Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error when scanning the OWASP Benchmark #974

Open
buekera opened this issue Apr 25, 2018 · 4 comments
Open

Error when scanning the OWASP Benchmark #974

buekera opened this issue Apr 25, 2018 · 4 comments

Comments

@buekera
Copy link

buekera commented Apr 25, 2018
edited

While playing around with Arachni against the OWASP Benchmark, I am noticing Arachni stopping the scan prematurely with always the same error:

--------------------------------------------------------------------------------
[2018-04-25 11:04:50 +0200] [ArgumentError] invalid byte sequence in UTF-8
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:22:in `strip'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:22:in `value='
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/nodes/with_value.rb:18:in `initialize'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/sax.rb:58:in `new'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser/sax.rb:58:in `text'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:70:in `sax_html'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:70:in `block in parse'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/support/cache/base.rb:108:in `call'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/support/cache/base.rb:108:in `fetch'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:66:in `parse'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:243:in `document'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/parser.rb:423:in `paths'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/page.rb:309:in `paths'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/data.rb:207:in `push_paths_from_page'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:98:in `audit_page'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:228:in `audit_queues'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework/multi_instance.rb:222:in `audit_queues'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:202:in `block in audit'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:177:in `loop'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework/parts/audit.rb:177:in `audit'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `block in run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `call'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `exception_jail'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Parent:
[2018-04-25 11:04:50 +0200] Arachni::RPC::Server::Framework
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Block:
[2018-04-25 11:04:50 +0200] #<Proc:0x0000000412cee8@/home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117>
[2018-04-25 11:04:50 +0200] 
[2018-04-25 11:04:50 +0200] Caller:
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/utilities.rb:425:in `exception_jail'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/framework.rb:117:in `run'
[2018-04-25 11:04:50 +0200] /home/user/Arachni/arachni-1.5.1-0.5.12/system/gems/gems/arachni-1.5.1/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2018-04-25 11:04:50 +0200] --------------------------------------------------------------------------------

Scanner Options:

OPTIONS:
---
audit:
  parameter_values: true
  exclude_vector_patterns: []
  include_vector_patterns: []
  link_templates: []
  links: true
  forms: true
  cookies: true
  jsons: true
  xmls: true
  ui_forms: true
  ui_inputs: true
datastore:
  token: a70aee5e532a10b997dfe2f0f9d5c37c
http:
  user_agent: Arachni/v1.5.1
  request_timeout: 10000
  request_redirect_limit: 5
  request_concurrency: 20
  request_queue_size: 100
  request_headers: {}
  response_max_size: 500000
  cookies: {}
  authentication_type: auto
input:
  values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  default_values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  without_defaults: true
  force: false
session: {}
scope:
  redundant_path_patterns: {}
  dom_depth_limit: 5
  exclude_file_extensions:
  - "[]"
  exclude_path_patterns: []
  exclude_content_patterns: []
  include_path_patterns: []
  restrict_paths: []
  extend_paths: []
  url_rewrites: {}
browser_cluster:
  local_storage: {}
  wait_for_elements: {}
  pool_size: 6
  job_timeout: 10
  worker_time_to_live: 100
  ignore_images: false
  screen_width: 1600
  screen_height: 1200
checks:
- sql_injection
- sql_injection_differential
- sql_injection_timing
platforms: []
plugins:
  autothrottle: {}
  discovery: {}
  healthmap: {}
  timing_attacks: {}
  uniformity: {}
no_fingerprinting: false
authorized_by: 
url: https://172.17.0.2:8443/benchmark/sqli-Index.html

The OWASP Benchmark is running within a docker container if you're wondering about the url.

Can anyone help me with this?
@Zapotek
Copy link
Member

Zapotek commented May 4, 2018

Can you give the nighlties a try?

@buekera
Copy link
Author

buekera commented May 4, 2018

Sure!

@maksim-pinguin
Copy link

Hi,
I got a silimar issue!

Can you give the nighlties a try?
I tried - same result.

I first tried the docker image. Than the arachni/v1.5.1 local. Than the nightlies as suggested. Always the same result. I get this error after the first few findings.
This is the error log from the nightlies locally:

