andresriancho / django-moth Goto Github PK
View Code? Open in Web Editor NEWA Django vulnerable Web application for testing the w3af framework
Home Page: http://w3af.org/
License: GNU General Public License v2.0
A Django vulnerable Web application for testing the w3af framework
Home Page: http://w3af.org/
License: GNU General Public License v2.0
Is it possible to download a google font to my project and include them to decorate h1-h6?
/g /gr /gre /grep ! They all work ๐
That's an ugly bug which drives w3af's web_spider crazy
Replace RUN git clone https://github.com/andresriancho/django-moth.git
with an ADD
Create dynamic view for plugin families URLs like http://127.0.0.1:8000/grep , http://127.0.0.1:8000/audit , etc.
Add link to vulnerability page which shows source code for the django/python web application. Maybe there is a reusable app for this?
{% comment %}
TODO: Add link to top level plugin names
{% comment %}
JavaScript show source code
Define http://127.0.0.1:8000/audit/ pages , they should basically have some type of link to each "test suite".
Back button in index-of page and vulnerable page.
Make sure I can manually navigate through the whole site, issues that we have right now are:
There seems to be an issue with my template, when I try to output a large piece of binary (as required for example by the ssh_version payload or the os_commanding attack plugin tests) the output simply "goes missing".
Make runserver work with SSL, there are many tests which require SSL protocol. Here is a way to achieve it: http://www.ianlewis.org/en/testing-https-djangos-development-server
Most likely I'll have a .sh file that will do all those steps for me.
Internal Server Error: /audit/xss/simple_xss.py
Traceback (most recent call last):
File "/usr/local/lib/python2.7/dist-packages/django/core/handlers/base.py", line 115, in get_response
response = callback(request, *callback_args, **callback_kwargs)
File "/home/pablo/PycharmProjects/djmoth/moth/views/router.py", line 185, in __call__
return view_obj.dispatch(request, *args, **kwargs)
File "/usr/local/lib/python2.7/dist-packages/django/utils/decorators.py", line 25, in _wrapper
return bound_func(*args, **kwargs)
File "/usr/local/lib/python2.7/dist-packages/django/views/decorators/csrf.py", line 77, in wrapped_view
return view_func(*args, **kwargs)
File "/usr/local/lib/python2.7/dist-packages/django/utils/decorators.py", line 21, in bound_func
return func(self, *args2, **kwargs2)
File "/home/pablo/PycharmProjects/djmoth/moth/views/base/vulnerable_template_view.py", line 45, in dispatch
return super(VulnerableTemplateView, self).dispatch(*args, **kwargs)
File "/usr/local/lib/python2.7/dist-packages/django/views/generic/base.py", line 86, in dispatch
return handler(request, *args, **kwargs)
File "/usr/local/lib/python2.7/dist-packages/django/views/generic/base.py", line 92, in http_method_not_allowed
'request': self.request
AttributeError: 'SimpleXSSView' object has no attribute 'request'
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.