Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

Recent screenshots added

  • Loading branch information...
commit d22ff11182be749ab0b31a1063a6d3172bcf67b2 1 parent 4fc210f
@neuroo authored
Showing with 25 additions and 20 deletions.
  1. BIN  Databases.db
  2. +1 −0  core/interface/browser.py
  3. +4 −0 core/utils/jsonify.py
  4. +2 −2 core/widgets/code.py
  5. +2 −2 core/widgets/component/graphics.py
  6. +2 −2 core/widgets/component/smartview.py
  7. +2 −2 core/widgets/javascript.py
  8. +1 −1  core/widgets/sitemap.py
  9. BIN  screenshot/app_flow_graph.png
  10. BIN  screenshot/client_side_selectors.png
  11. BIN  screenshot/content_viewer.png
  12. BIN  screenshot/findings_management.png
  13. BIN  screenshot/web_browser.png
  14. +6 −6 sheep.log
  15. +5 −5 user/bsheep-classification.csv
  16. BIN  user/cache/http/cache_060de952b722e216f8fb808594381972b4778a6e.cache
  17. BIN  user/cache/http/cache_06e74bb9c4468a9ad709a669095dbd9c8de78d94.cache
  18. BIN  user/cache/http/cache_23a499a94fb19434b80d13b59d7c3b0f9c39915c.cache
  19. BIN  user/cache/http/cache_26f89e4533ad0d9cb4edbda81cb225e4953243f9.cache
  20. BIN  user/cache/http/cache_42795cbc3f952292cca9e51ecf7a1f9f6eb5f615.cache
  21. BIN  user/cache/http/cache_42a77289df2a3de944cec9e56fbb1db1feaaead2.cache
  22. BIN  user/cache/http/cache_7d549be348a4b6e57b0f411f18c945f705fce025.cache
  23. BIN  user/cache/http/cache_8a0c644d44cb74297b1a30b4f28e031ad59072ca.cache
  24. BIN  user/cache/http/cache_8a79fe96a5339a01d933a3ddae1822fbc5e77616.cache
  25. BIN  user/cache/http/cache_9dbf675bfc5f1f967fb8daef52dd88197024d3d2.cache
  26. BIN  user/cache/http/cache_b1beb63c02648bf7cc2702f5c22bfdb5bf1a86b6.cache
  27. BIN  user/cache/http/cache_baa6d01be9771fbd4e1e713b9deb54af68ffd0d6.cache
  28. BIN  user/cache/http/cache_ece2b757a67707d893048e18f193fb9f3a8e4ae0.cache
  29. BIN  user/cache/http/cache_f5c79ae144b39e8ccfcdedb7f339a087ecf8a456.cache
  30. BIN  user/cache/http/cache_febaa44cfe872930e5a474f25eded6836471c2a8.cache
  31. BIN  user/cache/https/cache_086d2fbe4ef9022208d27be5b2dceb567d9a23bd.cache
  32. BIN  user/cache/https/cache_0b060b2572e7bb78db7cbc3367c045aad1bde3c9.cache
  33. BIN  user/cache/https/cache_0c0058c03ccfed2baefbefca7326c531a38583a0.cache
  34. BIN  user/cache/https/cache_0c13af7ccf3e2a12493e8852445726bbf6570310.cache
  35. BIN  user/cache/https/cache_0cf4f38f99999b8518066caebd57cf80a518111f.cache
  36. BIN  user/cache/https/cache_20790d8a28cd8d8e26a7991adbafb7411e3244d5.cache
  37. BIN  user/cache/https/cache_34ba0fa421685cc887800e890c4ca18830b6c9eb.cache
  38. BIN  user/cache/https/cache_3c152d93c31d603ccd88f85e83389185a0641ec6.cache
  39. BIN  user/cache/https/cache_3d9953f7a0cc48ebd693a249284c8a868854cfff.cache
  40. BIN  user/cache/https/cache_4c7eb6463d9e400e86710f45e38fea29965138e7.cache
  41. BIN  user/cache/https/cache_5c1635a80262485e145b8235e0aa597918f91268.cache
  42. BIN  user/cache/https/cache_6af2fed290f5c08a4ee3953104643bb9bf5cbd22.cache
  43. BIN  user/cache/https/cache_7a062b857d3eaaca1753f6a99f73608d4c905c57.cache
  44. BIN  user/cache/https/cache_80dde4c6b4c6d91f4b890c2b5068b6e2c0d9853b.cache
  45. BIN  user/cache/https/cache_8acc8c42804fff3a2172974fe56540f44aaa86eb.cache
  46. BIN  user/cache/https/cache_a309e2f48eebdf472a5b995022d01474696d894a.cache
  47. BIN  user/cache/https/cache_b12a5aef71458dd5d8fdf79275640726140167dc.cache
  48. BIN  user/cache/https/cache_e54baf6c4a0bb9d30d4adcb47bb28d4014428dd7.cache
  49. BIN  user/cache/https/cache_fd2fbe359aa43122a0f4fc75fec8a670654bcfcb.cache
