b6fe8 coverage of 6 edge cases 2019-04-19 14:34:01 +05:30
Somdev Sangwan
01cdf08a2c dom scanning hotfix 2019-04-19 10:17:35 +05:30
Somdev Sangwan
544f476542 Merge pull request #230 from s0md3v/newton 
stable build
 2019-04-19 09:11:23 +05:30
Somdev Sangwan
db6dd5ad20 why are we still here? 2019-04-19 09:07:22 +05:30
Somdev Sangwan
5edf0a1dae what is the purpose of life? 2019-04-19 09:03:08 +05:30
Somdev Sangwan
5acc016b0a +1 utility 2019-04-19 09:00:22 +05:30
Somdev Sangwan
fd5893d92a fix script context handling 2019-04-19 08:59:12 +05:30
Somdev Sangwan
2979b597de fix script context handling 2019-04-19 08:58:44 +05:30
Somdev Sangwan
fbb9261622 improve script context handling 2019-04-19 08:58:16 +05:30
Somdev Sangwan
4b06601112 Adapt to API changes 2019-04-19 07:56:56 +05:30
Somdev Sangwan
3b3b23a86c adapt to API changes, support for more contexts 2019-04-19 07:56:17 +05:30
Somdev Sangwan
a72d023ddb Adapt to API changes 2019-04-19 07:55:05 +05:30
Somdev Sangwan
ada0374bb4 adapt to API changes 2019-04-19 07:54:36 +05:30
Somdev Sangwan
a845b6284a re-written to perfection 2019-04-19 07:53:57 +05:30
Somdev Sangwan
023c12fc3c +1 utility & minor changes 2019-04-19 07:53:00 +05:30
Somdev Sangwan
291f99a530 i hope no one sees it 2019-04-12 13:23:21 +05:30
Somdev Sangwan
20a6d956ab robust non-executable context detection 2019-04-10 18:10:06 +05:30
Somdev Sangwan
666a8c0d73 Update htmlParser.py 2019-04-10 18:05:56 +05:30
Somdev Sangwan
52634c1ab2 + utility to correlate contexts with reflections 2019-04-10 18:04:43 +05:30
Somdev Sangwan
1972a9712b Fixes #226 2019-04-10 17:09:21 +05:30
Somdev Sangwan
9c6d6e8548 Potential fix for #226 2019-04-10 11:09:03 +05:30
Somdev Sangwan
4032e40c67 3.1.4 (Faster crawling & negligible DOM XSS false positives) 
- Negligible DOM XSS false positives
- x10 Faster crawling by
    - Removing additional request for detecting DOM XSS
    - Skipping testing of a parameter multiple times
 2019-04-08 13:56:10 +05:30
Somdev Sangwan
f9aee589f0 changelog for 3.1.4 2019-04-08 13:52:52 +05:30
Somdev Sangwan
538ecea109 Add files via upload 2019-04-08 13:48:44 +05:30
Somdev Sangwan
7684889caa Multiple updates -> 3.1.3 
- Removed browser engine emulation (closes #220, closes #217, closes #200 ) 
- Fixed a few bugs
- Added a plugin to scan for outdated JS libraries
- Improved crawling and DOM scanning
 2019-04-06 22:03:34 +05:30
Somdev Sangwan
3d7fbca96a changelog for 3.1.3 2019-04-06 21:58:26 +05:30
Somdev Sangwan
10e15a3459 updated changes for 3.1.3 2019-04-06 21:57:46 +05:30
Somdev Sangwan
16ae8cae68 updated version number 2019-04-06 21:55:16 +05:30
Somdev Sangwan
efcffe10d9 removed selenium 2019-04-06 21:50:28 +05:30
Somdev Sangwan
afde714201 drop geckodriver installation 2019-04-06 21:50:03 +05:30
Somdev Sangwan
ee86fce156 updated features 2019-04-06 21:46:54 +05:30
Somdev Sangwan
6d549a2108 Better result formatting 2019-04-06 21:42:50 +05:30