laughingrat / pinata-csrf-tool Goto Github PK
View Code? Open in Web Editor NEWAutomatically exported from code.google.com/p/pinata-csrf-tool
Automatically exported from code.google.com/p/pinata-csrf-tool
What steps will reproduce the problem?
1. A GET request with trailing newline characters
What is the expected output? What do you see instead?
Pinata-CSRF_v0.92>pinata.py
The HTML Form uses a GET method, Generating CSRF HTML..................
####################################################################
Traceback (most recent call last):
File "C:\DIR\Pinata-CSRF_v0.92\pinata.py", line 185, in <module>
dicHeader = encodedToDict(header)
File "C:\DIR\Pinata-CSRF_v0.92\pinata.py", line 31, in encodedToDict
key, value = parm.split(': ',1)
ValueError: need more than 1 value to unpack
--
What version of the product are you using? On what operating system?
V0.92
Please provide any additional information below.
Original issue reported on code.google.com by [email protected]
on 23 Nov 2010 at 11:32
What steps will reproduce the problem?
1. How we can use it in Linux (More focus on Backtrack)
2. I am running it but getting error
3.
Original issue reported on code.google.com by [email protected]
on 28 Aug 2012 at 10:31
Standard HTTP request is URL encoded. Pinata.py script does not URL decode
the key, value pairs. I have deliberately choosen not to do that as I have
noticed that majority of the time URL decoding will break the HTML and
encoded URL response always works.
However there are instances where you will want to produce HTML with key
and values are not URL encoded. You can do that using
pinataWithEncoding.py which is also included in the pinata.zip.
Alternately you can generate HTML using both the scripts to see whether it
is working.
Original issue reported on code.google.com by [email protected]
on 23 Apr 2010 at 12:11
Since HTTP request does not have any identifiers to indicate whether the
site is over HTTPS or HTTP. I have hard coded the script to produce HTML
that assumes an HTTPS connection. If the site being tested is over HTTP,
please edit your generated HTML's URL to say HTTP.
Original issue reported on code.google.com by [email protected]
on 22 Apr 2010 at 11:59
Pinats will generate the follow errors if header field srting has semi
colon followed by space ': '. This usually happens in user agent string.
Traceback (most recent call last):
File "C:\Project\Complete\pinata.py", line 200, in <module>
dicHeader = encodedToDict(header)
File "C:\Project\Complete\pinata.py", line 22, in encodedToDict
key, value = parm.split(': ')
ValueError: too many values to unpack
Workaround:
The easiest fix is to turncate the user agent string in the HTTP request
and then run the tool.
Original issue reported on code.google.com by [email protected]
on 27 Apr 2010 at 11:56
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.