  50. BIN  user/webkit/http_twitter.com_0.localstorage
  51. BIN  user/webkit/https_twitter.com_0.localstorage
View
BIN  Databases.db
Binary file not shown
View
1  core/interface/browser.py
@@ -489,6 +489,7 @@ def __init__(self, networkManager=None, initFile=""):
# web settings
self.websettings = self.webpage.settings()
+ self.websettings.setAttribute(QWebSettings.JavascriptEnabled, True)
self.websettings.setAttribute(QWebSettings.PluginsEnabled, True)
self.websettings.setAttribute(QWebSettings.DeveloperExtrasEnabled, True)
self.websettings.setAttribute(QWebSettings.OfflineStorageDatabaseEnabled, True)
View
4 core/utils/jsonify.py
@@ -25,6 +25,10 @@ def jsonify_headers(headers, variable_name):
if headers['request']['cookies']:
for c in headers['request']['cookies']:
cookies_list.append((str(c.name()), str(c.value()), str(c.toRawForm())))
+
+ if 'content-QByteArray' not in headers['response'] or 'content-QByteArray' not in headers['request']:
+ return "console.log('No header found.');"
+
js_header = {
'method' : headers['type'],
'request' : {
View
4 core/widgets/code.py
@@ -153,11 +153,11 @@ def __init__(self, parent = None):
self.scintilla.setFolding(QsciScintilla.BoxedTreeFoldStyle)
QObject.connect(self.scintilla, SIGNAL('textChanged()'), self.textChanged_Slot)
- fsize = 8
+ fsize = 10
for sty in range(128):
if not lexer.description(sty).isEmpty():
f = lexer.font(sty)
- f.setFamily('courier new')
+ f.setFamily('monaco, monospace, sans-sherif')
f.setPointSize(fsize)
lexer.setFont(f, sty)
View
4 core/widgets/component/graphics.py
@@ -92,8 +92,8 @@ def __init__(self, graphWidget=None):
self.uid = -1
self.diameter = 20
self.inner_diameter = 20
- self.size_font = 8
- self.font = QFont("Helvetica", self.size_font, QFont.Light)
+ self.size_font = 10
+ self.font = QFont("monaco, monospace, sans-sherif", self.size_font, QFont.Light)
self.metrics = QFontMetrics(self.font)
self.setFlag(QGraphicsItem.ItemIsSelectable)
self.setFlag(QGraphicsItem.ItemIsMovable)
View
4 core/widgets/component/smartview.py
@@ -57,11 +57,11 @@ def __init__(self, parent=None):
@staticmethod
def __prepare_lexer(cls, scintilla_instance):
lexer = cls(scintilla_instance)
- fsize = 8
+ fsize = 10
for sty in range(128):
if not lexer.description(sty).isEmpty():
f = lexer.font(sty)
- f.setFamily('courier new')
+ f.setFamily('monaco, monospace, sans-sherif')
f.setPointSize(fsize)
lexer.setFont(f, sty)
return lexer
View
4 core/widgets/javascript.py
@@ -41,11 +41,11 @@ def __init__(self, parent=None):
self.lexer.setAPIs(self.jsAPI)
self.evalJS.setMarginLineNumbers(1, True)
self.evalJS.setMarginWidth(1, 25)
- fsize = 8
+ fsize = 10
for sty in range(128):
if not self.lexer.description(sty).isEmpty():
f = self.lexer.font(sty)
- f.setFamily('courier new')
+ f.setFamily('monaco, monospace, sans-sherif')
f.setPointSize(fsize)
self.lexer.setFont(f, sty)
self.evalJS.setLexer(self.lexer)
View
2  core/widgets/sitemap.py
@@ -84,7 +84,7 @@ def __init__(self, parent = None):
for sty in range(128):
if not lexer.description(sty).isEmpty():
f = lexer.font(sty)
- f.setFamily('courier new')
+ f.setFamily('monaco, monospace, sans-sherif')
f.setPointSize(fsize)
lexer.setFont(f, sty)
View
BIN  screenshot/app_flow_graph.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View
BIN  screenshot/client_side_selectors.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View
BIN  screenshot/content_viewer.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View
BIN  screenshot/findings_management.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View
BIN  screenshot/web_browser.png
