Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support for authenticated analysis #95

Merged
merged 29 commits into from
Dec 16, 2022
Merged
Changes from 1 commit
Commits
Show all changes
29 commits
Select commit Hold shift + click to select a range
cc5c981
Initial TargetCredential model and API operations
pablosnt Nov 27, 2022
bfa1242
Fix model and serializer
pablosnt Nov 29, 2022
45b4e25
Input validation for TargetCredential
pablosnt Nov 29, 2022
c766cae
Get basic authentication value
pablosnt Nov 29, 2022
4915262
Initial unit tests
pablosnt Nov 29, 2022
dee73d8
Fix unit tests for TargetCredential
pablosnt Nov 29, 2022
5c2ef41
Fix input validation for TargetCredential
pablosnt Nov 29, 2022
c3439fa
Refactor UI code for the target port details
pablosnt Nov 29, 2022
3764362
New tab in the popup to handle the target credentials
pablosnt Nov 30, 2022
a03df5a
Fix system credentials validation
pablosnt Nov 30, 2022
01706c3
Add support to filtering target credentials by distinct type
pablosnt Nov 30, 2022
a367975
Use authentication for SMBmap, Dirsearch and JoomScan during executions
pablosnt Dec 10, 2022
9d7b2b2
Replace TargetCredential by TargetAuthentication
pablosnt Dec 10, 2022
d6f235a
Fix references to target_credentials
pablosnt Dec 10, 2022
154d459
Fix input type related to target authentication
pablosnt Dec 10, 2022
edd36cd
Apply authentication in Nikto executions
pablosnt Dec 11, 2022
8034380
Apply authentication in OWASP ZAP executions
pablosnt Dec 11, 2022
33cc53a
Fix reference to OWASP ZAP
pablosnt Dec 11, 2022
22df759
Optimize UX during the credentials configuration
pablosnt Dec 11, 2022
0df961b
Unit tests for executions using target authentication
pablosnt Dec 11, 2022
6303879
Refactoring code using new authentication module and applying authent…
pablosnt Dec 13, 2022
40d5016
Generate migrations and fix some errors
pablosnt Dec 13, 2022
85b591f
Fix some errors and prepare initial unit testing
pablosnt Dec 14, 2022
4bd8d61
Fix error in wordlist input type
pablosnt Dec 15, 2022
3f32951
Fix error obtaining the relationships between the input types
pablosnt Dec 15, 2022
a17b8b8
Optimize code to get authentication
pablosnt Dec 15, 2022
24b9581
Improve unit tests
pablosnt Dec 15, 2022
efa156e
One more unit tests, clean code and fix in arguments syntax
pablosnt Dec 16, 2022
29be2ad
Fix error in arguments with quotes
pablosnt Dec 16, 2022
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Apply authentication in Nikto executions
pablosnt committed Dec 11, 2022

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
commit edd36cdc657f6522a9264414c9b7951423eac511
2 changes: 1 addition & 1 deletion rekono/tools/fixtures/3_configurations.json
Original file line number Diff line number Diff line change
@@ -205,7 +205,7 @@
"fields": {
"tool": 4,
"name": "Web scan",
"arguments": "{url} -Format xml -output {output}",
"arguments": "{url} -Format xml -output {output} {authentication} {cookie}",
"default": true
}
},
26 changes: 24 additions & 2 deletions rekono/tools/fixtures/4_arguments.json
Original file line number Diff line number Diff line change
@@ -247,7 +247,7 @@
"fields": {
"tool": 2,
"name": "cookie",
"argument": "--cookie={cookie}",
"argument": "--cookie=\"{cookie_name}={cookie}\"",
"required": false,
"multiple": false
}
@@ -258,7 +258,7 @@
"fields": {
"tool": 14,
"name": "cookie",
"argument": "--cookie {cookie}",
"argument": "--cookie \"{cookie_name}={cookie}\"",
"required": false,
"multiple": false
}
@@ -273,5 +273,27 @@
"required": false,
"multiple": false
}
},
{
"model": "tools.argument",
"pk": 26,
"fields": {
"tool": 4,
"name": "authentication",
"argument": "-id {username}:{secret}",
"required": false,
"multiple": false
}
},
{
"model": "tools.argument",
"pk": 27,
"fields": {
"tool": 4,
"name": "cookie",
"argument": "-Option STATIC-COOKIE=\"{cookie_name}={cookie}\"",
"required": false,
"multiple": false
}
}
]
20 changes: 20 additions & 0 deletions rekono/tools/fixtures/5_inputs.json
Original file line number Diff line number Diff line change
@@ -368,5 +368,25 @@
"filter": "basic",
"order": 1
}
},
{
"model": "tools.input",
"pk": 38,
"fields": {
"argument": 26,
"type": 10,
"filter": "basic",
"order": 1
}
},
{
"model": "tools.input",
"pk": 39,
"fields": {
"argument": 27,
"type": 10,
"filter": "cookie",
"order": 1
}
}
]