2019-01-07 03:24:34 +0100 --------------------------------------------------------------------------------
ENV:
---
LD_LIBRARY_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib:/usr/lib:/usr/local/lib"
FONTCONFIG_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/home/arachni/.fonts"
LC_MEASUREMENT: de_DE.UTF-8
LC_PAPER: de_DE.UTF-8
LC_MONETARY: de_DE.UTF-8
XDG_MENU_PREFIX: gnome-
LANG: en_US.UTF-8
GDM_LANG: en_US.UTF-8
LESS: "-r"
DISPLAY: ":1"
OLDPWD: "/home/maksim/tmp/arachni-2.0dev-1.0dev"
C_INCLUDE_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/include"
EDITOR: "/usr/bin/vim"
RUBY_VERSION: ruby-2.4.4
COLORTERM: truecolor
GEM_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems"
USERNAME: maksim
MOZ_PLUGIN_PATH: "/usr/lib/mozilla/plugins"
XDG_VTNR: '2'
SSH_AUTH_SOCK: "/run/user/1000/keyring/ssh"
LESS_TERMCAP_so: "\e[01;47;34m"
LESS_TERMCAP_se: "\e[0m"
XDG_SESSION_ID: '2'
USER: maksim
DESKTOP_SESSION: gnome
GRADLE_HOME: "/usr/share/java/gradle"
GNOME_TERMINAL_SCREEN: "/org/gnome/Terminal/screen/b731264c_0c3d_4aef_86e6_cb6e469c244e"
QT_QPA_PLATFORMTHEME: qt5ct
PWD: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin"
HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/home/arachni"
XDG_SESSION_TYPE: x11
XDG_SESSION_DESKTOP: gnome
GEM_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
LESS_TERMCAP_mb: "\e[01;32m"
LESS_TERMCAP_md: "\e[01;32m"
LESS_TERMCAP_me: "\e[0m"
LIBRARY_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib:/usr/lib:/usr/local/lib"
GJS_DEBUG_OUTPUT: stderr
LC_NUMERIC: de_DE.UTF-8
RAILS_ENV: production
MAIL: "/var/spool/mail/maksim"
ARACHNI_WEBUI_LOGDIR: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/logs/webui"
VISUAL: "/usr/bin/nano"
WINDOWPATH: '2'
TERM: xterm-256color
SHELL: "/usr/bin/zsh"
VTE_VERSION: '5403'
ARACHNI_FRAMEWORK_LOGDIR: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/logs/framework"
XDG_CURRENT_DESKTOP: GNOME
RUBYLIB: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0/x86_64-linux:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0/x86_64-linux"
GNOME_TERMINAL_SERVICE: ":1.53"
XDG_SEAT: seat0
SHLVL: '1'
MAVEN_OPTS: "-Xmx512m"
GDMSESSION: gnome
LOGNAME: maksim
DBUS_SESSION_BUS_ADDRESS: unix:path=/run/user/1000/bus
XDG_RUNTIME_DIR: "/run/user/1000"
XAUTHORITY: "/run/user/1000/gdm/Xauthority"
CPLUS_INCLUDE_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/include"
MY_RUBY_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby"
LESS_TERMCAP_ue: "\e[0m"
LESS_TERMCAP_us: "\e[01;36m"
PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/../bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/lib/jvm/default/bin:/usr/bin/site_perl:/usr/bin/vendor_perl:/usr/bin/core_perl"
IRBRC: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/.irbrc"
GJS_DEBUG_TOPICS: JS ERROR;JS LOG
SESSION_MANAGER: local/maksbook:@/tmp/.ICE-unix/18181,unix/maksbook:/tmp/.ICE-unix/18181
LC_TIME: de_DE.UTF-8
RACK_ENV: development
BUNDLE_GEMFILE: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/arachni-ui-web/Gemfile"
BUNDLER_ORIG_BUNDLE_BIN_PATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_BUNDLE_GEMFILE: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/arachni-ui-web/Gemfile"
BUNDLER_ORIG_BUNDLER_ORIG_MANPATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_BUNDLER_VERSION: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_GEM_HOME: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
BUNDLER_ORIG_GEM_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems"
BUNDLER_ORIG_MANPATH: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/../bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/bin:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/gems/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/lib/jvm/default/bin:/usr/bin/site_perl:/usr/bin/vendor_perl:/usr/bin/core_perl"
BUNDLER_ORIG_RB_USER_INSTALL: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLER_ORIG_RUBYLIB: "/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/2.4.0/x86_64-linux:/home/maksim/tmp/arachni-2.0dev-1.0dev/bin/../system/usr/lib/ruby/site_ruby/2.4.0/x86_64-linux"
BUNDLER_ORIG_RUBYOPT: BUNDLER_ENVIRONMENT_PRESERVER_INTENTIONALLY_NIL
BUNDLE_BIN_PATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/gems/bundler-1.16.4/exe/bundle"
BUNDLER_VERSION: 1.16.2
RUBYOPT: "-rbundler/setup"
MANPATH: "/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/gems/kramdown-1.17.0/man"
arachni_options: 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
--------------------------------------------------------------------------------
OPTIONS:
---
datastore:
  token: 8fa8222c4eab1e16b3523b3d3e1617fc
browser_cluster:
  local_storage: {}
  session_storage: {}
  wait_for_elements: {}
  pool_size: 6
  job_timeout: 10
  worker_time_to_live: 100
  ignore_images: false
  screen_width: 1600
  screen_height: 1200
audit:
  parameter_values: true
  exclude_vector_patterns: []
  include_vector_patterns: []
  link_templates: []
  links: true