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
View
12 sheep.log
@@ -1,6 +1,6 @@
-[2012-03-24 14:59:39,895 - DEBUG] - Plugin::__init__
-[2012-03-24 14:59:39,896 - DEBUG] - PluginMonitor::__init__
-[2012-03-24 14:59:39,898 - DEBUG] - Plugin::__init__
-[2012-03-24 14:59:39,898 - DEBUG] - PluginMonitor::__init__
-[2012-03-24 14:59:40,203 - DEBUG] - GraphView::__init__- No GL support for the platform: darwin
-[2012-03-24 15:01:59,192 - DEBUG] - NetworkManager::save- Save isn't implemented yet for the network manager
+[2012-03-24 15:50:02,883 - DEBUG] - Plugin::__init__
+[2012-03-24 15:50:02,883 - DEBUG] - PluginMonitor::__init__
+[2012-03-24 15:50:02,885 - DEBUG] - Plugin::__init__
+[2012-03-24 15:50:02,885 - DEBUG] - PluginMonitor::__init__
+[2012-03-24 15:50:03,218 - DEBUG] - GraphView::__init__- No GL support for the platform: darwin
+[2012-03-24 15:57:52,970 - DEBUG] - NetworkManager::save- Save isn't implemented yet for the network manager
View
10 user/bsheep-classification.csv
@@ -10,12 +10,13 @@ c8da43c8081eeced9741ecb2d48a1245,Content Spoofing,,148,,WASC-12
115a7c5cfaedd9e9c268df1eefe91584,Predictable Resource Location,425,87,,WASC-34
7755c199307b63bb77b13f20c2cf1baa,Improper Filesystem Permissions,280,17,,WASC-17
c5911f66b85dbc003c7103fa23b87dfd,Session Fixation,384,61,,WASC-37
+0cca0a09d3fc37caf7f8b579ea259ce2,Application Misconfiguration,16,,,WASC-15
+7e8eec555d444d416bb9554a500826e3,Insufficient Password Recovery,640,50,,WASC-49
7f8eda6177c1b7bac3346f37b52de8c4,Improper Input Handling,20,,,WASC-20
-c54563de60b662ff90dfc0d72a7fee7a,Improper Output Handling,116,,,WASC-22
7f99e5b3a71a35c5b2f93f3ed0ec25de,Insecure Indexing,612,,,WASC-48
6e23a4f37bb1effd2745b7f750ce33ba,Insufficient Process Validation,,,,WASC-40
2c00e31d8bc39df563c2d1d9ed63ff19,Format String,134,67,,WASC-6
-7e8eec555d444d416bb9554a500826e3,Insufficient Password Recovery,640,50,,WASC-49
+2e48d92eb3d42308d384da4b5ac2cac3,XML Attribute Blowup,,229,,WASC-41
e8d418390d9fac8be0a2176c84a60a75,Server Misconfiguration,3,,,WASC-14
84da67ba75b932d2033ceebead941804,SQL Injection,89,66,,WASC-19
0530dd33107b4658d176ec266d4481e6,Remote File Inclusion,98,"193, 253",,WASC-5
@@ -36,14 +37,13 @@ c0d2bbef2432ab9579bcac31a1c121f6,Insufficient Anti-automation,,,,WASC-21
f536ab243d68f8e21210362c9da31888,XML Injection,91,250,,WASC-23
f5929180aaf8310030e7ab9692b89e10,Insufficient Authentication,287,,,WASC-1
830bcac1823d5c332cda7bf3d55188a1,Routing Detour,,219,,WASC-32
-dbfb7e04e68004c5386043df91ef4405,Insufficient Transport Layer Protection,"319, 523, 614",,,WASC-4
b84d2d336c4b83f379d6f0117f8aedd8,Abuse of Functionality,,210,,WASC-42
2c1846aec225aed099dddeb8cd244955,Brute Force,,112,,WASC-11
-0cca0a09d3fc37caf7f8b579ea259ce2,Application Misconfiguration,16,,,WASC-15
+dbfb7e04e68004c5386043df91ef4405,Insufficient Transport Layer Protection,"319, 523, 614",,,WASC-4
afa6bed103d12a07707ba53df1186d34,HTTP Request Smuggling,444,33,,WASC-26
9cf1ab47977970ea9980b8af31ce118f,Directory Indexing,548,127,,WASC-16
7b228e0a773d0a877665dd7028f2883d,Buffer Overflow,119,"10, 100",,WASC-7
-2e48d92eb3d42308d384da4b5ac2cac3,XML Attribute Blowup,,229,,WASC-41
+c54563de60b662ff90dfc0d72a7fee7a,Improper Output Handling,116,,,WASC-22
d60acd51c0a9d3333a3e0ccc25008eee,HTTP Request Splitting,,105,,WASC-24
4b5b5a59924ecc3c899b620e1991a2a5,SSI Injection,97,101,,WASC-36
76bc8b7fd1ba4de11f9d4acb860d1fb0,XML Entity Expansion,776,197,,WASC-44
View
BIN  user/cache/http/cache_060de952b722e216f8fb808594381972b4778a6e.cache
Binary file not shown
View
