策略引擎>> wafex>> 返回
项目作者: rhaidiz

项目描述 :
Web Application Formal Exploiter
高级语言: Python
项目地址: git://github.com/rhaidiz/wafex.git
创建时间: 2018-01-29T15:11:01Z
项目社区:https://github.com/rhaidiz/wafex
开源协议:
下载


WAFEx

Web Application Formal Exploiter (WAFEx) is a protype tool written in python to show that the canonical Dolev-Yao attacker model can be used to generate and exploit multi-stage attacks where multiple vulnerabilities are combined and exploited together. WAFEx takes in input and ASLan++ model of a web application along with a concretization file and seaches for attacks to the ASLan++ model.

Requirements

  • Python3
  • Python requests
  • Python pexpcet
  • sqlmap
  • Wfuzz
  • Java 1.7 or above
  • Cl-AtSe (included in the repository)
  • ASLan connector (included in the repository)

Installation

Clone the master repository and set execution privileges:

  1. chmod +x wafex.py

Put sqlmap and WFuzz in the root directory of WAFEx:

  1. mv /path/to/download/sqlmap /path/to/wafex/
  2. mv /path/to/download/wfuzz /path/to/wafex/

Run WAFex:

  1. wafex.py

Usage

  1. usage: wafex.py [-h] [--c concre_file] [--debug] [--mc-only] [--interactive]
  2.                 [--verbose] [--translator] [--proxy ip:port]
  3.                 [--mc-options MC_OPTIONS] [--mc-timeout T]
  4.                 model
  6. positional arguments:
  7.   model                 An ASLAn++ model
  9. optional arguments:
  10.   -h, --help            show this help message and exit
  11.   --c concre_file       The concretization file, needed for executing Abstract
  12.                         Attack Trace
  13.   --debug               Print debug messages
  14.   --mc-only             Run the model-checker only and exit
  15.   --interactive         Ask input of every parameter
  16.   --verbose             Increase the output verbosity
  18. Translator:
  19.   --translator          Specify a jar translator to use. Allowed values are
  20.                         1.4.1, 1.4.9, 1.3. Default (1.4.1)
  22. HTTP(S) options:
  23.   --proxy ip:port       Use an HTTP proxy when executing requests
  25. Cl-Atse options:
  26.   --mc-options MC_OPTIONS
  27.                         String representing the options to pass to Cl-Atse.
  28.                         For more information on the available options check
  29.                         Cl-Atse manual
  30.   --mc-timeout T        If Cl-Atse runs more than T seconds, abort (default:
  31.                         600)

Output example

output example