  forms: true
  cookies: true
  jsons: true
  xmls: true
  ui_forms: true
  ui_inputs: true
  nested_cookies: true
scope:
  redundant_path_patterns: {}
  dom_depth_limit: 5
  exclude_file_extensions: []
  exclude_path_patterns: []
  exclude_content_patterns: []
  include_path_patterns: []
  restrict_paths: []
  extend_paths: []
  url_rewrites: {}
http:
  user_agent: Arachni/v2.0dev
  request_timeout: 10000
  request_redirect_limit: 5
  request_concurrency: 20
  request_queue_size: 100
  request_headers: {}
  response_max_size: 500000
  cookies: {}
  authentication_type: auto
session: {}
input:
  values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  default_values:
    name: arachni_name
    user: arachni_user
    usr: arachni_user
    pass: 5543!%arachni_secret
    txt: arachni_text
    num: '132'
    amount: '100'
    mail: arachni@email.gr
    account: '12'
    id: '1'
  without_defaults: true
  force: false
checks:
- allowed_methods
- backdoors
- backup_directories
- backup_files
- captcha
- code_injection
- code_injection_php_input_wrapper
- code_injection_timing
- common_admin_interfaces
- common_directories
- common_files
- cookie_set_for_parent_domain
- credit_card
- csrf
- cvs_svn_users
- directory_listing
- emails
- file_inclusion
- form_upload
- hsts
- htaccess_limit
- html_objects
- http_only_cookies
- http_put
- insecure_client_access_policy
- insecure_cookies
- insecure_cors_policy
- insecure_cross_domain_policy_access
- insecure_cross_domain_policy_headers
- interesting_responses
- ldap_injection
- localstart_asp
- mixed_resource
- no_sql_injection
- no_sql_injection_differential
- origin_spoof_access_restriction_bypass
- os_cmd_injection
- os_cmd_injection_timing
- password_autocomplete
- path_traversal
- private_ip
- response_splitting
- rfi
- session_fixation
- source_code_disclosure
- sql_injection
- sql_injection_differential
- sql_injection_timing
- ssn
- trainer
- unencrypted_password_forms
- unvalidated_redirect
- unvalidated_redirect_dom
- webdav
- x_frame_options
- xpath_injection
- xss
- xss_dom
- xss_dom_script_context
- xss_event
- xss_path
- xss_script_context
- xss_tag
- xst
- xxe
platforms: []
plugins:
  autothrottle: {}
  discovery: {}
  healthmap: {}
  timing_attacks: {}
  uniformity: {}
no_fingerprinting: false
authorized_by: 
url: https://192.168.101.193:8443/benchmark
--------------------------------------------------------------------------------
[2019-01-07 03:24:34 +0100] [ArgumentError] invalid byte sequence in UTF-8
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser/sax.rb:58:in `strip'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser/sax.rb:58:in `text'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:70:in `sax_html'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:70:in `block in parse'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/support/cache/base.rb:108:in `fetch'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:66:in `parse'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:245:in `document'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/parser.rb:433:in `paths'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/page.rb:309:in `paths'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/data.rb:207:in `push_paths_from_page'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:98:in `audit_page'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:228:in `audit_queues'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework/multi_instance.rb:222:in `audit_queues'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:202:in `block in audit'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:177:in `loop'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework/parts/audit.rb:177:in `audit'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `block in run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/utilities.rb:425:in `exception_jail'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Parent:
[2019-01-07 03:24:34 +0100] Arachni::RPC::Server::Framework
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Block:
[2019-01-07 03:24:34 +0100] #<Proc:0x0000000003ef9270@/home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117>
[2019-01-07 03:24:34 +0100] 
[2019-01-07 03:24:34 +0100] Caller:
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni- /lib/arachni/utilities.rb:424:in `exception_jail'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/framework.rb:117:in `run'
[2019-01-07 03:24:34 +0100] /home/maksim/tmp/arachni-2.0dev-1.0dev/system/gems/bundler/gems/arachni-c05fbee1c021/lib/arachni/rpc/server/framework.rb:156:in `block in run'
[2019-01-07 03:24:34 +0100] --------------------------------------------------------------------------------

@maksim-pinguin
Copy link

@buekera did the nighlties solve your problem?

@maksim-pinguin maksim-pinguin mentioned this issue Jan 23, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Zapotek @buekera @maksim-pinguin