BIN  user/cache/http/cache_06e74bb9c4468a9ad709a669095dbd9c8de78d94.cache
Binary file not shown
View
BIN  user/cache/http/cache_23a499a94fb19434b80d13b59d7c3b0f9c39915c.cache
Binary file not shown
View
BIN  user/cache/http/cache_26f89e4533ad0d9cb4edbda81cb225e4953243f9.cache
Binary file not shown
View
BIN  user/cache/http/cache_42795cbc3f952292cca9e51ecf7a1f9f6eb5f615.cache
Binary file not shown
View
BIN  user/cache/http/cache_42a77289df2a3de944cec9e56fbb1db1feaaead2.cache
Binary file not shown
View
BIN  user/cache/http/cache_7d549be348a4b6e57b0f411f18c945f705fce025.cache
Binary file not shown
View
BIN  user/cache/http/cache_8a0c644d44cb74297b1a30b4f28e031ad59072ca.cache
Binary file not shown
View
BIN  user/cache/http/cache_8a79fe96a5339a01d933a3ddae1822fbc5e77616.cache
Binary file not shown
View
BIN  user/cache/http/cache_9dbf675bfc5f1f967fb8daef52dd88197024d3d2.cache
Binary file not shown
View
BIN  user/cache/http/cache_b1beb63c02648bf7cc2702f5c22bfdb5bf1a86b6.cache
Binary file not shown
View
BIN  user/cache/http/cache_baa6d01be9771fbd4e1e713b9deb54af68ffd0d6.cache
Binary file not shown
View
BIN  user/cache/http/cache_ece2b757a67707d893048e18f193fb9f3a8e4ae0.cache
Binary file not shown
View
BIN  user/cache/http/cache_f5c79ae144b39e8ccfcdedb7f339a087ecf8a456.cache
Binary file not shown
View
BIN  user/cache/http/cache_febaa44cfe872930e5a474f25eded6836471c2a8.cache
Binary file not shown
View
BIN  user/cache/https/cache_086d2fbe4ef9022208d27be5b2dceb567d9a23bd.cache
Binary file not shown
View
BIN  user/cache/https/cache_0b060b2572e7bb78db7cbc3367c045aad1bde3c9.cache
Binary file not shown
View
BIN  user/cache/https/cache_0c0058c03ccfed2baefbefca7326c531a38583a0.cache
Binary file not shown
View
BIN  user/cache/https/cache_0c13af7ccf3e2a12493e8852445726bbf6570310.cache
Binary file not shown
View
BIN  user/cache/https/cache_0cf4f38f99999b8518066caebd57cf80a518111f.cache
Binary file not shown
View
BIN  user/cache/https/cache_20790d8a28cd8d8e26a7991adbafb7411e3244d5.cache
Binary file not shown
View
BIN  user/cache/https/cache_34ba0fa421685cc887800e890c4ca18830b6c9eb.cache
Binary file not shown
View
BIN  user/cache/https/cache_3c152d93c31d603ccd88f85e83389185a0641ec6.cache
Binary file not shown
View
BIN  user/cache/https/cache_3d9953f7a0cc48ebd693a249284c8a868854cfff.cache
Binary file not shown
View
BIN  user/cache/https/cache_4c7eb6463d9e400e86710f45e38fea29965138e7.cache
Binary file not shown
View
BIN  user/cache/https/cache_5c1635a80262485e145b8235e0aa597918f91268.cache
Binary file not shown
View
BIN  user/cache/https/cache_6af2fed290f5c08a4ee3953104643bb9bf5cbd22.cache
Binary file not shown
View
BIN  user/cache/https/cache_7a062b857d3eaaca1753f6a99f73608d4c905c57.cache
Binary file not shown
View
BIN  user/cache/https/cache_80dde4c6b4c6d91f4b890c2b5068b6e2c0d9853b.cache
Binary file not shown
View
BIN  user/cache/https/cache_8acc8c42804fff3a2172974fe56540f44aaa86eb.cache
Binary file not shown
View
BIN  user/cache/https/cache_a309e2f48eebdf472a5b995022d01474696d894a.cache
Binary file not shown
View
BIN  user/cache/https/cache_b12a5aef71458dd5d8fdf79275640726140167dc.cache
Binary file not shown
View
BIN  user/cache/https/cache_e54baf6c4a0bb9d30d4adcb47bb28d4014428dd7.cache
Binary file not shown
View
BIN  user/cache/https/cache_fd2fbe359aa43122a0f4fc75fec8a670654bcfcb.cache
Binary file not shown
View
BIN  user/webkit/http_twitter.com_0.localstorage
Binary file not shown
View
BIN  user/webkit/https_twitter.com_0.localstorage
Binary file not shown
Please sign in to comment.
Something went wrong with that request. Please try again.